Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
File: 4oNEKXdeZVXldCSSKGJUsdqfGQM.mft (raw, json)
Hash identifier: MW1FJKk0w6Vz6aGxXQVei9Azpl1Jit4rZcVKNBzqlsM=
Subject key identifier: 31:B1:C7:36:D7:53:E2:70:D3:DD:28:16:0E:10:B8:61:91:5A:95:22
Authority key identifier: E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
Certificate issuer: /CN=e2834429775e6555e5742492286254b1da9f1903
Certificate serial: 019749D5C972BF534626A19D1A9722AB873B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
Manifest number: 0E37
Signing time: Sat 07 Jun 2025 10:00:36 +0000
Manifest this update: Sat 07 Jun 2025 10:00:36 +0000
Manifest next update: Sun 08 Jun 2025 10:00:36 +0000
Files and hashes: 1: 4oNEKXdeZVXldCSSKGJUsdqfGQM.crl (hash: 1/isnKoUk/MyRarFlny1c3p8H3zd3mCvOtwTlUYZQ/Y=)
2: ZTmydTpXIXh_aFM6lIMP1nPGi4M.roa (hash: R6dO91YPQTwtwZipE8GfozYF7WvWuk+GMp9DghrSYmY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d5:c9:72:bf:53:46:26:a1:9d:1a:97:22:ab:87:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2834429775e6555e5742492286254b1da9f1903
Validity
Not Before: Jun 7 10:00:36 2025 GMT
Not After : Jun 8 10:00:36 2025 GMT
Subject: CN=31b1c736d753e270d3dd28160e10b861915a9522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:da:9f:aa:52:e5:09:b8:e2:d9:ca:2d:38:80:
1b:14:9f:9c:7c:c1:2a:92:3c:e2:5c:89:58:c3:52:
97:f5:3d:b6:74:07:c3:5e:11:38:16:8f:06:d9:a0:
51:1f:3f:2e:0f:54:3b:ce:1b:aa:15:77:76:71:b2:
db:85:44:aa:bf:9f:9a:0f:73:c2:75:5f:b2:3d:15:
ad:b7:ef:99:29:99:6b:13:5d:2a:a6:8d:99:74:24:
4c:0c:04:09:aa:4e:75:64:fa:7b:e0:80:bb:d0:7d:
61:30:38:2f:be:e8:89:d0:74:cb:93:84:90:a5:c8:
ae:61:21:9e:30:37:95:a7:4d:b2:1c:8d:2d:5e:41:
0d:0c:e7:f4:27:0c:16:c7:19:d5:b1:76:5c:a6:91:
2b:82:ab:5f:97:3e:a2:02:a7:ff:e6:5b:39:04:ad:
f6:1c:5f:41:6d:1f:1d:45:2a:80:b7:46:47:9f:ba:
80:ae:37:b8:24:9d:fd:86:17:89:a4:d7:e3:8d:16:
4a:0e:4b:a0:cf:36:24:4b:b3:0d:09:f6:f9:4c:8a:
11:4e:e3:17:9a:d9:12:6e:17:f0:03:1f:16:b3:33:
f8:c6:d5:8e:27:a7:b3:6d:62:3b:1a:47:c7:88:a2:
8b:d8:cf:1d:76:dc:6a:b9:6f:0f:c1:94:28:9c:4c:
5d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:B1:C7:36:D7:53:E2:70:D3:DD:28:16:0E:10:B8:61:91:5A:95:22
X509v3 Authority Key Identifier:
keyid:E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:7b:bb:35:77:7c:ee:37:99:e0:4c:48:18:47:83:8d:65:b2:
04:36:9a:af:c1:76:18:74:35:49:a6:75:58:4a:35:6d:1b:5a:
fe:9b:e0:64:15:2d:d1:65:98:19:0c:21:d0:36:d2:1e:33:4a:
25:4f:22:42:f5:d9:30:08:b7:86:65:fd:61:02:4e:21:42:e3:
68:66:77:a4:03:b9:d4:0e:28:73:3a:05:46:00:02:61:24:9f:
fc:6d:28:8e:11:dd:37:1a:b1:5b:5a:3f:7e:7b:50:e7:06:73:
5e:83:91:bf:bb:87:ac:73:ef:ed:48:e7:8c:33:8a:4f:4b:dd:
7f:79:73:77:f2:23:da:b7:49:a2:da:fc:9d:24:e0:37:99:0e:
aa:a5:52:60:99:b5:f3:fe:a6:bb:b4:a7:41:06:b1:d4:1d:f1:
e1:f1:91:a8:19:4a:cd:26:5a:67:46:5f:fa:4b:6c:c4:74:65:
d0:ed:7e:d3:88:87:16:84:80:2d:3f:52:a3:36:65:8d:a1:b2:
fe:09:6f:18:8b:7a:3f:28:f5:6b:25:19:eb:d5:09:d2:1d:62:
ef:11:b9:06:d1:cd:78:ba:12:e4:ae:83:b1:31:5e:3b:37:38:
3c:d2:82:aa:dd:c5:0f:f0:14:a6:9e:f1:e5:ef:8d:e0:96:61:
32:5f:10:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:50:26 2025 by rpki-client