Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.mft
File: 4imzfrYwaGsTKDOEcbUtqV0gSRE.mft (raw, json)
Hash identifier: RdNEvO/1CJxQhMVZMDL7FMJSYAcBDvXeGHT9AXb7orU=
Subject key identifier: C3:18:E6:22:4A:8B:35:9E:8F:2A:83:F6:36:D5:E9:29:B1:F0:9E:FA
Authority key identifier: E2:29:B3:7E:B6:30:68:6B:13:28:33:84:71:B5:2D:A9:5D:20:49:11
Certificate issuer: /CN=e229b37eb630686b1328338471b52da95d204911
Certificate serial: 0198D4732572DBD3DA8523ED654E2AA68EF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4imzfrYwaGsTKDOEcbUtqV0gSRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.mft
Manifest number: 0B5A
Signing time: Sat 23 Aug 2025 01:02:52 +0000
Manifest this update: Sat 23 Aug 2025 01:02:52 +0000
Manifest next update: Sun 24 Aug 2025 01:02:52 +0000
Files and hashes: 1: 4imzfrYwaGsTKDOEcbUtqV0gSRE.crl (hash: e7MyjSpstmI0cm+DGSHml73AwZ+DLuupbTJ37SgZxAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.mft
rsync://rpki.ripe.net/repository/DEFAULT/4imzfrYwaGsTKDOEcbUtqV0gSRE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:25:72:db:d3:da:85:23:ed:65:4e:2a:a6:8e:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e229b37eb630686b1328338471b52da95d204911
Validity
Not Before: Aug 23 01:02:52 2025 GMT
Not After : Aug 24 01:02:52 2025 GMT
Subject: CN=c318e6224a8b359e8f2a83f636d5e929b1f09efa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:90:de:80:20:21:e2:db:4a:5a:bf:46:b9:18:
ec:33:70:1e:96:97:14:b0:38:50:f0:36:ea:83:47:
1d:20:44:96:70:c1:21:be:4a:9a:42:32:dc:70:07:
15:6d:6a:dd:e4:56:13:dd:b7:e5:1e:d9:62:0a:34:
38:ad:f4:5f:72:ee:0e:6b:da:15:da:a8:ee:a2:11:
1a:8a:e1:c5:77:cb:38:50:3e:5e:cd:ff:17:59:ab:
6a:22:d7:2c:35:e1:57:a1:a5:aa:1d:61:a6:4d:4f:
b4:78:65:66:3c:e4:e2:e0:ed:12:93:31:e4:19:fe:
0c:61:f9:ec:fb:15:a5:49:4f:d1:7e:a7:4a:90:ba:
35:0b:68:ba:b7:aa:d3:77:f8:9c:e4:3d:fa:4d:78:
0d:9a:d7:df:ee:54:c0:77:db:72:5a:ce:53:9c:57:
a0:ca:3c:47:98:d5:79:89:74:fa:a2:6d:87:47:6d:
17:bd:ff:93:ac:1f:8a:cf:47:8c:af:f0:99:92:e5:
91:2c:a0:96:db:23:92:c7:8c:18:8b:f9:2b:ae:fb:
f8:f2:52:ce:7b:53:72:5e:52:5e:b8:7e:fe:2b:28:
08:70:e2:9e:b5:ab:8e:7e:a7:62:cd:6f:47:e1:be:
32:e6:33:86:f7:6b:f1:09:e4:92:47:cb:c4:4f:c2:
53:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:18:E6:22:4A:8B:35:9E:8F:2A:83:F6:36:D5:E9:29:B1:F0:9E:FA
X509v3 Authority Key Identifier:
keyid:E2:29:B3:7E:B6:30:68:6B:13:28:33:84:71:B5:2D:A9:5D:20:49:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4imzfrYwaGsTKDOEcbUtqV0gSRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:3c:60:50:37:85:d4:9d:4d:c3:7a:cd:52:7f:da:7d:31:00:
c3:aa:cb:68:11:b7:09:bc:93:e9:af:c3:92:69:dc:e3:1a:e4:
a5:85:1a:c1:f5:a7:ae:62:aa:76:b6:71:49:fb:cd:65:32:5b:
a9:87:95:d6:91:e2:7b:b0:ba:63:e9:e0:2f:fc:70:5a:2f:b7:
5e:b9:2f:3c:69:1d:60:05:d0:e0:4b:84:31:ff:dc:c2:1f:23:
de:12:6d:a6:85:ee:ce:e1:41:39:f9:eb:03:db:8b:48:90:5c:
d2:48:64:a6:52:84:bd:ca:e4:3d:7f:bf:1d:a0:d0:af:2f:cc:
80:07:82:03:14:dd:d2:51:36:ee:42:51:a4:5a:ae:90:d7:d1:
b2:d9:9e:67:e3:c2:16:e4:40:86:dc:b7:c3:38:cc:f8:65:72:
b0:25:14:5b:df:64:8a:78:af:5d:fc:cf:e9:8a:f2:82:dc:fd:
4e:a6:c1:a3:27:8c:96:24:53:7e:73:c0:7e:bb:76:4d:61:e5:
4d:46:8f:5e:2e:91:10:35:b0:e8:0a:6b:59:ee:f2:2f:0b:b1:
c7:9f:7b:df:21:37:61:de:44:bb:6a:14:09:90:c4:67:86:14:
8e:74:89:06:22:f6:25:f4:53:11:8a:d4:fc:7b:b7:bf:0b:6b:
d3:ea:ba:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:29:31 2025 by rpki-client