Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
File: 4QnieMeGIlTIh1XkcXOYpVKkkEA.mft (raw, json)
Hash identifier: 8CvnZNubtlU5jS55vXcWJlczJlf44rF+HPMsuRhpgDE=
Subject key identifier: A5:B6:16:71:87:DE:6E:13:67:6D:7B:63:10:13:08:2F:6C:CB:8D:4A
Authority key identifier: E1:09:E2:78:C7:86:22:54:C8:87:55:E4:71:73:98:A5:52:A4:90:40
Certificate issuer: /CN=e109e278c7862254c88755e4717398a552a49040
Certificate serial: 0196C7CD80A4A24A8893521C987297DA7BFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
Manifest number: 02D9
Signing time: Tue 13 May 2025 04:00:55 +0000
Manifest this update: Tue 13 May 2025 04:00:55 +0000
Manifest next update: Wed 14 May 2025 04:00:55 +0000
Files and hashes: 1: 4QnieMeGIlTIh1XkcXOYpVKkkEA.crl (hash: aJve55BTaBbjEK/MlliuUvO+LH+HKF13hSssyiNhvoo=)
2: 8a9J3an90z8mWS8TkwqA1Af6V60.roa (hash: Sfg4OixpuznuGw9qd09AY2Lx61QBeTwn9kYrisQDEss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 04:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:cd:80:a4:a2:4a:88:93:52:1c:98:72:97:da:7b:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e109e278c7862254c88755e4717398a552a49040
Validity
Not Before: May 13 04:00:55 2025 GMT
Not After : May 14 04:00:55 2025 GMT
Subject: CN=a5b6167187de6e13676d7b631013082f6ccb8d4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a6:f0:12:b0:3f:18:4c:e4:4c:d3:48:ea:b3:
70:88:74:ed:5f:b8:4b:36:04:f6:74:dd:87:2f:46:
5b:5d:8c:a1:a8:6e:88:a5:a7:5f:6f:d2:a8:25:3e:
c3:a0:9f:0a:76:9a:c6:2d:e5:94:f0:81:57:95:b2:
1f:2b:6c:de:bd:4e:7a:8f:61:f3:ff:f0:30:6d:0f:
3c:6d:b1:12:33:49:08:70:a7:41:6b:01:01:06:23:
2a:b7:53:a3:9c:bd:c2:c5:ed:83:a2:d2:7e:2c:0a:
2c:5c:14:61:49:d9:d6:28:65:db:21:86:9e:ec:e6:
dc:86:b0:21:a5:fb:af:28:37:87:83:7c:3e:78:df:
26:c9:68:67:0e:15:02:a4:0a:c9:8f:e4:38:7e:cb:
03:f3:3d:39:b7:d9:ca:65:df:f7:20:d6:54:3a:e7:
13:2c:3b:e0:9e:a4:6b:93:8e:02:cb:98:33:43:73:
8c:02:35:43:5a:13:74:14:66:27:3f:6b:1a:d7:39:
f0:a4:2a:96:e8:ca:22:b3:2b:0b:79:62:56:93:0b:
50:bc:ba:68:33:5e:80:21:32:f0:36:56:79:94:ab:
e6:98:44:26:2e:15:45:ef:7e:e3:2a:15:67:5d:0c:
06:0f:d1:a7:1c:73:cc:8c:d9:78:98:15:71:a7:55:
06:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:B6:16:71:87:DE:6E:13:67:6D:7B:63:10:13:08:2F:6C:CB:8D:4A
X509v3 Authority Key Identifier:
keyid:E1:09:E2:78:C7:86:22:54:C8:87:55:E4:71:73:98:A5:52:A4:90:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:cd:ea:b1:0a:30:cf:3a:e7:8e:29:06:ae:9e:25:5f:55:98:
ab:5b:cf:33:1a:f5:7c:89:6c:37:41:84:3c:23:d0:19:da:dc:
d6:83:40:c3:a9:69:4b:a6:55:f1:03:0e:b2:8f:d8:a6:d7:b1:
ca:28:2d:54:f1:a6:f4:d3:28:ee:4d:bd:b0:ff:63:1c:cb:a6:
41:b2:74:cb:ba:84:00:49:fb:9f:44:cf:38:ec:89:a0:52:38:
a8:39:43:5f:c4:b2:a7:fd:68:37:62:d0:dc:bd:4c:6b:f7:6c:
e9:e8:b4:88:7b:8e:fc:c7:ea:aa:9c:d6:6c:ae:24:0b:71:1b:
a1:a4:a9:34:16:1e:f9:91:f3:57:ec:79:1f:d0:89:ba:d4:c6:
84:3d:bb:6a:ec:a1:a6:57:a5:72:45:db:50:d4:aa:d7:8a:31:
9b:e5:3f:18:2b:8f:6c:97:68:0c:e9:c4:e2:ef:12:3f:40:17:
94:2f:45:6e:11:a4:e1:12:07:e8:dd:1c:0a:77:1e:7f:77:56:
23:42:84:a5:91:ec:fd:ac:bd:ac:6f:00:f8:0c:df:fb:ec:ee:
ed:23:fa:03:f1:cd:89:71:83:d7:c1:9e:c3:5e:4e:fc:ca:e4:
3c:7d:7b:dd:14:6b:49:2b:15:5a:0c:a8:63:1f:c0:c1:4a:86:
09:11:d0:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 10:10:07 2025 by rpki-client