Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
File: 4auG-AxLsqxW5B7HokauKWnY01g.mft (raw, json)
Hash identifier: /0fzjUWBEv9ZJVblE63Tcc5ucEHyVCAlYD12G0GCw/I=
Subject key identifier: 4F:B8:17:D4:92:74:20:6E:79:E5:C5:6E:A9:0A:24:E9:B9:8C:87:A8
Authority key identifier: E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
Certificate issuer: /CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Certificate serial: 01975D25606AC5C1D2DA7BD0878C39437E58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
Manifest number: 0550
Signing time: Wed 11 Jun 2025 04:00:19 +0000
Manifest this update: Wed 11 Jun 2025 04:00:19 +0000
Manifest next update: Thu 12 Jun 2025 04:00:19 +0000
Files and hashes: 1: 4auG-AxLsqxW5B7HokauKWnY01g.crl (hash: OIDEDLg2qoCOkYi5nvEOwpsO7SDTGEM5HkSPGX/rC3U=)
2: IrEzCg-L6ChV6NO0z_pSKTvObkE.roa (hash: BAxTmTfKNgnausi613sLgqp7n2C4MuqhHvDS7/1g8aY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5d:25:60:6a:c5:c1:d2:da:7b:d0:87:8c:39:43:7e:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Validity
Not Before: Jun 11 04:00:19 2025 GMT
Not After : Jun 12 04:00:19 2025 GMT
Subject: CN=4fb817d49274206e79e5c56ea90a24e9b98c87a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:39:20:d3:dd:a3:6f:ab:e4:3a:01:a2:93:e7:
26:f2:c3:c7:b1:c1:61:6c:ae:2b:ee:6e:94:58:ff:
09:21:b3:8b:93:a3:5c:42:b7:e3:65:4f:2d:a5:d1:
53:61:f6:20:18:06:49:17:58:3f:20:5b:44:fa:24:
ca:b5:20:b4:cd:d5:e0:83:13:2d:17:b9:ea:9e:ba:
8a:02:eb:a4:d8:95:70:ed:1e:d9:14:6e:9b:44:2b:
db:cd:67:59:09:13:50:07:a6:2d:95:83:19:f2:c3:
ea:d6:62:fe:31:1a:36:99:45:d7:ff:1e:93:f4:55:
e7:a7:31:d0:82:f4:f8:3a:2b:1d:26:76:7c:c4:4c:
5b:34:fa:97:aa:77:e4:9b:93:cc:a2:0e:58:47:2d:
ed:8c:e4:08:40:f1:d4:df:38:2a:5c:76:07:e1:7d:
9f:67:15:04:35:42:b1:08:a6:99:e2:e5:92:d4:48:
a5:61:e0:22:e0:db:b5:8f:ed:b3:b9:ec:01:03:c8:
71:4e:8d:85:0c:86:aa:db:35:69:09:ce:06:c1:82:
dc:34:27:b5:7e:cc:7f:40:22:20:cd:d2:59:65:01:
7e:b2:dd:ee:d6:7e:9c:03:79:38:4b:f6:32:83:87:
7c:f0:e2:d3:23:3a:7a:c6:a7:00:98:28:74:d9:91:
43:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:B8:17:D4:92:74:20:6E:79:E5:C5:6E:A9:0A:24:E9:B9:8C:87:A8
X509v3 Authority Key Identifier:
keyid:E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d6:81:d7:06:4b:47:23:26:a2:27:10:cf:73:ea:8d:7b:30:86:
f4:7e:b8:24:13:43:d1:99:c9:c8:24:af:5b:80:d0:49:57:22:
f6:cb:a6:bf:53:d7:ea:d3:6b:72:f9:b2:b6:bf:db:34:ce:19:
b3:5b:be:40:3f:76:e2:fc:66:43:43:37:bd:4e:13:a8:4b:73:
07:d4:13:80:c3:ca:a1:f9:51:1c:9f:3a:6a:eb:1a:86:28:fb:
e7:85:7d:dc:c0:93:4e:6c:1d:ba:47:4e:bf:2e:6c:d9:a7:6c:
c0:49:92:16:1b:ee:74:76:9f:44:1d:3d:59:d5:b9:53:52:ee:
69:35:42:d1:59:52:01:cd:96:18:ba:2d:67:d3:53:ed:8d:97:
44:07:3a:93:02:83:73:49:14:49:1f:42:64:9d:c9:a8:59:64:
9b:49:b7:18:df:e1:71:12:9f:04:d7:11:ba:a0:8e:e7:03:d5:
39:6a:ed:11:a6:5d:a1:02:3c:d5:24:d9:72:93:d8:f0:ab:c5:
16:13:73:70:21:42:a5:18:48:e7:50:39:6d:52:10:b1:4b:d0:
bc:b2:11:33:0b:ce:21:70:e4:23:24:2d:4d:ab:18:f1:ce:91:
ed:96:e7:eb:1b:4c:ed:69:3f:4d:9a:ea:f5:84:51:ac:d0:e7:
a2:26:a1:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 10:11:38 2025 by rpki-client