Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.mft
File: if4_e4M8MGAut5hY5-r67VVPTFs.mft (raw, json)
Hash identifier: g7dcFoWUmncnhj2Ent8Ly/OBVg3PjH/bQFEIqatiPzk=
Subject key identifier: B0:94:41:CE:09:46:99:ED:19:B7:42:0D:42:CA:DC:C1:8E:4C:2D:B0
Authority key identifier: 89:FE:3F:7B:83:3C:30:60:2E:B7:98:58:E7:EA:FA:ED:55:4F:4C:5B
Certificate issuer: /CN=89fe3f7b833c30602eb79858e7eafaed554f4c5b
Certificate serial: 0197B70F1D6D2CE13A959BC6F65ED41139C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/if4_e4M8MGAut5hY5-r67VVPTFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.mft
Manifest number: 0811
Signing time: Sat 28 Jun 2025 15:01:50 +0000
Manifest this update: Sat 28 Jun 2025 15:01:50 +0000
Manifest next update: Sun 29 Jun 2025 15:01:50 +0000
Files and hashes: 1: if4_e4M8MGAut5hY5-r67VVPTFs.crl (hash: pDJVgmI5K/r5E3WK2Oetw8jMAH4aWJ6rFjKcgC720sU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/if4_e4M8MGAut5hY5-r67VVPTFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:1d:6d:2c:e1:3a:95:9b:c6:f6:5e:d4:11:39:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89fe3f7b833c30602eb79858e7eafaed554f4c5b
Validity
Not Before: Jun 28 15:01:50 2025 GMT
Not After : Jun 29 15:01:50 2025 GMT
Subject: CN=b09441ce094699ed19b7420d42cadcc18e4c2db0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0b:3e:52:d6:87:f7:39:f6:71:6b:03:1d:7f:
5c:94:46:d9:27:c0:e0:4d:04:36:ad:36:91:2d:f7:
dc:9f:16:15:8c:00:b8:86:84:9f:9a:87:bf:6c:ca:
af:68:a1:21:0c:db:35:b9:35:9c:7d:53:36:76:44:
33:c2:19:81:af:06:0a:05:f0:44:ed:d8:fd:e0:e5:
fc:71:ef:1d:82:8b:5c:ed:99:9b:ff:7e:10:af:f9:
76:66:74:d7:7a:ba:6b:0a:ac:da:c8:8f:33:0e:a4:
80:8e:a7:ca:d7:c1:49:5c:01:31:d6:b0:50:88:90:
ec:ed:fa:97:3f:71:e8:89:8d:5e:fd:e2:16:29:c1:
70:f2:04:7f:9b:4d:e5:aa:04:d0:79:a2:1e:f7:65:
56:81:48:52:08:e7:60:35:58:93:05:45:8b:6a:43:
90:e1:4f:fb:d2:36:38:52:d7:ad:19:9d:17:fe:cb:
68:ca:23:ff:35:e0:81:f4:74:19:02:d8:54:a1:89:
12:24:48:38:3b:ba:07:70:90:91:27:a7:25:c3:8a:
eb:15:16:d8:e9:c5:4b:35:83:9c:97:9d:8d:90:9d:
15:94:3c:ea:d5:28:e7:d1:77:a1:e0:2d:b5:4c:cc:
32:1e:92:44:4a:e0:43:b3:b7:51:39:33:f8:30:84:
82:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:94:41:CE:09:46:99:ED:19:B7:42:0D:42:CA:DC:C1:8E:4C:2D:B0
X509v3 Authority Key Identifier:
keyid:89:FE:3F:7B:83:3C:30:60:2E:B7:98:58:E7:EA:FA:ED:55:4F:4C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/if4_e4M8MGAut5hY5-r67VVPTFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:4d:c8:68:79:b4:0f:de:f8:d8:e2:19:46:c2:c0:5e:a3:eb:
7b:73:d7:7b:67:6a:be:ca:0e:71:93:cf:e3:08:a4:5a:1f:7f:
b8:d0:cf:f1:2b:af:72:a5:2b:44:c2:b2:3c:b4:38:73:60:b7:
67:97:70:e4:86:b1:72:1e:6a:f2:59:6d:30:3f:e5:e7:10:3b:
b5:2d:45:59:d8:6a:d4:4d:45:bb:f4:38:81:45:9d:43:e8:93:
72:85:70:c1:1f:d7:8b:74:38:d4:9d:d1:4e:37:34:0e:7f:92:
bb:78:89:ee:78:dc:80:01:cc:c9:5c:68:f1:c9:2c:f3:28:6b:
f3:0c:6d:e4:5d:66:a4:1b:f3:a7:e5:2d:91:4c:0b:de:16:35:
ff:76:c4:cf:a7:9e:3c:0b:6f:d2:08:7d:b0:b2:04:a8:2c:99:
a6:19:55:4d:58:5d:84:c5:84:82:de:6a:fb:51:14:4c:48:98:
4c:9c:16:91:bc:2b:89:ac:73:cf:98:8a:82:c9:d1:d2:fa:9b:
28:4b:b3:92:42:a9:55:e4:fb:a8:03:ca:be:e8:b5:53:65:cf:
f5:fc:50:e7:33:65:c8:13:6c:cd:05:be:e7:8e:cd:cd:6f:fd:
da:d4:3a:f2:21:ce:2b:9a:f4:61:f8:06:e0:7f:2f:ca:4d:39:
56:69:2a:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:16:29 2025 by rpki-client