Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
File: 4z2f_axY52ErCVFE_sBrolhapqg.mft (raw, json)
Hash identifier: JiVVGjnPQ+ClWUehrNFTtTwynSzW8H7SU/nP1OO/vvA=
Subject key identifier: 7F:16:E6:12:97:57:B5:B0:62:8F:83:48:3C:0B:4E:E7:C9:0F:5B:0E
Authority key identifier: E3:3D:9F:FD:AC:58:E7:61:2B:09:51:44:FE:C0:6B:A2:58:5A:A6:A8
Certificate issuer: /CN=e33d9ffdac58e7612b095144fec06ba2585aa6a8
Certificate serial: 01974742802B73E291195B103C40C64C1704
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
Manifest number: 12D2
Signing time: Fri 06 Jun 2025 22:00:29 +0000
Manifest this update: Fri 06 Jun 2025 22:00:29 +0000
Manifest next update: Sat 07 Jun 2025 22:00:29 +0000
Files and hashes: 1: 4z2f_axY52ErCVFE_sBrolhapqg.crl (hash: vXniAxBO8gEdkgTXagZCP2pLovB6whFwY765I4bIsrM=)
2: kDBI9l_YMVWuxKarh0cfBt-co8E.roa (hash: Cmec62sAgGLnTuvkkeIcYM85TIkQ74UMRSA2arV5eDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:42:80:2b:73:e2:91:19:5b:10:3c:40:c6:4c:17:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e33d9ffdac58e7612b095144fec06ba2585aa6a8
Validity
Not Before: Jun 6 22:00:29 2025 GMT
Not After : Jun 7 22:00:29 2025 GMT
Subject: CN=7f16e6129757b5b0628f83483c0b4ee7c90f5b0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:94:7b:c3:72:b6:16:7e:09:03:9a:49:5f:84:
9c:48:bc:4b:0d:bf:0b:73:b7:9e:7e:13:d6:a6:d2:
25:5b:d9:68:fd:1b:4f:85:3d:dd:eb:b6:c2:82:bc:
a3:93:82:01:bf:70:a1:e8:fe:4c:ce:fe:11:e3:31:
cf:82:bf:3a:13:fc:ef:de:96:fe:19:b2:33:05:aa:
58:6e:89:20:85:2e:8a:70:91:b8:66:cc:9b:f7:1d:
da:54:44:bc:19:af:3a:ff:4a:33:85:a6:e7:d4:bc:
6a:6a:ab:f3:8e:fd:c5:95:9e:27:66:14:c2:5d:ae:
06:1b:e6:d0:26:0d:49:af:7e:cb:d0:1d:49:bd:2a:
2f:25:42:e2:d0:26:84:e1:54:76:bd:d9:ff:06:77:
c3:b3:9b:2c:19:0f:c2:7a:fc:cc:8c:2e:ff:9d:d0:
af:89:a3:04:b9:ec:ee:d0:e4:90:6e:6a:7f:b2:71:
1e:6c:49:a4:66:8d:3d:b5:10:18:f4:20:c1:7b:13:
2d:fe:f4:71:a4:6d:12:ce:28:d2:ec:34:8b:d9:61:
00:c8:68:e6:7a:df:5e:94:12:92:f6:f9:50:1e:fe:
cd:90:9b:36:4e:d7:4d:26:b9:e1:5e:9b:d3:ea:f0:
c8:9a:b1:9d:d7:43:5e:77:07:f8:5a:cc:b1:e5:b7:
a3:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:16:E6:12:97:57:B5:B0:62:8F:83:48:3C:0B:4E:E7:C9:0F:5B:0E
X509v3 Authority Key Identifier:
keyid:E3:3D:9F:FD:AC:58:E7:61:2B:09:51:44:FE:C0:6B:A2:58:5A:A6:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:0c:7d:5c:f8:4b:1f:b2:15:45:3c:68:37:90:81:a4:1d:bf:
5d:65:dd:9b:b8:c6:53:da:87:f6:7d:0e:24:c1:d7:15:4d:ec:
8f:5f:2c:f2:11:42:16:27:92:65:c5:c9:89:d5:e1:a6:fa:b3:
de:64:09:78:3f:f3:0d:c7:8a:fa:8c:9e:54:d8:72:36:59:b0:
b2:1e:a5:40:91:b5:6f:e2:e3:67:7a:ec:fc:db:d7:68:1a:6d:
9a:a1:21:a4:bf:5c:d1:a2:7d:66:39:22:ec:24:c3:a3:0e:93:
3e:40:69:8b:d5:e1:b4:f9:b7:2d:98:4a:a6:f8:5f:3d:a7:7c:
dd:f9:57:91:21:8d:a3:48:43:48:92:42:0b:9a:00:75:95:df:
ba:49:e7:39:65:da:27:18:0f:71:99:80:31:8b:5a:b2:ea:8e:
73:f5:01:2e:de:56:78:a4:1c:f3:53:c4:6b:52:c7:bd:71:bc:
66:de:50:03:4b:50:5b:de:7e:53:9d:75:77:8b:14:be:a8:d9:
d4:e4:92:3e:45:ca:a4:d4:95:ea:ab:16:58:fb:24:65:c4:a0:
ba:5e:0a:b1:8e:2c:78:92:78:c1:69:c3:12:cf:6c:62:97:89:
f7:db:21:6a:0f:d1:ab:59:54:67:e0:7c:71:f0:42:3d:81:2c:
1e:c3:4f:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:59:06 2025 by rpki-client