Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
File: 4oNEKXdeZVXldCSSKGJUsdqfGQM.mft (raw, json)
Hash identifier: wYIyu6H8LGzNikroE2ZDqhoA+2wipRkD0dHSo+5GNkw=
Subject key identifier: 69:71:85:55:30:B6:57:2C:F2:3B:0D:77:9C:AD:D6:2C:26:12:BF:C8
Authority key identifier: E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
Certificate issuer: /CN=e2834429775e6555e5742492286254b1da9f1903
Certificate serial: 0199326DAF1691811D3A8BF9D10402A1DD6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
Manifest number: 0F34
Signing time: Wed 10 Sep 2025 07:01:12 +0000
Manifest this update: Wed 10 Sep 2025 07:01:12 +0000
Manifest next update: Thu 11 Sep 2025 07:01:12 +0000
Files and hashes: 1: 4oNEKXdeZVXldCSSKGJUsdqfGQM.crl (hash: dtTEbT1OKdCJ30HoPrlZPVOFfu1yDnWwl/AbbGqQjGw=)
2: ZTmydTpXIXh_aFM6lIMP1nPGi4M.roa (hash: R6dO91YPQTwtwZipE8GfozYF7WvWuk+GMp9DghrSYmY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:6d:af:16:91:81:1d:3a:8b:f9:d1:04:02:a1:dd:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2834429775e6555e5742492286254b1da9f1903
Validity
Not Before: Sep 10 07:01:12 2025 GMT
Not After : Sep 11 07:01:12 2025 GMT
Subject: CN=6971855530b6572cf23b0d779cadd62c2612bfc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:19:1e:42:07:af:d5:47:bf:c5:26:dc:fd:96:
2f:1a:f8:08:bf:fd:98:eb:99:ab:41:4f:e6:5c:25:
8e:5b:5a:76:6d:ae:03:f6:84:d6:67:00:19:06:0e:
08:9d:89:49:57:de:45:5f:7a:c7:4b:bf:e0:8a:22:
e6:d8:63:fe:04:2e:01:f3:b6:ab:58:a8:9c:f3:56:
a8:7c:b3:a9:bb:65:69:9c:fd:1e:b2:3e:0e:da:cd:
b8:85:7d:a9:97:e2:b0:db:a4:16:cd:d6:bf:5f:48:
2e:e2:44:db:03:35:3c:c0:17:bb:dc:29:0b:09:d5:
9a:8b:77:86:b0:55:6a:69:cd:1a:a3:c2:e7:8b:37:
53:f5:ec:42:cd:44:97:ee:fb:c8:8e:79:11:ea:3a:
30:e9:72:90:61:6c:a9:93:37:da:81:73:ce:80:0e:
00:f7:17:77:71:ea:19:24:98:3c:ee:f1:e5:f3:2d:
4f:ad:4c:9e:2f:12:ee:91:3d:e0:4f:86:9b:65:79:
2a:82:0a:c3:9f:65:fe:ae:4f:55:17:30:6d:15:33:
46:9f:35:20:12:0f:7c:2a:fb:12:77:66:83:22:35:
e8:4f:85:5d:88:77:64:a0:ef:c7:29:44:1a:20:f5:
86:8f:c3:b3:e1:d9:f5:71:66:5e:f8:10:c2:19:c3:
58:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:71:85:55:30:B6:57:2C:F2:3B:0D:77:9C:AD:D6:2C:26:12:BF:C8
X509v3 Authority Key Identifier:
keyid:E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:8a:94:a5:9a:f7:cc:5f:d6:02:1e:da:c8:16:f3:f7:13:35:
cb:b6:d1:bf:7d:f7:4a:81:f5:58:c9:ca:bf:2c:e3:c3:f4:71:
87:5a:d5:7b:5c:39:98:ac:6b:13:31:4b:9a:54:54:3d:ab:07:
55:05:e6:de:92:4a:f2:2a:c1:74:dd:42:a3:b2:ed:e3:46:be:
21:7a:88:e2:99:27:4a:a1:1f:e1:5c:5c:66:e7:6d:c2:f1:11:
2d:2a:ad:e3:2a:84:0b:3a:54:14:6e:b3:e9:5b:a8:89:64:03:
13:99:ad:4c:20:fc:9d:13:ca:c0:d6:9e:bd:50:cd:63:13:d7:
67:6c:9b:2b:e5:49:e0:bb:38:c1:5a:bf:08:95:57:57:72:95:
59:2d:66:8a:20:9e:f8:e9:02:98:0f:dd:c0:74:d1:41:38:3d:
d0:71:43:b1:e4:a2:3b:4a:d7:5e:b3:d6:d0:e6:8b:36:a7:24:
85:3d:a7:2a:0d:98:ec:23:0f:bf:81:6d:0b:d4:08:ad:69:0d:
5e:55:c9:1e:f2:2f:86:ad:d0:d7:8b:11:e8:52:f2:35:32:92:
2c:73:e2:c8:84:8a:c8:df:77:d4:28:1a:3d:50:75:dd:b3:62:
c9:b2:aa:af:bf:75:74:c5:45:63:d5:90:47:c8:92:b6:ce:4b:
25:88:d2:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 10:14:08 2025 by rpki-client