Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
File: 4gShwspKTbAzN142DeMjeQumpbk.mft (raw, json)
Hash identifier: gSRG1udouzUMKJ9W7IX4OXfIapUAs86akz2GrKruNUU=
Subject key identifier: F2:97:18:15:F3:21:26:85:60:D9:9B:6F:AD:5C:CD:9E:78:B7:FF:57
Authority key identifier: E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
Certificate issuer: /CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Certificate serial: 01974A0CC375E853BFE429F24BAED8247785
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
Manifest number: 0E11
Signing time: Sat 07 Jun 2025 11:00:39 +0000
Manifest this update: Sat 07 Jun 2025 11:00:39 +0000
Manifest next update: Sun 08 Jun 2025 11:00:39 +0000
Files and hashes: 1: 4gShwspKTbAzN142DeMjeQumpbk.crl (hash: KptJ50uzUSiGtBs3RJfLQEAPrf3L+PSuHUHvk+KY6CY=)
2: gA2VeOc__NflxeLdsWWIIUZ9Deg.roa (hash: ipk5YS27VQlaPqS1epEEueLOZHeXvism8b/2q3vbuaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:c3:75:e8:53:bf:e4:29:f2:4b:ae:d8:24:77:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Validity
Not Before: Jun 7 11:00:39 2025 GMT
Not After : Jun 8 11:00:39 2025 GMT
Subject: CN=f2971815f321268560d99b6fad5ccd9e78b7ff57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:84:86:ac:62:28:e0:71:67:86:a1:b4:3e:8a:
5b:15:d6:a8:f3:1b:06:76:ec:83:6c:e5:b6:3b:01:
f3:6b:3d:23:82:a3:f1:65:8b:46:7a:45:d3:b5:c6:
0a:e9:83:10:09:0b:b5:2e:1c:6a:47:f2:19:1c:bc:
cf:b8:d5:52:2d:f0:a8:a0:7f:2c:ad:2c:a7:81:4e:
73:39:8e:e0:1c:f6:20:37:ff:19:8a:59:6a:a8:0d:
d8:a1:46:cc:2b:44:99:77:fb:6b:41:17:8a:f9:87:
39:cc:ba:c4:52:c0:2d:b1:3d:fb:f4:a5:1d:79:3b:
aa:fd:17:97:23:cc:53:1c:8a:b8:20:86:40:7d:fa:
18:99:d1:23:c6:ff:7c:4b:2b:bb:30:70:36:63:8b:
8b:ca:ea:ac:fc:79:75:e9:0e:00:ae:cb:6f:06:67:
04:c4:70:27:85:67:d9:71:5a:56:39:74:ac:e1:57:
ee:a6:7c:e6:da:ce:78:21:0e:c0:b7:cb:33:b9:38:
00:6d:56:97:0a:b8:e9:22:3d:ce:35:ab:04:7c:46:
fa:b5:3c:54:3f:67:ef:1c:08:40:c9:b9:e8:20:5e:
e3:9b:7d:22:3b:1f:c2:d5:24:14:88:be:93:1d:5c:
af:9a:b2:d8:33:60:7e:c0:23:e2:fd:6a:7d:4a:86:
29:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:97:18:15:F3:21:26:85:60:D9:9B:6F:AD:5C:CD:9E:78:B7:FF:57
X509v3 Authority Key Identifier:
keyid:E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:ee:d3:48:4e:27:a9:a7:89:20:6a:1c:c2:d3:c2:82:79:71:
07:4c:e3:be:97:f9:cf:1e:80:8c:b6:32:d0:0d:00:41:db:d5:
dc:0b:a0:34:37:93:8e:8e:62:5d:51:60:66:63:10:ee:d1:46:
ff:2f:91:bf:e9:1b:22:cc:3d:db:eb:74:bc:bb:66:ac:93:95:
a3:7a:4e:d2:e0:31:73:ed:a9:41:af:0a:6c:ef:f1:e8:78:0c:
73:1b:4b:67:ab:47:4d:4f:2a:dc:b5:12:5d:66:41:26:3a:42:
d1:66:64:a1:d3:21:62:dc:33:85:92:5c:00:61:6f:cd:78:c0:
2e:b1:d1:49:a9:16:25:09:dd:a5:d3:2a:d8:04:39:5d:95:9f:
d2:b4:75:d4:df:ed:1d:a9:da:23:41:f5:ff:12:5f:74:44:ba:
f7:e8:99:47:66:17:e3:b3:f6:9d:4c:3e:35:69:19:ad:99:a3:
47:04:2f:5a:85:55:70:3d:23:ce:1e:eb:9d:eb:3d:3f:e7:a7:
6b:e0:e4:0d:db:f0:9a:e3:ae:d1:4b:fd:8b:45:f8:4a:d7:2d:
68:1a:ac:15:2b:ca:7c:12:64:1b:65:61:85:81:ea:b4:a9:99:
1a:e6:02:71:bb:82:2f:72:35:85:a7:f1:b5:f9:e6:aa:6c:24:
af:08:3a:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:52:54 2025 by rpki-client