Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.mft
File: if4_e4M8MGAut5hY5-r67VVPTFs.mft (raw, json)
Hash identifier: k5H/7taMKfQOQlS6pTscLYF9q/VIMaKtuG63jWcx91c=
Subject key identifier: D8:DE:76:3E:71:CA:31:AF:2A:EC:EF:04:B5:B0:96:17:9D:82:49:51
Authority key identifier: 89:FE:3F:7B:83:3C:30:60:2E:B7:98:58:E7:EA:FA:ED:55:4F:4C:5B
Certificate issuer: /CN=89fe3f7b833c30602eb79858e7eafaed554f4c5b
Certificate serial: 01969F083D46DC55671CFECEBFB94F46D71A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/if4_e4M8MGAut5hY5-r67VVPTFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.mft
Manifest number: 0780
Signing time: Mon 05 May 2025 06:00:39 +0000
Manifest this update: Mon 05 May 2025 06:00:39 +0000
Manifest next update: Tue 06 May 2025 06:00:39 +0000
Files and hashes: 1: if4_e4M8MGAut5hY5-r67VVPTFs.crl (hash: 9TWOSVlXVQsx4MY4efuk1Cnm5t8LnxIZTm7Ws2hMH6I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/if4_e4M8MGAut5hY5-r67VVPTFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 06:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:08:3d:46:dc:55:67:1c:fe:ce:bf:b9:4f:46:d7:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89fe3f7b833c30602eb79858e7eafaed554f4c5b
Validity
Not Before: May 5 06:00:39 2025 GMT
Not After : May 6 06:00:39 2025 GMT
Subject: CN=d8de763e71ca31af2aecef04b5b096179d824951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:1b:ff:51:e9:34:1b:3c:46:27:aa:cd:8b:fd:
b0:72:44:d1:49:62:f5:0b:96:3b:a7:58:f6:9e:72:
1a:a2:99:2b:b4:0b:a8:df:b5:68:23:91:8d:5c:cc:
4f:2b:07:77:c5:af:53:e1:24:ff:f1:d9:c7:65:e7:
1b:09:f2:94:db:36:e6:bf:6c:32:a2:99:15:37:cc:
b4:33:d1:ba:8d:bd:ea:e4:b9:0f:f5:fa:03:1d:dc:
12:78:36:b5:8e:bf:27:a6:31:36:02:94:37:0a:0d:
77:a5:8b:16:b6:44:26:3a:01:6e:9f:e2:81:92:a8:
96:1e:b1:81:6a:63:7d:02:0d:70:a2:52:dd:6a:13:
87:bd:76:9e:c4:12:7b:9a:0b:c0:ef:37:68:d9:da:
7a:d7:a4:e3:6e:18:ed:d1:5c:4e:99:95:0d:83:2b:
47:9f:ad:30:1c:5a:f4:b2:1d:4f:7d:55:22:86:9a:
a5:eb:2a:a3:04:6e:05:3c:32:0b:24:e2:4b:83:77:
a3:2b:99:6f:eb:1d:a7:13:00:11:d5:7e:4f:ac:06:
66:3d:eb:74:b5:b0:2c:8d:2f:ae:4a:1b:3f:81:3b:
e8:68:23:f9:8e:0d:54:7d:66:32:18:0b:22:37:c7:
e8:4c:25:f7:31:78:4c:88:2e:50:43:79:6c:2f:8b:
87:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:DE:76:3E:71:CA:31:AF:2A:EC:EF:04:B5:B0:96:17:9D:82:49:51
X509v3 Authority Key Identifier:
keyid:89:FE:3F:7B:83:3C:30:60:2E:B7:98:58:E7:EA:FA:ED:55:4F:4C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/if4_e4M8MGAut5hY5-r67VVPTFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:7d:e6:cc:28:d5:d4:9f:76:94:8e:80:59:a5:fa:fe:d8:b6:
8b:82:02:be:81:f2:53:3f:71:db:03:69:56:03:d7:c4:d5:1c:
af:fd:50:ab:d4:ca:9a:88:a2:7e:85:90:0c:1a:ba:a8:be:b2:
6e:e5:ca:9c:4b:32:c4:72:73:0f:4b:87:5b:aa:2b:d3:1e:61:
29:e2:07:d3:fe:3e:02:81:ad:15:6b:3e:50:7d:6f:f3:97:d6:
39:24:0e:ec:22:16:9f:5d:2b:58:f8:26:33:1c:f1:4a:d2:65:
f1:61:9c:82:d8:57:4f:6b:39:d2:bc:a2:67:3e:f6:b4:49:ad:
8b:da:bb:1d:7d:a4:ee:b8:5d:50:60:d1:a9:61:b4:51:54:26:
75:d5:ea:c0:29:ea:85:bb:76:03:91:5f:7e:7e:cc:36:71:0d:
15:66:0b:e1:4a:72:65:b1:67:b2:6f:2d:65:6a:06:71:02:02:
7a:6f:ee:cc:3e:a2:3b:f9:f8:ba:a0:3b:26:23:b9:49:44:e2:
4f:3d:91:ac:94:ec:3f:93:76:8e:f8:16:db:1b:1d:b0:09:87:
62:98:71:f9:34:22:6b:12:93:fd:67:27:11:90:ed:2a:f2:3c:
5d:ae:fc:06:fd:ad:5e:81:67:03:e4:75:fe:52:7d:14:99:f0:
a2:71:57:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 12:03:06 2025 by rpki-client