Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
File: 4EHIW0dOi2wAiR2VQST_DIEgDYw.mft (raw, json)
Hash identifier: M3NIzkhCqonrILufOJ7SddVgR7PcV5FRw7kdyie3lOQ=
Subject key identifier: 63:25:B7:9E:E0:01:62:A4:CD:17:EA:DD:6D:96:E9:33:1B:18:DB:33
Authority key identifier: E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C
Certificate issuer: /CN=e041c85b474e8b6c00891d954124ff0c81200d8c
Certificate serial: 0197670490230A870E41CBCCBD52C2588F18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
Manifest number: 08E5
Signing time: Fri 13 Jun 2025 02:00:41 +0000
Manifest this update: Fri 13 Jun 2025 02:00:41 +0000
Manifest next update: Sat 14 Jun 2025 02:00:41 +0000
Files and hashes: 1: 4EHIW0dOi2wAiR2VQST_DIEgDYw.crl (hash: kb++mR33EAC23r/cR8KhUftbtuOtItV+JaCxYUboB40=)
2: N3RhFZbfRfFlakkE1oKkv4idahs.roa (hash: S19WQvJ0cwuBe3l5agvGw5hBi9jlwv6QitA6NIAiWl4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 02:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:67:04:90:23:0a:87:0e:41:cb:cc:bd:52:c2:58:8f:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e041c85b474e8b6c00891d954124ff0c81200d8c
Validity
Not Before: Jun 13 02:00:41 2025 GMT
Not After : Jun 14 02:00:41 2025 GMT
Subject: CN=6325b79ee00162a4cd17eadd6d96e9331b18db33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c3:13:5d:d8:e4:1e:64:e5:21:ee:70:d6:33:
d4:4d:f4:b3:7d:b0:6b:f5:d5:71:fe:eb:88:33:9d:
95:31:16:5d:da:b2:18:a7:b1:2b:90:35:ca:11:81:
c3:2e:d6:fb:2a:b7:dc:1f:a1:8b:3e:ec:eb:b3:ac:
11:02:13:e3:49:46:5f:87:6c:41:07:a4:df:2c:dc:
58:47:17:bf:f4:4c:a3:29:c5:c1:b6:08:b7:0f:34:
68:02:33:4d:13:5c:27:92:3b:e3:b5:e8:6b:44:fe:
ea:ef:d8:bc:e3:3a:75:b8:97:93:c6:b0:44:b4:4d:
72:e6:ab:12:d0:ce:1a:97:29:c8:cd:3f:77:37:7e:
b0:0e:99:93:93:62:61:4c:5f:87:49:d0:8d:fb:8a:
3b:b3:fd:c0:2f:a8:65:be:9f:00:6d:3e:52:aa:db:
38:39:3d:16:b2:95:32:b9:41:2a:41:d9:e3:5a:dd:
d4:0a:f4:90:3b:83:72:48:7f:6a:4a:0c:a4:6c:c2:
5f:ac:f4:26:dc:61:fb:5e:9a:05:ec:88:c4:0d:f5:
de:68:48:8c:48:f4:d6:42:51:e4:b9:e9:87:43:91:
29:29:b4:d7:a7:6e:89:ac:a5:a2:8a:da:5f:a2:d8:
65:8e:c6:ea:e7:b2:50:5f:11:ad:4f:e1:da:c9:57:
5c:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:25:B7:9E:E0:01:62:A4:CD:17:EA:DD:6D:96:E9:33:1B:18:DB:33
X509v3 Authority Key Identifier:
keyid:E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:11:d9:b1:0b:cc:d5:01:a9:91:a9:e2:d0:fc:ff:44:44:99:
2c:fd:eb:b8:7e:23:0b:19:7a:8a:d3:20:63:cc:4b:45:77:e6:
e5:bf:38:d9:af:95:6e:a2:0c:96:c9:cb:f9:71:c5:ca:22:b5:
b2:05:f6:29:5b:2a:e2:4a:74:2a:1d:74:9d:6b:8e:8a:f2:09:
10:85:ec:fd:09:d5:22:5f:25:02:bc:01:bd:58:c2:ba:14:2b:
63:0d:9c:c3:41:bf:f9:6d:f9:5d:88:81:3b:04:9c:79:c6:cf:
9f:fb:2f:15:c2:f6:9a:df:59:69:8d:69:f9:a4:4a:1a:b8:9c:
96:24:02:13:51:a1:4d:42:74:a6:88:95:de:af:0a:2b:e4:79:
dc:5c:de:e6:70:0b:a1:c0:cd:fb:09:2b:70:32:40:db:a8:0a:
8a:cc:83:12:6b:61:49:c7:15:20:a2:2f:b2:58:86:29:d8:fd:
6c:c3:31:06:87:ed:ac:50:b5:e6:7f:15:d9:ff:19:54:bd:da:
f2:b0:ae:76:8c:08:96:58:c4:de:82:70:d4:78:30:b6:4f:42:
47:40:b5:fd:04:64:ee:9c:eb:79:b0:11:c7:d6:78:a5:b9:81:
8c:69:d9:96:ed:7c:c4:4e:d0:bd:50:a8:ea:e5:e3:10:bc:61:
91:1e:37:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 10:01:51 2025 by rpki-client