Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.mft
File: s4WUFGIC4vbDRWsGlv8YVi8bn4E.mft (raw, json)
Hash identifier: Wyj4duUWL21gjn3e0AnnmivUG7nRurnW9Y996aHBqd4=
Subject key identifier: 07:EC:75:57:D7:1B:94:73:09:0C:FA:11:93:75:85:FE:F4:5F:9C:28
Authority key identifier: B3:85:94:14:62:02:E2:F6:C3:45:6B:06:96:FF:18:56:2F:1B:9F:81
Certificate issuer: /CN=b38594146202e2f6c3456b0696ff18562f1b9f81
Certificate serial: 01974AB1A2CFEF2A0EEB81E31DE16C483CF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s4WUFGIC4vbDRWsGlv8YVi8bn4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.mft
Manifest number: 0906
Signing time: Sat 07 Jun 2025 14:00:44 +0000
Manifest this update: Sat 07 Jun 2025 14:00:44 +0000
Manifest next update: Sun 08 Jun 2025 14:00:44 +0000
Files and hashes: 1: IcIyZXTtvGCVT7kmzm3an6XI4Ds.roa (hash: 9+rlboX5YqLY2xGwqsRBQUwcIF0ZyOqFrf8SvNh+rfQ=)
2: s4WUFGIC4vbDRWsGlv8YVi8bn4E.crl (hash: vQxwG3YgKVCI05lNjJMN//fycBN/kltvHcHsTS+IsU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.mft
rsync://rpki.ripe.net/repository/DEFAULT/s4WUFGIC4vbDRWsGlv8YVi8bn4E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:a2:cf:ef:2a:0e:eb:81:e3:1d:e1:6c:48:3c:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b38594146202e2f6c3456b0696ff18562f1b9f81
Validity
Not Before: Jun 7 14:00:44 2025 GMT
Not After : Jun 8 14:00:44 2025 GMT
Subject: CN=07ec7557d71b9473090cfa11937585fef45f9c28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:80:5e:e9:d8:2e:7c:d3:f5:7b:14:65:f1:5a:
08:7e:8e:e5:04:e0:57:29:d5:8e:12:8e:b4:71:3e:
dd:07:bf:a4:4e:47:41:b9:a9:05:7f:26:c2:78:b1:
d7:02:8e:a8:c6:46:fa:68:68:34:72:d8:9f:95:d6:
37:e0:fe:e3:d1:53:a0:30:03:22:28:c5:06:8e:be:
20:1a:ce:9a:5c:68:a2:73:90:b0:f0:38:3e:2d:8d:
75:74:9b:c3:27:3b:70:89:e6:ab:8c:2b:86:04:24:
ba:ed:f9:0d:a8:84:e5:85:47:90:3d:b0:1e:02:dc:
b7:27:96:a9:ca:e7:cb:97:d3:32:e5:c6:d6:fe:3d:
0e:8c:0e:2b:71:f6:ef:9e:b0:c1:c4:da:71:1b:ae:
c3:b5:3a:eb:0d:04:5a:00:36:a9:16:fa:8a:86:c4:
e8:64:60:a3:79:56:4c:0d:29:90:93:2a:9e:f8:0d:
92:9e:62:2c:6c:64:61:f3:e7:92:33:99:ae:74:f1:
78:f0:17:15:14:86:d8:d9:6b:4d:13:e1:6a:72:d6:
2a:97:bb:53:63:b0:48:1b:0c:d2:f2:b4:93:cf:53:
fc:76:f5:2d:d4:7d:ef:69:53:06:69:a6:f0:98:1c:
87:94:71:2f:7a:fa:90:f7:36:4c:7e:64:82:54:b2:
ea:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:EC:75:57:D7:1B:94:73:09:0C:FA:11:93:75:85:FE:F4:5F:9C:28
X509v3 Authority Key Identifier:
keyid:B3:85:94:14:62:02:E2:F6:C3:45:6B:06:96:FF:18:56:2F:1B:9F:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s4WUFGIC4vbDRWsGlv8YVi8bn4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:ed:fb:df:dd:f3:e8:ae:ec:f1:b3:aa:07:a7:8f:08:0a:a3:
f7:18:f7:50:cc:f7:cb:2f:bd:7d:67:e1:39:22:d2:a0:06:9f:
de:04:a1:55:06:b5:b1:d5:31:0a:e8:04:95:c7:14:a5:07:fb:
ea:69:4a:fd:8a:95:7c:10:82:71:cc:97:06:7e:27:6f:d2:66:
96:9a:36:f7:13:f2:7c:00:2a:5a:3b:c9:bb:84:0c:13:38:4b:
7d:9d:e1:63:49:71:31:43:59:4c:9d:12:dc:44:da:60:38:24:
87:24:18:b3:93:b3:38:5c:e8:3a:33:97:1e:8b:00:7e:0b:37:
ec:9a:c4:ab:5e:5b:bc:49:73:ea:12:d7:d5:b7:5d:07:8b:6e:
70:18:b2:70:70:35:e5:aa:54:2f:6f:d0:29:71:88:cb:23:03:
4d:26:75:54:74:77:cd:a1:dd:5c:01:d2:ea:75:69:6f:89:c8:
1d:fe:55:2a:8a:ca:e0:80:52:d8:bb:e0:64:cd:2d:07:5f:31:
7d:1c:3e:c0:d3:d9:10:0b:69:8c:b2:77:9b:b4:11:77:da:bd:
f2:72:b6:70:b4:84:e7:ef:dd:3f:11:7f:47:c0:79:8c:b3:dc:
0d:19:b5:de:a8:94:1d:25:42:01:c0:8d:df:5a:85:1b:3b:80:
0f:3e:4a:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:31:06 2025 by rpki-client