Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
File: 4qEN5v-uWQQnJEoDND22asVkJ1o.mft (raw, json)
Hash identifier: FGwyDH0IkcfHr3NKmYNXGVmdvLJ0L51080Kf61gyRpQ=
Subject key identifier: 2E:CE:9C:3F:42:36:87:DB:2F:69:7B:D1:12:B9:8D:81:B1:11:0E:70
Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
Certificate issuer: /CN=e2a10de6ffae590427244a03343db66ac564275a
Certificate serial: 0197673B9D138124BE10B377E9508775A7B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
Manifest number: 12D4
Signing time: Fri 13 Jun 2025 03:00:49 +0000
Manifest this update: Fri 13 Jun 2025 03:00:49 +0000
Manifest next update: Sat 14 Jun 2025 03:00:49 +0000
Files and hashes: 1: 4qEN5v-uWQQnJEoDND22asVkJ1o.crl (hash: MPW8da9PuGpTS6rMsPR04cohbd0lWZaqpZGhSUsVZ78=)
2: EMEQainrdjhvrSxfRt2EdTwfFho.roa (hash: MgfrBxxTqDVEh7a/Ypney2yykLPSmFU/4+sRkVkl74s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:67:3b:9d:13:81:24:be:10:b3:77:e9:50:87:75:a7:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a
Validity
Not Before: Jun 13 03:00:49 2025 GMT
Not After : Jun 14 03:00:49 2025 GMT
Subject: CN=2ece9c3f423687db2f697bd112b98d81b1110e70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:57:8b:ac:5c:55:a3:86:e7:39:33:68:74:e3:
d5:a8:09:16:45:99:f7:b0:e4:07:34:b0:dd:cc:f4:
19:5f:83:6b:4e:e3:98:5d:f7:e7:41:d3:5f:dc:2b:
2d:c9:b5:ac:76:dc:2c:d6:5f:a0:e8:a9:b2:d3:69:
0b:7f:bc:e1:62:82:b9:56:80:93:6c:72:6b:36:e5:
f2:c2:d0:60:a8:46:7c:6a:90:6b:7b:d6:b0:b2:0e:
95:60:f5:ff:01:7c:57:ee:b6:a2:2c:27:7b:2d:9f:
a3:ff:fc:d5:bd:77:3f:26:ae:bf:fd:f8:3e:c2:d6:
ea:fb:33:c3:6b:53:e0:f9:f3:bb:6e:f8:23:85:e5:
a5:35:9e:80:1d:4b:63:ee:30:f9:2f:ba:d9:98:14:
96:6c:75:c9:39:ef:aa:d9:aa:41:8a:59:bd:81:7a:
b1:4d:51:10:9c:1e:0b:aa:8a:af:59:33:6e:29:1e:
cd:43:4e:68:0c:0f:fa:13:36:f0:1e:1f:38:5d:12:
48:c0:9b:65:84:f5:11:7c:73:44:9e:8a:ee:9e:25:
c9:98:9f:7b:a2:ec:76:6b:ca:c3:ac:70:ce:a6:cc:
8a:00:ab:c3:29:aa:c5:54:ca:e5:37:49:06:e0:47:
b4:7b:87:13:8e:86:34:a7:f1:22:62:47:31:1b:bc:
5b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:CE:9C:3F:42:36:87:DB:2F:69:7B:D1:12:B9:8D:81:B1:11:0E:70
X509v3 Authority Key Identifier:
keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:21:ac:e2:49:d8:da:53:14:eb:bd:09:e5:1e:cd:f5:32:09:
c0:a5:38:88:44:42:a2:30:d3:ef:46:ff:a1:55:c8:16:d8:80:
62:60:af:64:77:39:be:77:d0:0c:c3:06:e0:02:af:bc:c6:26:
a7:22:35:6a:38:7b:b8:41:7c:31:1c:43:59:b1:7d:96:26:a8:
e5:e3:5c:e9:e0:42:2c:98:c4:58:82:29:eb:98:07:93:91:cb:
16:a9:e4:ed:78:74:65:49:29:70:1f:04:17:ea:bf:6c:fb:16:
bf:f7:65:fd:ae:ea:41:98:fa:a4:e2:02:42:19:95:e8:19:97:
07:a7:c3:02:c3:be:5b:e1:a2:36:4b:ba:b3:38:07:2d:af:18:
3e:d9:c3:46:55:76:11:73:9d:17:b1:f9:73:25:82:27:76:83:
52:03:4e:90:88:b4:ca:24:50:fe:22:12:27:a6:ba:6a:4c:13:
3e:d7:73:a7:fe:c7:94:19:8e:a5:65:0d:12:8d:16:f2:4a:d0:
f1:7e:82:9f:62:69:7d:bd:26:0f:c2:13:fb:c9:7d:c4:9a:cc:
89:8e:e7:99:22:f1:6f:7b:db:80:03:c9:7b:63:fe:16:0e:28:
6a:92:e8:5e:14:1e:8a:5d:b6:30:a4:05:66:2f:9c:4a:9e:30:
73:b5:8e:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdnO50TgSS+ELN36VCHdae1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyYTEwZGU2ZmZhZTU5MDQyNzI0NGEwMzM0M2RiNjZhYzU2
NDI3NWEwHhcNMjUwNjEzMDMwMDQ5WhcNMjUwNjE0MDMwMDQ5WjAzMTEwLwYDVQQD
EygyZWNlOWMzZjQyMzY4N2RiMmY2OTdiZDExMmI5OGQ4MWIxMTEwZTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyFeLrFxVo4bnOTNodOPVqAkWRZn3
sOQHNLDdzPQZX4NrTuOYXffnQdNf3CstybWsdtws1l+g6Kmy02kLf7zhYoK5VoCT
bHJrNuXywtBgqEZ8apBre9awsg6VYPX/AXxX7raiLCd7LZ+j//zVvXc/Jq6//fg+
wtbq+zPDa1Pg+fO7bvgjheWlNZ6AHUtj7jD5L7rZmBSWbHXJOe+q2apBilm9gXqx
TVEQnB4LqoqvWTNuKR7NQ05oDA/6EzbwHh84XRJIwJtlhPURfHNEnoruniXJmJ97
oux2a8rDrHDOpsyKAKvDKarFVMrlN0kG4Ee0e4cTjoY0p/EiYkcxG7xbjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC7OnD9CNofbL2l70RK5jYGxEQ5wMB8GA1UdIwQY
MBaAFOKhDeb/rlkEJyRKAzQ9tmrFZCdaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHFFTjV2LXVXUVFuSkVvRE5EMjJhc1ZrSjFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9hOGJiNTctYzE4MS00Njk1LTliZTct
NTc1NTQwNTg2MjBiLzEvNHFFTjV2LXVXUVFuSkVvRE5EMjJhc1ZrSjFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy9hOGJiNTctYzE4MS00Njk1LTliZTctNTc1NTQwNTg2MjBi
LzEvNHFFTjV2LXVXUVFuSkVvRE5EMjJhc1ZrSjFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiyGs4knY
2lMU670J5R7N9TIJwKU4iERCojDT70b/oVXIFtiAYmCvZHc5vnfQDMMG4AKvvMYm
pyI1ajh7uEF8MRxDWbF9liao5eNc6eBCLJjEWIIp65gHk5HLFqnk7Xh0ZUkpcB8E
F+q/bPsWv/dl/a7qQZj6pOICQhmV6BmXB6fDAsO+W+GiNku6szgHLa8YPtnDRlV2
EXOdF7H5cyWCJ3aDUgNOkIi0yiRQ/iISJ6a6akwTPtdzp/7HlBmOpWUNEo0W8krQ
8X6Cn2Jpfb0mD8IT+8l9xJrMiY7nmSLxb3vbgAPJe2P+Fg4oapLoXhQeil22MKQF
Zi+cSp4wc7WOxg==
-----END CERTIFICATE-----
Generated at Fri Jun 13 07:45:45 2025 by rpki-client