Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
File: 4koD-A9i2oZjUuGZCZfx1GzrL7A.mft (raw, json)
Hash identifier: v2RubHSVoxJdGqpxlOvyP+GFMO2aBvojtwTRW9jhGd8=
Subject key identifier: 4B:8E:AF:32:C1:00:B9:D1:E8:A4:B2:2D:F1:DF:1D:F9:E9:F3:5C:43
Authority key identifier: E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
Certificate issuer: /CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Certificate serial: 01964C6C03EF93085754428A76FA995E363B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
Manifest number: 11B6
Signing time: Sat 19 Apr 2025 05:01:09 +0000
Manifest this update: Sat 19 Apr 2025 05:01:09 +0000
Manifest next update: Sun 20 Apr 2025 05:01:09 +0000
Files and hashes: 1: 4koD-A9i2oZjUuGZCZfx1GzrL7A.crl (hash: G7qFsRNSiExyb+fZDWYpQl5s/ORl7+SZyBLk7ygg38o=)
2: _SDGNnpAJAI5c9TTproSlcDE1Ew.roa (hash: FWM2UQvUNqFuHmMAV7nZEdUtqbqVwiTq2Q2yh+QWjTY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:6c:03:ef:93:08:57:54:42:8a:76:fa:99:5e:36:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Validity
Not Before: Apr 19 05:01:09 2025 GMT
Not After : Apr 20 05:01:09 2025 GMT
Subject: CN=4b8eaf32c100b9d1e8a4b22df1df1df9e9f35c43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:17:12:a7:c7:52:78:74:68:16:a3:8c:2a:03:
82:3b:2a:39:20:ab:ae:b8:34:2d:95:e6:c8:12:ad:
ec:c7:f1:53:82:0f:f6:77:77:5c:9a:c4:1a:bd:b4:
3a:14:7a:a8:a1:f7:d8:1d:ba:66:22:aa:b4:03:38:
95:93:0e:b7:d9:59:05:37:2b:bf:a8:70:7b:13:48:
76:9e:f8:00:a8:ca:5e:ad:57:0e:c1:2f:d0:fb:2c:
fb:0e:60:6e:f6:0d:0d:ff:ab:08:1f:27:55:03:c5:
7f:21:59:55:da:ae:80:fa:f4:73:3c:ee:75:3b:b0:
46:ba:ab:27:11:06:7b:b5:44:20:26:bd:3c:5a:b8:
6c:2e:da:c8:b9:f5:a5:91:a9:de:1c:3d:50:33:da:
6a:15:43:0d:b8:c0:38:bc:7f:99:bb:eb:ab:d1:45:
79:02:bb:cd:66:71:8a:7b:6a:d9:41:79:d8:a2:45:
4b:e3:6e:e4:d3:ad:5e:01:f3:2c:8a:99:35:8a:e5:
a3:d7:b1:39:3b:bb:5a:a1:eb:75:50:15:60:60:fa:
a9:51:54:ac:50:b2:47:60:c1:80:90:af:cc:24:75:
92:39:44:93:ab:8b:78:80:01:3b:fc:7a:1c:92:4c:
07:9d:7e:e8:77:31:63:67:cd:07:07:da:f6:8d:2c:
21:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:8E:AF:32:C1:00:B9:D1:E8:A4:B2:2D:F1:DF:1D:F9:E9:F3:5C:43
X509v3 Authority Key Identifier:
keyid:E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:19:06:af:43:ab:59:1c:61:ea:41:74:9f:4a:14:e9:47:82:
e9:9f:d0:b0:b9:7c:15:7c:d9:3b:6c:32:ea:42:f2:86:a6:b2:
23:14:69:94:a4:47:61:57:4c:b3:32:0c:43:27:b7:1e:98:b8:
b0:7a:f7:9c:26:da:98:89:1a:2f:8a:7e:94:7a:e6:d3:52:0d:
c1:4f:80:93:71:2d:9d:fb:71:e1:dc:b6:36:54:fc:d6:9c:2a:
cb:74:66:4c:2b:39:4b:a7:e5:4b:9f:b8:bc:fd:a1:3a:88:6c:
1f:d7:3e:c8:b2:2a:7f:fc:ab:a0:92:8b:18:f4:8c:cd:5b:0c:
ba:9b:7a:b2:74:fa:36:54:56:9d:a8:6e:49:58:06:df:20:59:
85:ea:3c:55:d8:e0:2d:d0:ab:41:8a:ca:0e:93:d3:34:2e:84:
6a:3d:60:5d:14:ec:15:ca:1b:7a:40:4d:a2:fb:5c:f9:10:f9:
c0:d5:73:1c:fb:52:27:b5:02:f9:dd:c9:dc:0d:9f:3b:a5:18:
20:a7:42:ca:13:32:88:bb:41:8b:83:a9:45:ba:94:77:93:65:
dc:ed:b4:92:5d:40:f9:fe:01:9e:79:c0:58:dd:4b:32:62:6b:
9e:fe:57:c8:17:16:37:30:fa:ad:d9:0e:24:cc:0f:b1:be:ba:
1f:6a:93:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 10:41:10 2025 by rpki-client