Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
File: 4EHIW0dOi2wAiR2VQST_DIEgDYw.mft (raw, json)
Hash identifier: RQsEk6PNZ5MftYUpi1IbkTr5fQZ59WXbEPb1g+SClPs=
Subject key identifier: 49:F4:F7:5B:4F:E4:D6:82:87:FB:28:58:CB:D1:FC:B2:7E:10:1D:96
Authority key identifier: E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C
Certificate issuer: /CN=e041c85b474e8b6c00891d954124ff0c81200d8c
Certificate serial: 01975B6E0B20A70C2230D6AA997736BC8A30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
Manifest number: 08DF
Signing time: Tue 10 Jun 2025 20:00:27 +0000
Manifest this update: Tue 10 Jun 2025 20:00:27 +0000
Manifest next update: Wed 11 Jun 2025 20:00:27 +0000
Files and hashes: 1: 4EHIW0dOi2wAiR2VQST_DIEgDYw.crl (hash: hX2TBXnQGdVim7f+Zv17ySRulFNY2SpK50YRMR8heVo=)
2: N3RhFZbfRfFlakkE1oKkv4idahs.roa (hash: S19WQvJ0cwuBe3l5agvGw5hBi9jlwv6QitA6NIAiWl4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 14:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:6e:0b:20:a7:0c:22:30:d6:aa:99:77:36:bc:8a:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e041c85b474e8b6c00891d954124ff0c81200d8c
Validity
Not Before: Jun 10 20:00:27 2025 GMT
Not After : Jun 11 20:00:27 2025 GMT
Subject: CN=49f4f75b4fe4d68287fb2858cbd1fcb27e101d96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ef:98:7d:4f:5e:54:f5:82:f3:d6:0f:19:d5:
6b:37:cb:f5:01:af:34:2c:48:25:3f:8d:ea:16:3e:
fe:2a:e6:62:1c:e7:b7:e5:60:4c:88:ab:e1:4d:6a:
39:3d:92:3c:77:24:ee:aa:9b:26:cf:b3:ee:a8:bf:
f9:15:fc:67:20:d5:73:f4:06:5b:1a:ce:0e:08:2c:
98:7f:76:03:42:73:db:e2:cb:bd:9b:27:7c:43:65:
1e:e6:0e:2d:cf:3a:17:ea:93:13:b1:90:0e:7f:88:
11:dd:9b:bf:d1:81:58:fc:89:21:c5:6f:b7:4c:e3:
bc:e8:ae:b4:61:d9:b8:b3:9d:5e:ab:90:64:79:d8:
65:68:80:fd:38:3a:47:8b:2c:a6:47:c2:0b:09:c2:
6a:8a:34:cb:af:8b:e6:e7:0f:9a:49:6e:77:36:d9:
37:ec:76:a2:ff:08:3b:1d:2f:98:09:0f:13:21:96:
f5:ab:0c:d6:28:05:41:95:bc:89:34:43:33:70:7e:
76:a8:ea:02:db:50:12:2d:fb:75:2a:ed:df:5e:3b:
0d:d8:b2:19:a4:91:a8:91:77:1d:ed:c9:0c:e0:5c:
76:39:6e:29:4b:fe:03:d4:10:c3:d9:1c:f8:d8:4e:
2d:ad:08:cc:e1:3f:99:8b:8b:50:be:9f:5f:fb:15:
c1:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F4:F7:5B:4F:E4:D6:82:87:FB:28:58:CB:D1:FC:B2:7E:10:1D:96
X509v3 Authority Key Identifier:
keyid:E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:45:24:18:8b:8e:54:6c:4b:fd:61:5b:60:42:32:9f:7d:ef:
02:c1:c7:bd:dd:46:06:c9:05:67:14:a5:fc:d5:95:49:71:9f:
5f:24:6c:91:59:5e:41:09:94:2e:4a:05:25:25:56:a5:35:12:
8f:d4:65:0c:14:8c:cc:0e:cb:63:c0:8f:01:bb:33:bb:37:20:
14:6f:b8:43:9a:89:3f:9b:84:0d:d3:b9:1e:d9:3a:33:26:40:
3f:63:3b:ab:86:e7:18:3b:90:8a:94:d0:ba:ab:7d:d7:92:f6:
ca:17:8c:c8:b0:11:a4:85:6f:67:87:6f:3e:09:41:55:15:8e:
f6:11:65:97:7f:60:60:8c:2f:9c:cc:0c:de:ee:5d:cb:e4:3d:
b7:a8:98:61:e9:35:c5:db:20:21:87:9b:36:f1:a5:f7:b9:60:
40:99:82:aa:7f:a8:62:e4:a6:5c:30:9d:51:d4:db:d6:ae:cd:
c0:aa:5f:c7:33:22:e7:88:34:81:cc:8d:2c:75:1c:69:c9:bf:
83:32:9b:88:6c:8f:b5:d8:51:db:c0:e8:07:18:52:39:88:4b:
9b:df:26:aa:46:6b:40:9f:ea:bf:2e:17:46:70:b3:24:d8:16:
a3:05:c2:fc:39:56:ea:00:7c:e9:17:d0:36:8f:c4:1a:9d:12:
e3:6d:b9:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 01:18:25 2025 by rpki-client