Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
File: 4toj07kw1MHzrHMGXXGmB8NdKQA.mft (raw, json)
Hash identifier: JEyFdGtMbA7+BQAqwh1mAzr4a2rjWz6E9icIh1nlwDw=
Subject key identifier: 92:15:6D:EC:5D:42:6D:4C:C1:D1:C6:0D:BE:E7:CC:CB:9C:B5:47:E2
Authority key identifier: E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
Certificate issuer: /CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Certificate serial: 0197C2A47B5415DDD80E88699C7D0305FE40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
Manifest number: 15BE
Signing time: Mon 30 Jun 2025 21:00:48 +0000
Manifest this update: Mon 30 Jun 2025 21:00:48 +0000
Manifest next update: Tue 01 Jul 2025 21:00:48 +0000
Files and hashes: 1: 1-rU3n-MmX0x7vSSIglpKrM6p7wc.roa (hash: c73xh5XkAcPFRSo/oWqlfjE2NzFubQ+3BLO5+whFr6o=)
2: 4toj07kw1MHzrHMGXXGmB8NdKQA.crl (hash: OWjgdysxa4+kGjPOAea1ItE01FDL3i43vahv66Jeb28=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 15:11:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c2:a4:7b:54:15:dd:d8:0e:88:69:9c:7d:03:05:fe:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Validity
Not Before: Jun 30 21:00:48 2025 GMT
Not After : Jul 1 21:00:48 2025 GMT
Subject: CN=92156dec5d426d4cc1d1c60dbee7cccb9cb547e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:4a:7d:fd:4f:19:25:d8:33:51:b1:e5:d6:4a:
17:83:b2:6c:c1:f7:47:2c:f5:27:b3:9e:6d:48:79:
3c:4d:ee:4f:c4:07:16:5d:69:16:fc:ce:ef:f6:cc:
3b:e3:2f:07:1f:c3:ee:88:d1:c2:36:6e:be:57:cd:
5f:3b:f4:6f:dd:a5:ab:8c:f4:18:e7:8e:c7:85:b0:
6a:33:8c:21:8b:b4:c4:76:d6:ed:f9:67:6b:d7:83:
51:ad:fb:f3:8a:68:fe:ff:d0:07:ae:ba:d9:f0:08:
61:53:52:2e:17:25:3c:d9:62:16:d5:94:5e:e5:30:
11:92:ef:f6:6b:68:63:94:b3:e2:b1:99:95:ad:8c:
b0:2a:26:7b:60:0f:d2:c8:80:00:88:b7:35:91:7a:
b9:74:c9:61:d4:2e:b7:6b:96:f2:15:66:4d:fa:d1:
78:47:99:80:76:e1:79:2b:1b:a2:63:10:91:aa:ae:
81:8e:32:c1:e3:a4:05:54:d6:59:5f:9c:56:d1:31:
6f:0c:3e:14:d3:f2:0e:5e:08:e9:52:90:7c:0f:ee:
1c:86:60:b5:dd:80:0a:a6:cd:12:8f:78:e4:d2:bf:
2a:ce:f8:6e:b6:e4:82:0f:4b:af:e5:56:45:a7:fd:
fc:e6:97:bf:75:4a:d3:c0:e4:92:ff:c2:24:dc:19:
47:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:15:6D:EC:5D:42:6D:4C:C1:D1:C6:0D:BE:E7:CC:CB:9C:B5:47:E2
X509v3 Authority Key Identifier:
keyid:E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:d1:70:1e:54:06:55:52:74:43:33:cd:d9:d4:83:aa:85:a8:
9a:c4:e4:86:00:44:92:8f:4b:8d:ad:38:9d:fc:02:6e:33:7b:
a3:e0:5a:a7:71:11:c4:7a:bd:06:c9:46:ac:06:7d:9d:da:9f:
34:bd:34:ce:e8:2c:ad:6a:8a:c2:e6:77:39:42:60:e5:e3:ba:
a9:92:e6:8b:cb:db:b2:37:e5:e5:4f:0d:8b:ef:e5:4c:e7:61:
2b:89:22:fd:e5:12:80:48:0c:50:35:63:86:75:d7:a4:75:ba:
15:37:29:10:b6:61:21:f0:5c:53:33:88:3c:22:29:e5:98:b0:
f4:63:b6:ea:e4:10:84:d5:53:cb:20:24:57:1b:11:f9:a1:0f:
32:48:d2:be:b9:fe:f3:84:3b:70:05:0c:9a:6f:fe:a1:3a:37:
32:da:8b:43:77:36:f4:a6:bc:5e:69:d9:92:2a:98:1c:74:88:
a4:d6:43:30:f9:c0:61:1d:b7:bc:82:55:35:3e:59:cc:b6:36:
9a:4a:91:d1:32:d6:c5:a1:8e:d4:fe:70:fd:a7:d8:9e:c8:e2:
ac:17:98:38:f2:18:b1:74:fd:13:4c:bd:ea:61:cb:99:ba:48:
9d:29:e8:74:29:75:80:32:70:ae:09:b1:42:e8:62:ba:4e:e9:
bf:2c:69:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 00:35:19 2025 by rpki-client