Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
File: 4koD-A9i2oZjUuGZCZfx1GzrL7A.mft (raw, json)
Hash identifier: hBS125HJANjWfLkit4YAL4Yf7flYDWUrnvVOWMMR6nQ=
Subject key identifier: 31:AD:E2:10:3C:FA:D6:A1:51:16:A2:01:C9:DC:97:07:BB:A5:8E:1C
Authority key identifier: E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
Certificate issuer: /CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Certificate serial: 019751215A05BD6367ABF8E5192D71154AEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
Manifest number: 123D
Signing time: Sun 08 Jun 2025 20:00:29 +0000
Manifest this update: Sun 08 Jun 2025 20:00:29 +0000
Manifest next update: Mon 09 Jun 2025 20:00:29 +0000
Files and hashes: 1: 4koD-A9i2oZjUuGZCZfx1GzrL7A.crl (hash: biYhuC0/BCDbaIsLfMiN502RCttfSc05gb1GqNQvyRQ=)
2: _SDGNnpAJAI5c9TTproSlcDE1Ew.roa (hash: FWM2UQvUNqFuHmMAV7nZEdUtqbqVwiTq2Q2yh+QWjTY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 20:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:21:5a:05:bd:63:67:ab:f8:e5:19:2d:71:15:4a:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Validity
Not Before: Jun 8 20:00:29 2025 GMT
Not After : Jun 9 20:00:29 2025 GMT
Subject: CN=31ade2103cfad6a15116a201c9dc9707bba58e1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:bd:6d:de:df:4d:f0:28:7a:46:1b:fb:0a:88:
8b:31:08:65:df:88:4a:f2:e1:45:41:4f:53:6f:b8:
ca:ea:26:3e:fb:2a:6d:c1:6b:17:cf:8b:fa:4e:92:
80:8e:9d:8f:db:44:09:5b:e7:48:de:f7:36:67:4d:
5d:bb:23:c8:56:d3:49:f4:d0:4e:a4:d5:83:55:eb:
71:d6:0d:13:b8:5c:14:37:51:2e:97:79:e3:05:0e:
99:0f:c0:22:e4:db:19:2f:59:2a:08:bf:aa:fc:69:
ef:bf:c4:ab:02:13:f8:5e:3a:1e:82:a2:45:b0:21:
a3:af:e5:08:c1:d1:e3:d5:1d:ef:4b:99:3d:df:3f:
e8:da:21:7c:c7:60:dd:1e:f9:4d:56:53:73:7b:a4:
9e:74:e9:90:a6:90:a1:59:3e:51:22:ce:37:63:c5:
60:3f:59:55:fd:7f:55:9a:17:44:89:9d:11:00:d0:
0f:47:6c:ff:4c:2a:54:f8:46:44:8c:59:2b:22:03:
a1:3a:26:39:a6:1e:17:49:62:7b:1d:87:f0:16:bd:
56:60:ee:b5:18:0c:6b:c5:df:79:0e:dd:d8:a4:d4:
3a:91:85:6e:ed:68:d1:dd:4d:8f:d4:69:8a:4f:5d:
62:b5:73:44:46:f2:c5:c7:58:41:76:d1:35:41:d5:
6e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:AD:E2:10:3C:FA:D6:A1:51:16:A2:01:C9:DC:97:07:BB:A5:8E:1C
X509v3 Authority Key Identifier:
keyid:E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:b8:24:ac:c1:68:59:9c:1b:3e:21:f7:37:da:16:9b:f5:b6:
c6:86:2d:57:84:f1:ad:73:04:c1:24:81:64:4b:df:c0:07:55:
10:db:f4:45:02:e4:56:3f:f7:5f:5f:44:8e:51:75:29:da:d1:
fd:44:22:0f:b3:88:c0:0e:44:db:16:83:c0:86:60:9f:79:27:
44:38:a3:85:5c:c2:5e:bd:59:e3:a5:52:db:3a:27:07:a6:70:
8b:65:c2:02:ae:88:98:fa:c5:f9:02:3b:5f:0f:46:8b:e1:d7:
f0:3c:1a:c4:50:d1:b5:67:ef:05:d2:7f:51:0d:6a:d3:86:68:
3a:e3:8d:19:b6:d2:c8:f1:a2:b1:0b:1c:26:8b:aa:73:32:c3:
ee:22:f0:bd:fb:76:59:e8:80:7b:ee:d1:4d:d1:ab:ae:07:fc:
80:f9:bd:08:62:98:b5:56:4b:68:ef:b7:bf:c8:b9:ce:cc:f0:
14:62:af:d0:58:af:3b:21:0c:ec:ec:d1:f2:01:eb:aa:ee:8b:
2d:fd:6c:d4:fc:0c:91:93:0b:46:df:f3:3f:d5:78:67:f6:79:
77:0c:9a:ad:fb:f5:aa:27:b4:a7:5d:94:71:25:36:c2:54:11:
f0:7f:c4:ea:1e:49:83:4b:19:70:4a:c6:a8:30:44:2e:0a:f1:
57:ba:19:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 04:21:31 2025 by rpki-client