Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
File: 4gShwspKTbAzN142DeMjeQumpbk.mft (raw, json)
Hash identifier: fh+aaMSvv2rYVAZct1h8fTXubcWzpIDlmDiTqRx80ZY=
Subject key identifier: 80:37:F2:FA:DF:EC:87:0E:C4:FC:D2:18:EA:9F:F3:5A:62:6D:07:05
Authority key identifier: E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
Certificate issuer: /CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Certificate serial: 019932A4564CC90DA50DA97ADF63EF51C0B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
Manifest number: 0F0E
Signing time: Wed 10 Sep 2025 08:00:54 +0000
Manifest this update: Wed 10 Sep 2025 08:00:54 +0000
Manifest next update: Thu 11 Sep 2025 08:00:54 +0000
Files and hashes: 1: 4gShwspKTbAzN142DeMjeQumpbk.crl (hash: uPPy77mzglfEjJUsjYihNDGEJYZxStsGZS7m2EkrCr0=)
2: gA2VeOc__NflxeLdsWWIIUZ9Deg.roa (hash: ipk5YS27VQlaPqS1epEEueLOZHeXvism8b/2q3vbuaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 08:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:a4:56:4c:c9:0d:a5:0d:a9:7a:df:63:ef:51:c0:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Validity
Not Before: Sep 10 08:00:54 2025 GMT
Not After : Sep 11 08:00:54 2025 GMT
Subject: CN=8037f2fadfec870ec4fcd218ea9ff35a626d0705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b1:5d:0d:d6:f2:2e:c1:dc:8a:91:b8:e0:c1:
c9:b2:75:bb:28:21:73:4f:00:52:5c:60:8a:0f:ce:
16:be:f0:2c:d8:50:63:2f:ed:60:44:d9:80:9b:ff:
9f:90:3e:ff:b9:fa:3c:70:bd:9e:c4:27:74:39:1f:
66:06:96:9a:b8:50:7b:46:77:cb:98:38:c9:39:bd:
5f:42:f3:1c:a7:24:a1:71:f3:4e:b4:86:82:af:7d:
ca:02:be:82:4b:9e:df:de:91:26:15:36:7c:7a:17:
a4:9d:fe:e0:17:71:b7:67:18:da:38:08:c9:86:c1:
ec:b5:af:9f:d0:b6:ca:df:a5:7d:29:6c:9d:5a:17:
fc:c7:cb:62:71:ed:5a:0c:48:2f:5c:14:56:88:f7:
95:8b:a9:7a:22:bf:09:a3:68:68:8e:37:83:6d:36:
a3:df:57:26:7e:ae:b7:22:71:b9:d2:97:15:2e:75:
b9:c6:d4:68:e0:36:ba:e0:92:ce:2d:d1:8d:cd:4d:
5b:54:a1:43:0c:fa:90:db:1b:9b:b8:8a:fa:cd:f9:
b0:5e:a4:78:23:5d:6a:af:46:07:4b:06:55:3a:f0:
9b:6a:7b:a2:91:1c:b8:a1:82:34:ff:78:20:54:43:
aa:95:4f:fc:2f:93:01:67:3b:98:1c:12:4e:ff:90:
c8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:37:F2:FA:DF:EC:87:0E:C4:FC:D2:18:EA:9F:F3:5A:62:6D:07:05
X509v3 Authority Key Identifier:
keyid:E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:d0:4b:9e:9b:bc:24:6d:a0:93:90:aa:94:57:5b:6e:bb:e9:
2a:55:c8:f7:8e:00:fd:f7:67:20:a7:1e:3e:2b:88:67:8d:0f:
da:6b:c2:42:b6:2d:35:e4:d0:50:db:bd:f7:24:45:33:3d:d0:
a5:99:0b:23:e0:a3:0c:e9:d2:80:1a:6c:f4:e9:76:57:47:7f:
4c:6b:2e:e3:31:3b:41:d9:11:cb:d2:dd:f7:ff:98:ed:b2:ab:
c4:7c:23:39:ed:70:28:20:8a:27:f2:92:29:3d:5d:e0:67:00:
28:a7:04:65:da:2f:2a:c7:10:06:aa:07:a0:e2:b3:b0:ed:2c:
b6:53:10:8a:ba:3d:bc:f8:6b:77:b3:ef:0c:9f:cf:c4:24:cf:
4b:81:4b:e9:04:b9:1c:c1:08:8b:2f:16:fd:b7:e6:3e:2f:8e:
33:e2:69:e2:50:ce:46:99:b2:f9:42:d5:7f:23:84:5e:6c:da:
f9:5d:67:e9:49:15:f8:20:99:5d:44:e2:d8:c9:74:64:4e:56:
5f:95:09:6f:33:5a:7c:30:52:19:ff:27:c2:e1:b4:6b:56:b9:
d6:30:e3:83:2c:59:7b:e5:35:d4:06:4e:3f:c0:68:41:e3:a3:
9d:db:59:3d:c6:51:42:ff:24:c6:94:8f:15:14:ce:7e:95:30:
2a:e5:40:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 13:59:54 2025 by rpki-client