Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
File: 4_GcxeONj5wdZUcXdmX4khHeyJk.mft (raw, json)
Hash identifier: hyLkEPjfn0rSZ+V3Qgit9InThOEmCxooK8aRIJy6sFs=
Subject key identifier: FC:C8:C3:6F:50:E9:B3:DE:5B:29:B2:DD:0D:DF:D3:C6:0E:00:CE:A5
Authority key identifier: E3:F1:9C:C5:E3:8D:8F:9C:1D:65:47:17:76:65:F8:92:11:DE:C8:99
Certificate issuer: /CN=e3f19cc5e38d8f9c1d6547177665f89211dec899
Certificate serial: 0196440D5902CA2EDC107CB58FC7AF821EFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
Manifest number: 0D62
Signing time: Thu 17 Apr 2025 14:00:47 +0000
Manifest this update: Thu 17 Apr 2025 14:00:47 +0000
Manifest next update: Fri 18 Apr 2025 14:00:47 +0000
Files and hashes: 1: 4_GcxeONj5wdZUcXdmX4khHeyJk.crl (hash: WnNJJm+/au8RewnPYy75qvC72k5oqpfWtxlC14GyEbc=)
2: nCO98tc8B201HK59o3LGsGaIbRQ.roa (hash: 5XD9s6utrTJgO6HcLNBLSP37yElvartuHWVrwWT7jxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 14:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:0d:59:02:ca:2e:dc:10:7c:b5:8f:c7:af:82:1e:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3f19cc5e38d8f9c1d6547177665f89211dec899
Validity
Not Before: Apr 17 14:00:47 2025 GMT
Not After : Apr 18 14:00:47 2025 GMT
Subject: CN=fcc8c36f50e9b3de5b29b2dd0ddfd3c60e00cea5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:79:a4:45:b2:42:c2:1a:93:d3:5f:20:be:51:
d5:70:c2:f5:da:36:19:f0:f8:00:fe:5c:c7:ff:63:
24:da:b1:1b:90:1c:7e:9f:1c:d6:2c:48:42:a4:78:
cd:26:01:15:d1:90:53:4e:2a:6d:0d:c1:ca:cb:b9:
a7:64:cb:ca:f0:86:3d:de:c1:11:80:d2:36:e7:30:
c3:d0:c1:ef:f8:40:09:f8:92:29:2f:56:5e:85:6e:
3a:22:25:39:79:ca:0c:32:51:87:d3:d2:75:78:27:
d8:0b:ec:12:34:29:36:9e:94:1a:d7:e7:aa:48:a1:
7c:51:b9:05:f2:d0:39:eb:12:d0:26:ac:a2:be:e6:
21:8a:5b:eb:25:06:1e:8b:1f:c7:9c:25:87:9a:ca:
26:be:d1:cf:91:2d:c8:37:37:66:49:63:94:6f:b1:
2c:12:8b:c6:1f:34:06:cd:6c:a5:7a:9d:34:cc:4e:
28:67:73:e2:96:72:76:88:57:8e:e5:5d:52:62:47:
fa:e2:d9:a7:2f:60:e7:d7:b4:7a:79:6d:e8:ce:20:
2a:49:90:7b:9f:45:c9:5a:e1:ca:22:e7:e8:18:35:
ab:54:39:13:34:aa:b9:1a:07:41:4e:6f:1b:63:98:
5f:dd:07:46:b9:3a:d2:ac:e4:b3:8b:1a:75:40:22:
27:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:C8:C3:6F:50:E9:B3:DE:5B:29:B2:DD:0D:DF:D3:C6:0E:00:CE:A5
X509v3 Authority Key Identifier:
keyid:E3:F1:9C:C5:E3:8D:8F:9C:1D:65:47:17:76:65:F8:92:11:DE:C8:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:72:3a:41:fe:0c:19:12:00:0c:f9:e4:a3:33:96:6b:e7:e4:
a8:f0:3e:af:b8:e1:45:28:dc:77:52:af:33:5d:2f:6f:83:5a:
b9:77:a8:5d:79:64:34:60:80:8d:8e:1a:f8:68:3c:d0:a1:4f:
4f:b4:6c:82:bf:69:8f:1e:13:aa:f6:d8:27:2c:7d:fd:29:fe:
e9:2d:b0:b6:5e:9e:c6:0a:dd:2f:02:5d:56:c4:d7:14:7b:85:
6c:17:21:a0:10:4a:78:ea:da:46:23:9e:e0:38:ff:21:c2:61:
41:8e:ed:d0:98:dc:b0:3b:dd:81:fc:4f:81:08:f0:4d:65:95:
a7:2c:cd:48:c5:2b:0d:b1:3c:3a:d8:b6:87:7b:fb:e3:e7:b7:
1c:44:3e:88:f2:c6:b5:6b:1b:17:8a:cf:33:6d:2f:59:b8:8e:
b7:0a:5f:41:0f:b5:d3:ab:5b:ff:53:be:f1:59:fd:02:5b:6a:
34:ce:3a:3d:0d:e4:3a:65:35:9c:1f:1b:a5:ce:2c:fc:1f:09:
48:ef:5a:ed:f7:e2:01:1f:1a:cb:51:1b:c9:49:be:08:66:35:
31:4c:fd:55:4a:57:d1:55:08:30:e0:62:91:06:1c:41:5d:50:
fb:2a:be:3a:2c:c9:ee:7b:7c:6a:bb:e3:5d:80:5f:66:d0:2c:
b2:58:98:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:25:20 2025 by rpki-client