Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.mft
File: 4MQ8pMSc9lLWDM3zZuYBFQ0PALk.mft (raw, json)
Hash identifier: 3HA8hrtVruRCPpq7x2W7Rgwv4DgliPhdJ9b5OkZvX8c=
Subject key identifier: 75:89:01:3F:5C:A4:6B:7B:F9:67:FE:10:54:B7:F1:8C:A8:6D:79:DC
Authority key identifier: E0:C4:3C:A4:C4:9C:F6:52:D6:0C:CD:F3:66:E6:01:15:0D:0F:00:B9
Certificate issuer: /CN=e0c43ca4c49cf652d60ccdf366e601150d0f00b9
Certificate serial: 0197B820FE36D341C4A48B9CA18745A4484F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.mft
Manifest number: 048F
Signing time: Sat 28 Jun 2025 20:00:59 +0000
Manifest this update: Sat 28 Jun 2025 20:00:59 +0000
Manifest next update: Sun 29 Jun 2025 20:00:59 +0000
Files and hashes: 1: 4MQ8pMSc9lLWDM3zZuYBFQ0PALk.crl (hash: BA6B/hiF7DCK5gF5O/TwurTAoJQoA5S4guXkjvD9KSQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:fe:36:d3:41:c4:a4:8b:9c:a1:87:45:a4:48:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0c43ca4c49cf652d60ccdf366e601150d0f00b9
Validity
Not Before: Jun 28 20:00:59 2025 GMT
Not After : Jun 29 20:00:59 2025 GMT
Subject: CN=7589013f5ca46b7bf967fe1054b7f18ca86d79dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ac:9e:31:89:de:1c:5c:2a:27:ac:8d:39:44:
88:39:7b:39:16:48:3d:10:36:46:5d:aa:6d:40:e6:
58:0a:df:c1:29:40:cc:9a:6f:b3:ed:52:e6:28:7a:
bb:58:be:2e:10:3d:ca:31:c8:71:59:d9:e9:cb:bb:
76:38:af:9c:27:95:73:db:65:13:12:03:a0:dd:9f:
4c:34:da:ef:7a:41:37:dc:8c:63:d8:24:77:f4:ce:
e4:84:a0:57:97:97:40:d2:c7:e3:26:cc:b1:8f:02:
45:7f:66:81:16:46:f9:8c:fe:ea:44:aa:54:dc:fa:
fb:a6:2a:fd:0d:b7:e2:f1:06:93:a7:61:d9:c3:2e:
b7:00:8a:8c:74:b3:ed:85:c0:25:46:76:28:b7:d2:
fb:69:5c:43:fe:89:59:bc:dd:ad:7b:10:1f:b9:2a:
ba:65:c4:8d:91:f6:4f:72:4b:35:42:65:95:fb:35:
99:bc:95:1e:08:00:35:4d:53:24:51:18:0f:85:7a:
5b:63:57:62:dc:89:ea:93:3b:06:d4:f9:ee:19:61:
9e:d9:38:56:ae:27:ae:0d:4c:8f:d0:17:35:01:58:
05:5b:59:c9:08:cb:12:2a:54:15:04:2e:d4:33:38:
95:a9:27:d3:50:9b:70:8b:e5:13:50:64:07:b1:c8:
7a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:89:01:3F:5C:A4:6B:7B:F9:67:FE:10:54:B7:F1:8C:A8:6D:79:DC
X509v3 Authority Key Identifier:
keyid:E0:C4:3C:A4:C4:9C:F6:52:D6:0C:CD:F3:66:E6:01:15:0D:0F:00:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:34:f0:a5:da:ca:e1:d7:fb:b7:a1:d4:b9:e7:95:a1:f4:a9:
8a:26:bc:ba:95:9b:91:96:66:02:0c:12:b6:36:4a:46:1e:13:
3c:1a:24:dc:47:6e:ab:f1:46:e2:fb:26:7d:03:3d:66:15:e5:
8d:3e:6c:b2:c7:70:b2:f1:7b:f0:8b:32:14:a5:08:bf:46:6a:
fd:f6:ea:bc:05:b2:b1:ae:93:c1:f8:2e:70:6e:93:d6:29:06:
be:59:8d:92:a0:32:d7:f7:60:fa:c4:92:de:a3:90:47:92:1a:
06:a8:aa:f6:7c:9f:77:2f:e1:d4:4f:3c:60:f7:17:69:90:96:
9d:fb:33:8b:a7:fc:35:96:77:54:44:3d:0b:f2:47:98:90:93:
d1:97:66:0c:a8:2b:74:d3:a0:b3:09:8b:b1:18:d0:46:a9:df:
c9:5e:7c:3d:19:d5:49:1f:e1:e4:80:94:a4:6a:96:04:49:47:
67:8b:38:ff:08:ac:24:43:da:ae:04:2c:19:21:80:7f:88:bf:
47:36:da:1b:dd:ca:24:63:5e:27:d7:c6:16:05:e4:c4:77:da:
eb:fe:91:31:a3:95:5e:9e:42:20:3f:70:61:eb:5e:a9:fa:f4:
36:af:9e:e0:60:92:b7:12:0a:64:76:d5:90:a2:60:58:da:eb:
df:28:9a:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:07:07 2025 by rpki-client