Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
File: 4_GcxeONj5wdZUcXdmX4khHeyJk.mft (raw, json)
Hash identifier: RXL+WtuXmectJOOXgJUx5bZ1TLb6bZ4957NxJ/hUEHE=
Subject key identifier: DA:E1:64:6C:58:B9:66:BB:30:4A:E9:97:76:3B:53:FD:D5:A0:C3:22
Authority key identifier: E3:F1:9C:C5:E3:8D:8F:9C:1D:65:47:17:76:65:F8:92:11:DE:C8:99
Certificate issuer: /CN=e3f19cc5e38d8f9c1d6547177665f89211dec899
Certificate serial: 019748C30D0484CA70D496ECC4B09D981198
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
Manifest number: 0DE9
Signing time: Sat 07 Jun 2025 05:00:31 +0000
Manifest this update: Sat 07 Jun 2025 05:00:31 +0000
Manifest next update: Sun 08 Jun 2025 05:00:31 +0000
Files and hashes: 1: 4_GcxeONj5wdZUcXdmX4khHeyJk.crl (hash: qq8d3lWpNPwqL1cyyiwFXVxOoghz0cyKAz+nYiXG/r0=)
2: nCO98tc8B201HK59o3LGsGaIbRQ.roa (hash: 5XD9s6utrTJgO6HcLNBLSP37yElvartuHWVrwWT7jxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:0d:04:84:ca:70:d4:96:ec:c4:b0:9d:98:11:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3f19cc5e38d8f9c1d6547177665f89211dec899
Validity
Not Before: Jun 7 05:00:31 2025 GMT
Not After : Jun 8 05:00:31 2025 GMT
Subject: CN=dae1646c58b966bb304ae997763b53fdd5a0c322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:aa:31:61:4b:1d:d3:6b:15:6e:fb:1d:11:1b:
1a:a3:73:ed:51:51:10:9e:b1:cb:38:d0:99:30:32:
ac:37:a5:1a:5f:65:fd:d0:60:36:94:20:78:5b:bf:
2e:81:65:a7:ab:5b:e4:8a:75:7f:89:5f:1c:62:13:
7a:5c:36:cd:2f:db:e0:1d:5c:09:ac:14:bf:4a:9e:
9b:70:18:ea:88:98:24:19:f7:20:38:7d:d9:3e:8f:
07:41:44:e2:70:46:9d:e8:a0:91:65:6e:ae:a2:c3:
ab:db:ef:5a:94:e9:04:ec:91:cd:ea:f0:53:70:61:
17:56:a0:d3:a0:d5:a4:99:5c:a9:da:90:f5:70:96:
e1:a4:a0:1c:8a:8b:b1:a5:f9:c4:61:d5:32:5b:77:
de:83:7e:36:e9:bd:4e:94:6c:a7:00:af:64:b5:a4:
ea:d8:c7:2f:35:d3:92:da:da:bb:1a:04:3d:7f:69:
39:6f:98:7c:6d:89:cb:a7:1b:94:f0:9d:a4:98:7e:
fa:01:06:a7:2f:8e:5f:17:56:22:08:7d:d4:b0:ea:
22:79:f9:0f:27:37:bf:9d:07:76:78:cd:50:26:53:
81:ec:18:30:49:12:e2:6d:1c:6f:3b:b3:38:a3:ca:
99:04:2b:e9:88:06:b5:80:a8:af:a9:82:ab:e6:a9:
dc:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:E1:64:6C:58:B9:66:BB:30:4A:E9:97:76:3B:53:FD:D5:A0:C3:22
X509v3 Authority Key Identifier:
keyid:E3:F1:9C:C5:E3:8D:8F:9C:1D:65:47:17:76:65:F8:92:11:DE:C8:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:3b:ed:7e:27:ed:c8:97:d3:9d:5b:fe:ff:40:b7:5e:ce:2a:
47:a6:88:f4:b5:7f:ba:6e:a0:6f:c8:64:99:f0:0f:e6:e9:bc:
6b:0b:9c:8c:73:2a:ff:8e:51:a2:ed:20:7d:b1:50:74:02:a8:
e5:f9:b8:d3:f7:f8:11:08:9c:f5:36:ee:c0:1d:44:07:bb:cc:
4d:47:d9:59:6e:44:79:05:2c:2e:39:0b:1f:76:e9:87:77:c5:
a5:9c:24:1a:9d:4b:4f:e7:ec:85:b6:f3:b9:51:02:dd:a6:7c:
58:43:7d:50:b2:2b:c1:79:9c:fe:f0:58:5c:92:89:2d:83:44:
aa:fb:17:3f:70:ca:e1:27:78:db:07:03:54:24:ed:72:f3:34:
bb:1c:35:4c:6a:cb:5c:fc:12:60:e4:3f:55:d4:af:dc:20:2e:
6c:85:a7:b1:81:0e:6b:f6:e4:ad:83:1a:14:64:70:b3:c3:6f:
6a:27:9f:35:12:81:cd:54:5f:b1:66:65:14:77:b7:fd:20:6a:
61:de:96:3a:25:78:9f:c0:70:64:0e:ce:7f:c9:c2:e1:9e:bc:
87:fa:c2:b7:22:ce:79:4a:cd:f8:db:4b:19:ad:26:2b:27:4a:
d8:a6:7a:c5:e0:8e:3e:ea:5e:74:96:c1:69:3e:78:9a:bd:dd:
20:96:c5:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:58:26 2025 by rpki-client