Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
File: U4Vcjs6b1vjjlAICISzgmwX1-KA.mft (raw, json)
Hash identifier: VLFkVsp7dULhwla7bnMl+kKjzJVyVdBoHOjBYZMiS5o=
Subject key identifier: 4C:C9:5E:FB:16:8B:8E:E4:DF:71:24:F4:F8:1E:73:5E:39:6C:5C:FD
Authority key identifier: 53:85:5C:8E:CE:9B:D6:F8:E3:94:02:02:21:2C:E0:9B:05:F5:F8:A0
Certificate issuer: /CN=53855c8ece9bd6f8e3940202212ce09b05f5f8a0
Certificate serial: 01974B1FA17B9957BDF4130F03DCD3F85A34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
Manifest number: 1210
Signing time: Sat 07 Jun 2025 16:00:53 +0000
Manifest this update: Sat 07 Jun 2025 16:00:53 +0000
Manifest next update: Sun 08 Jun 2025 16:00:53 +0000
Files and hashes: 1: F1LbGv2MkXWWefxkT_CtpriNBr4.roa (hash: RRHmy9X/CGJW+TnFMQF3NirLVJyyI3P64OOzvqQr238=)
2: U4Vcjs6b1vjjlAICISzgmwX1-KA.crl (hash: cEIYE7bbYXVuzlWnCZqT/+HYlyyPur2wv3OkEUgExFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:a1:7b:99:57:bd:f4:13:0f:03:dc:d3:f8:5a:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53855c8ece9bd6f8e3940202212ce09b05f5f8a0
Validity
Not Before: Jun 7 16:00:53 2025 GMT
Not After : Jun 8 16:00:53 2025 GMT
Subject: CN=4cc95efb168b8ee4df7124f4f81e735e396c5cfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:9b:33:3b:45:a5:45:bf:47:06:92:bc:92:ad:
14:0d:ea:5e:88:96:0e:c3:0c:f6:55:53:31:1b:4c:
34:98:a3:0a:41:f0:95:60:2a:3b:f7:44:63:30:6c:
73:36:3b:54:fb:ee:6e:71:37:27:37:fb:9d:48:f9:
70:4a:e9:e2:98:74:21:e0:7f:e5:05:43:f2:81:1e:
9f:c4:93:c2:73:9a:94:31:92:e2:8f:c9:2c:be:5a:
d1:f1:1f:25:bb:3b:14:43:6e:c6:ac:ef:d5:d6:92:
88:88:30:f5:6c:d8:a4:02:06:57:1f:fc:ba:55:de:
24:1f:c9:7a:41:64:07:de:a1:fc:70:a5:2b:70:40:
9a:85:d5:da:a8:23:5d:67:12:61:5c:42:8f:6f:1e:
18:9b:3d:97:f6:7b:92:92:77:b4:ee:67:df:4a:9d:
25:51:3b:54:ea:b2:25:a1:67:88:c2:f6:f8:5d:06:
73:eb:23:6e:35:e7:69:83:fe:df:a5:37:17:5e:b8:
39:32:ae:ce:02:e5:33:b9:ee:fe:c0:6d:c2:cc:0a:
99:d2:51:bd:09:0b:dc:05:26:b3:eb:34:5e:39:36:
72:a3:ee:d3:d8:95:31:3c:7d:ab:b2:82:03:f2:74:
08:a3:34:19:7c:f4:8d:29:fe:cc:fd:27:1b:70:94:
6b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:C9:5E:FB:16:8B:8E:E4:DF:71:24:F4:F8:1E:73:5E:39:6C:5C:FD
X509v3 Authority Key Identifier:
keyid:53:85:5C:8E:CE:9B:D6:F8:E3:94:02:02:21:2C:E0:9B:05:F5:F8:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:bd:e9:16:b4:69:d4:8f:02:7f:2c:70:6f:1a:3a:49:a7:ef:
b9:2e:36:14:18:45:50:58:7b:ba:a5:e9:b4:1a:a8:05:32:4c:
ca:be:e3:c9:28:f3:74:e2:51:fe:42:5c:62:1f:00:27:4c:7c:
bd:fc:53:22:6e:bb:d6:79:8a:ba:98:9e:0a:d1:f8:5a:47:f4:
f6:f7:a0:be:a0:5e:43:61:69:bc:a6:52:77:ad:3b:3c:08:ef:
2f:fe:7e:cc:08:5b:39:4e:f0:97:50:ca:46:4c:08:28:59:55:
4d:19:b8:44:2d:d4:7a:01:18:3c:3e:d9:22:cb:5d:46:69:37:
7f:92:5e:06:77:e6:61:0f:9d:42:fc:e3:31:c3:cc:19:3f:df:
8f:be:44:a2:b0:ad:dd:94:13:c5:51:ea:f1:01:33:26:df:0a:
79:b5:75:ff:1f:24:ff:c6:fc:39:b8:69:9e:26:f5:73:65:48:
da:4e:1c:29:b8:50:f9:57:81:bc:f5:d3:e3:cd:a1:42:82:f5:
b4:4f:cd:47:34:7e:1b:28:3f:43:14:8a:d8:e8:ef:29:c5:26:
81:4d:86:ba:64:20:8d:7c:a9:21:4b:e8:82:dc:db:a3:c6:38:
21:df:45:8b:05:4f:95:54:cb:9d:6b:ac:01:d5:db:22:6e:05:
cb:68:cb:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:22:16 2025 by rpki-client