Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
File: 4toj07kw1MHzrHMGXXGmB8NdKQA.mft (raw, json)
Hash identifier: Pu4Gk7OYcM/6Y7gI59JrotFiMknnpsTFe2a6Po+7+xY=
Subject key identifier: CC:45:E1:82:A1:E7:6F:48:DF:7B:71:61:D5:CC:E6:EB:97:45:B6:E4
Authority key identifier: E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
Certificate issuer: /CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Certificate serial: 0197470BD538E2C73C0ACEA2556C8DEAC1A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
Manifest number: 157E
Signing time: Fri 06 Jun 2025 21:00:47 +0000
Manifest this update: Fri 06 Jun 2025 21:00:47 +0000
Manifest next update: Sat 07 Jun 2025 21:00:47 +0000
Files and hashes: 1: 1-rU3n-MmX0x7vSSIglpKrM6p7wc.roa (hash: c73xh5XkAcPFRSo/oWqlfjE2NzFubQ+3BLO5+whFr6o=)
2: 4toj07kw1MHzrHMGXXGmB8NdKQA.crl (hash: 5CqXKYVph3CJhX3zGguvCvaG26GPWhMbR6ce0pZgsbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 21:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:d5:38:e2:c7:3c:0a:ce:a2:55:6c:8d:ea:c1:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Validity
Not Before: Jun 6 21:00:47 2025 GMT
Not After : Jun 7 21:00:47 2025 GMT
Subject: CN=cc45e182a1e76f48df7b7161d5cce6eb9745b6e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0b:45:c6:6d:9d:f5:92:5a:26:13:68:c5:34:
27:d6:b0:72:8a:d0:00:43:d0:18:5c:07:59:b8:b3:
73:78:22:83:f9:46:e1:f2:e0:8e:5e:e5:74:81:5f:
1c:aa:f2:18:10:44:f9:c1:5a:b0:75:2b:b2:97:56:
13:f2:79:f4:98:7c:ab:c5:de:11:5c:fc:e2:4c:68:
ec:f6:4d:d5:48:a1:0d:1c:3e:7a:10:bb:58:43:ff:
6d:d0:d2:7c:8b:65:00:da:34:46:50:79:d0:1f:47:
4b:bc:59:29:f4:95:d1:25:d6:08:3e:b9:13:82:80:
c6:e7:34:7b:9d:79:79:00:9b:b3:6d:9e:12:2a:1c:
42:75:d2:35:fa:eb:ad:d5:c5:04:7d:6e:0e:dd:8f:
cf:a5:87:3a:39:11:d8:ff:05:60:55:b5:45:d8:11:
a5:da:f7:bc:31:2e:c8:57:a2:99:f7:34:08:af:26:
82:4f:b8:da:1f:bc:5c:94:a2:d4:e1:f1:3b:0d:fe:
43:67:d1:66:fc:c0:38:7a:35:aa:29:bb:e6:8a:ad:
38:30:a6:3e:27:55:e1:6a:13:7e:f6:9d:ef:e9:b7:
09:26:f3:d9:24:22:2c:53:65:fa:2f:cf:36:e0:95:
d0:27:bd:11:d8:b8:13:bf:49:c7:94:c7:e8:21:6c:
c5:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:45:E1:82:A1:E7:6F:48:DF:7B:71:61:D5:CC:E6:EB:97:45:B6:E4
X509v3 Authority Key Identifier:
keyid:E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:57:12:e3:dc:73:ec:91:f8:d6:89:2f:a4:be:99:57:b5:0a:
de:57:f9:12:9c:7c:e8:c5:03:45:45:28:2f:7e:b9:2a:9a:2d:
ac:b8:a3:a7:38:a3:10:74:58:5a:5f:3e:46:74:10:ac:85:80:
5a:c0:78:49:49:94:34:1b:8b:c9:e6:3c:39:b1:35:37:4e:87:
35:a2:5e:a9:0e:61:af:97:c4:6b:26:10:f9:9b:ae:7f:4a:af:
3a:31:e8:3f:49:18:bd:ed:5a:2b:d0:bc:d1:69:05:d7:aa:78:
36:3d:c4:87:aa:b5:59:5f:86:90:48:b5:11:c2:3f:56:fe:d5:
52:7a:5a:e1:43:3e:37:56:eb:15:ba:33:d8:31:81:93:1f:26:
c3:29:59:aa:20:0e:b8:9c:0b:f7:a5:32:a2:40:34:95:1f:15:
82:16:f8:92:f0:96:1c:de:f6:93:8f:88:d7:12:7b:4b:4c:33:
6b:2d:4f:0d:de:35:b1:8a:f9:7e:27:55:3e:8e:b1:e3:e9:f8:
36:d8:85:d7:80:a2:d1:7c:84:79:1a:b6:57:03:fa:bf:58:57:
d1:1e:bd:40:0e:8e:dd:7e:2a:89:2b:41:bb:26:5d:6b:9b:16:
af:98:24:ab:c9:ff:99:fb:53:5f:a3:b6:5c:1f:84:f4:09:a9:
0d:f1:61:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 06:03:39 2025 by rpki-client