Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
File: f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft (raw, json)
Hash identifier: Gh0hiU/jxZbQHfOdhlTV9tkDlSkOPpDBSDlKp1yG7Hk=
Subject key identifier: 4E:81:28:FA:51:14:EA:7C:DD:85:66:5E:CE:D2:EB:D4:53:88:BD:0A
Authority key identifier: 7F:85:E9:90:35:43:97:E3:6C:0C:A9:03:A0:C6:20:C7:70:9E:FD:CD
Certificate issuer: /CN=7f85e990354397e36c0ca903a0c620c7709efdcd
Certificate serial: 019748FA4425427787AF09F34512C765C4DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
Manifest number: 01AA
Signing time: Sat 07 Jun 2025 06:00:50 +0000
Manifest this update: Sat 07 Jun 2025 06:00:50 +0000
Manifest next update: Sun 08 Jun 2025 06:00:50 +0000
Files and hashes: 1: XIAriGwKiXIV89XyokuVSU6ok94.roa (hash: hF3zC1oiW03gwgTs9lo/n7vUmEiv8dfR/NI1cnnwuzk=)
2: f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl (hash: P97+6FQG1kjnXqIES8kOjf+joXDYytHYFYEXZC4lLkQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:44:25:42:77:87:af:09:f3:45:12:c7:65:c4:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f85e990354397e36c0ca903a0c620c7709efdcd
Validity
Not Before: Jun 7 06:00:50 2025 GMT
Not After : Jun 8 06:00:50 2025 GMT
Subject: CN=4e8128fa5114ea7cdd85665eced2ebd45388bd0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e8:1d:ca:db:2b:e2:f8:d8:34:9f:5a:16:6b:
39:d0:0c:a3:2c:78:2e:02:2d:6f:6a:12:15:0b:b1:
ac:70:2f:99:79:79:90:16:b4:f4:5e:c9:cb:69:8a:
d2:11:14:b4:77:bb:86:c0:a7:1d:91:b4:93:fc:36:
a5:bf:ae:52:a7:72:60:bd:30:d3:80:f0:a4:f1:75:
19:4a:b5:c1:68:17:31:1a:9e:91:c6:b7:c1:45:df:
8f:20:30:d7:7c:7c:8b:ea:2b:c2:5d:f8:ee:96:72:
1e:61:67:97:3e:47:12:ae:ce:ba:ce:ba:c2:57:75:
50:77:da:f7:9d:4b:8a:92:2e:13:5e:48:5a:f7:10:
25:28:1b:08:dc:68:eb:3a:58:8c:89:28:f1:96:00:
72:7c:b2:77:80:e6:a7:00:12:4d:e1:76:c0:ce:cc:
58:3f:f9:7c:bf:0e:72:3f:ba:5b:29:e3:79:2f:98:
99:5c:34:2f:66:79:67:58:f6:e9:48:6a:ed:8a:3a:
c6:84:12:5a:c7:72:f9:3b:3a:f0:84:91:69:0b:b8:
4d:97:56:48:1f:b2:cd:01:0e:91:e3:bf:ec:f7:98:
0b:78:b5:ed:26:92:32:63:ee:80:8c:66:5b:48:d0:
fb:82:44:ab:4a:17:b0:40:5a:44:c9:c2:28:37:40:
01:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:81:28:FA:51:14:EA:7C:DD:85:66:5E:CE:D2:EB:D4:53:88:BD:0A
X509v3 Authority Key Identifier:
keyid:7F:85:E9:90:35:43:97:E3:6C:0C:A9:03:A0:C6:20:C7:70:9E:FD:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:84:61:1f:60:b8:e3:94:df:3d:2d:47:56:00:06:aa:ae:a4:
aa:b4:d1:f9:ad:e9:61:94:a6:8d:45:f8:e2:b5:b2:a2:cf:f8:
bb:07:85:28:ab:20:a9:09:d6:e6:d1:23:7b:b1:b4:56:28:0b:
13:84:ec:1c:29:2a:b4:fa:3c:b5:61:02:35:88:f1:5d:f8:75:
e6:2c:63:dc:8a:04:79:06:23:01:27:29:75:b3:fb:a2:15:f5:
95:72:ed:34:dd:90:9d:fb:48:fb:9b:ac:b4:48:24:08:9e:51:
07:64:58:df:f2:35:47:75:2f:7e:07:38:d3:91:c5:24:1b:0b:
0b:e2:75:91:df:df:90:3e:f3:d9:36:a3:9c:ec:0d:3e:bd:17:
74:d0:5e:36:f1:8d:ea:6d:7a:16:e0:98:71:19:2c:5f:02:92:
57:5b:9a:85:22:43:a1:ba:b9:cf:16:60:fc:15:79:6e:3c:cb:
7a:65:29:8a:47:48:58:98:5c:65:96:41:74:a0:3c:47:79:88:
03:59:c6:c9:79:b7:46:3f:4d:48:c2:6c:1e:d1:e6:c5:b3:bf:
bc:2f:dd:6b:e3:5a:2c:56:f2:6f:2c:8e:8f:87:db:c2:fa:aa:
cd:6c:95:2d:50:d2:af:b3:b5:ed:e3:05:9c:bf:50:f7:c1:e3:
e2:bd:49:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:17:45 2025 by rpki-client