Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
File: 4kCgJeDmGkTZPkqAHjiIsm570kE.mft (raw, json)
Hash identifier: uNJgec62uDla35WtWa2qPxharq0R9d6arGtr6Z7sC9E=
Subject key identifier: C5:33:A9:94:AD:B7:64:70:8A:05:62:FB:8F:DA:5E:38:7A:00:8E:6A
Authority key identifier: E2:40:A0:25:E0:E6:1A:44:D9:3E:4A:80:1E:38:88:B2:6E:7B:D2:41
Certificate issuer: /CN=e240a025e0e61a44d93e4a801e3888b26e7bd241
Certificate serial: 0197BDB5E92A2FDD6290CFF37F098759A106
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
Manifest number: 15BB
Signing time: Sun 29 Jun 2025 22:01:44 +0000
Manifest this update: Sun 29 Jun 2025 22:01:44 +0000
Manifest next update: Mon 30 Jun 2025 22:01:44 +0000
Files and hashes: 1: 4kCgJeDmGkTZPkqAHjiIsm570kE.crl (hash: RW85oWDJZnA7QrIuBpKyonmvytxN6lle4BZQahbkjGQ=)
2: K7SH4zYCXr-cp1q6N2Mp-Gdj1PU.roa (hash: fOTEXpl4gYkXzMjvkhlooQdp3U8U0Z9lMps20TcryK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 22:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bd:b5:e9:2a:2f:dd:62:90:cf:f3:7f:09:87:59:a1:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e240a025e0e61a44d93e4a801e3888b26e7bd241
Validity
Not Before: Jun 29 22:01:44 2025 GMT
Not After : Jun 30 22:01:44 2025 GMT
Subject: CN=c533a994adb764708a0562fb8fda5e387a008e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4a:75:1c:5a:21:91:d2:75:e9:64:cd:06:b1:
d1:be:a0:7a:9d:62:9c:73:c0:19:73:df:fa:06:a8:
a7:eb:60:bb:2c:6c:a8:64:11:24:fd:98:74:79:41:
84:4f:35:e1:08:5d:42:e1:81:ea:fb:5f:f0:f2:86:
18:29:a4:31:8c:d3:83:3f:72:19:64:f5:66:44:29:
1b:8b:bd:6f:d0:64:a5:36:33:d9:20:45:cf:47:0f:
9f:9a:18:70:96:fe:4d:b2:9d:8f:af:be:68:d8:4d:
02:ba:53:08:2a:c1:5e:f1:d6:18:d6:0e:8e:70:9a:
3f:bb:1b:a6:cf:f1:bb:a2:77:b5:6e:76:eb:e5:80:
e3:39:ab:2f:f0:e3:d0:1c:cd:30:1c:a1:e7:93:1e:
4e:c8:12:f6:65:e7:1c:14:82:32:20:13:1a:1d:1c:
46:14:20:a4:36:4e:48:d1:ed:c6:6e:be:c2:7d:8a:
65:0b:77:31:e7:f6:56:00:19:b3:2a:02:5a:b4:70:
bf:72:d3:be:74:52:3f:36:33:4c:5f:f7:f8:56:c2:
47:9b:15:fd:a5:50:8d:3c:eb:63:74:2b:6b:87:a9:
5d:7f:85:59:47:87:f1:b3:03:a8:93:3e:50:16:d1:
eb:d7:ae:87:b2:27:a1:11:be:a8:ec:05:fa:5f:67:
32:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:33:A9:94:AD:B7:64:70:8A:05:62:FB:8F:DA:5E:38:7A:00:8E:6A
X509v3 Authority Key Identifier:
keyid:E2:40:A0:25:E0:E6:1A:44:D9:3E:4A:80:1E:38:88:B2:6E:7B:D2:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:d4:e8:22:d9:95:28:53:63:d4:e0:bd:d3:21:d1:bf:16:3a:
3c:1a:7b:de:1d:8f:a7:3d:13:39:cf:f4:1c:3d:42:6b:14:8b:
fc:14:45:96:1b:ff:e9:42:32:49:6a:49:85:ff:4d:dc:97:9c:
d7:f1:9d:32:59:0d:12:c7:2a:61:f5:77:ec:02:dc:40:3e:db:
14:8f:ec:eb:e0:d3:60:00:c5:66:7a:37:6e:84:61:63:47:12:
6b:96:1e:c8:c0:83:ae:e0:61:ac:19:bb:38:05:dc:39:45:e5:
c4:2f:ad:5d:c5:e0:82:6c:6c:8d:b5:70:20:c1:e7:88:bd:90:
ca:44:2d:0e:6d:b5:c0:80:c5:29:ac:53:e4:01:17:83:ab:52:
76:f3:91:4a:10:1e:75:8c:90:d0:27:ed:a6:e9:d0:d8:c2:e6:
a6:43:fe:fb:66:c7:bc:a8:a4:b9:78:9c:58:78:48:9f:4e:6b:
5c:80:40:41:21:63:a0:59:b0:ac:68:7c:89:7e:92:05:0b:94:
25:93:9d:d0:1d:2a:60:17:e5:4f:13:8a:19:ff:11:38:9a:5e:
b8:c7:c2:25:a4:6d:fa:97:16:a1:cd:2f:ae:28:11:1f:9d:12:
dc:55:47:38:35:a1:1d:c6:4e:3f:30:1b:e7:69:46:fa:5e:a0:
2c:76:e1:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 06:20:28 2025 by rpki-client