
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
File: 4qEN5v-uWQQnJEoDND22asVkJ1o.mft (raw, json)
Hash identifier: 4qlt1+K1THMPd+RcNLCdw4LxiVlFlbWKfbsExHsJ2go=
Subject key identifier: B4:D8:6F:41:F7:8E:CA:FD:B6:4A:D7:50:6B:77:6B:FF:7D:46:65:44
Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
Certificate issuer: /CN=e2a10de6ffae590427244a03343db66ac564275a
Certificate serial: 0197635EF4FBCF90E6383240583D2EDDCDA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
Manifest number: 12D2
Signing time: Thu 12 Jun 2025 09:00:56 +0000
Manifest this update: Thu 12 Jun 2025 09:00:56 +0000
Manifest next update: Fri 13 Jun 2025 09:00:56 +0000
Files and hashes: 1: 4qEN5v-uWQQnJEoDND22asVkJ1o.crl (hash: /q86yK9TcI7fiwojiDlCGokuqoUoj6luMs+cTphX1yY=)
2: EMEQainrdjhvrSxfRt2EdTwfFho.roa (hash: MgfrBxxTqDVEh7a/Ypney2yykLPSmFU/4+sRkVkl74s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:63:5e:f4:fb:cf:90:e6:38:32:40:58:3d:2e:dd:cd:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a
Validity
Not Before: Jun 12 09:00:56 2025 GMT
Not After : Jun 13 09:00:56 2025 GMT
Subject: CN=b4d86f41f78ecafdb64ad7506b776bff7d466544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3e:f6:70:1a:bd:16:e4:13:56:32:53:51:a1:
b3:4d:33:e7:a9:10:6e:17:46:78:97:24:29:76:e2:
81:b4:6a:77:44:5c:48:19:42:3d:c8:b2:26:74:50:
d1:6e:66:48:80:f0:13:e3:f6:af:87:dd:30:6a:9c:
23:94:c1:69:ed:c2:5e:35:6e:d2:af:91:ea:56:d0:
72:ce:2a:e0:f2:bf:cd:e6:88:c2:e5:89:5f:89:67:
72:0b:55:31:53:43:1e:d4:e3:0f:83:48:16:5b:f0:
ad:65:08:9c:69:63:fd:bb:5c:41:f4:70:3a:87:21:
cc:06:69:a7:e8:a9:23:20:63:b1:95:87:05:6a:50:
7f:d3:f7:1d:4e:4e:b9:5d:0a:b6:bc:56:a4:a6:27:
b8:9c:f1:74:6f:eb:1d:9c:22:24:7f:43:0b:96:8d:
6b:a4:e1:04:64:a9:a3:3d:c3:33:b1:22:41:00:15:
2e:80:b2:9b:60:00:a8:7c:b2:8b:63:95:ba:43:2e:
f1:7a:89:b7:52:7c:b3:cc:a5:d0:8c:1a:c5:65:20:
40:86:f0:99:88:12:8a:3f:bb:a7:18:3e:5b:e0:7f:
6a:4b:96:8e:0c:b1:14:b3:9a:a9:4e:e8:9f:0a:6a:
c9:50:56:ed:75:fd:86:49:d4:7a:cf:fb:4d:22:ab:
86:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:D8:6F:41:F7:8E:CA:FD:B6:4A:D7:50:6B:77:6B:FF:7D:46:65:44
X509v3 Authority Key Identifier:
keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:6a:52:3c:68:85:5e:32:78:bd:20:bb:e2:3e:78:32:3a:ae:
2b:47:f2:a0:39:7f:f6:61:5e:85:16:b6:1e:a9:8c:97:8f:15:
20:4e:0a:bf:c0:c8:a0:b0:4e:a9:7a:c8:80:5e:05:90:9e:4d:
a9:84:74:00:c1:aa:ca:29:7b:bd:84:9d:5b:23:14:34:c5:29:
a0:05:de:f9:4f:3d:47:4f:b0:ee:e9:64:bc:92:48:1e:1c:e3:
bf:ac:39:36:c6:7d:44:00:b8:b9:02:c7:b5:8b:f0:97:80:f4:
8f:51:97:dd:67:a3:d0:47:a4:28:18:39:2c:ae:8c:34:c8:ed:
fc:2e:ef:9a:e7:42:2f:58:8f:2d:d8:a3:74:06:91:28:6d:48:
7a:0c:22:64:40:ec:94:5d:ab:6a:fd:e1:20:8d:a2:a2:60:b6:
03:aa:ef:20:48:72:f0:57:af:58:33:a5:88:10:4d:c3:43:08:
b4:67:fb:63:f4:d4:a6:7c:61:18:17:7a:db:ec:bf:29:7a:47:
1d:a1:ad:5e:20:7d:98:70:32:b8:ac:99:44:a3:81:56:49:18:
28:d0:dc:de:d4:df:0e:d1:55:f0:d7:5e:1c:56:1a:30:b1:21:
44:c8:75:d7:39:25:09:ba:32:cb:60:ee:a4:cb:40:18:3b:cd:
43:61:11:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 12:09:17 2025 by rpki-client