Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft
File: 4njEqqAhvti5JuNZH99QyN9rwXI.mft (raw, json)
Hash identifier: ydLBlnsu+5T2yZM+MnnkHZoQxBgU+eMZSm2IIqTr7WM=
Subject key identifier: EF:2F:57:0F:01:D5:3B:99:2F:DC:17:33:AA:10:1E:77:0F:F3:07:94
Authority key identifier: E2:78:C4:AA:A0:21:BE:D8:B9:26:E3:59:1F:DF:50:C8:DF:6B:C1:72
Certificate issuer: /CN=e278c4aaa021bed8b926e3591fdf50c8df6bc172
Certificate serial: 0196D2F5ADC4F3E7F67EFDF95BB36E886E0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4njEqqAhvti5JuNZH99QyN9rwXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft
Manifest number: 07B4
Signing time: Thu 15 May 2025 08:00:38 +0000
Manifest this update: Thu 15 May 2025 08:00:38 +0000
Manifest next update: Fri 16 May 2025 08:00:38 +0000
Files and hashes: 1: 1ypxGUz02dU-GrVHnawwOGAtbp8.roa (hash: s/FzoESG6FigLmQ9qVLEYvChgXRxC5KQ8IrkGKlYCxY=)
2: 4njEqqAhvti5JuNZH99QyN9rwXI.crl (hash: 0gc9e2FVkttMttIvRMrHAMtEJVlCMvLRz7PIL+uoITQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/4njEqqAhvti5JuNZH99QyN9rwXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 08:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d2:f5:ad:c4:f3:e7:f6:7e:fd:f9:5b:b3:6e:88:6e:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e278c4aaa021bed8b926e3591fdf50c8df6bc172
Validity
Not Before: May 15 08:00:38 2025 GMT
Not After : May 16 08:00:38 2025 GMT
Subject: CN=ef2f570f01d53b992fdc1733aa101e770ff30794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:c0:ce:d0:34:1d:1a:41:f3:a0:80:92:62:0f:
28:b1:f9:2f:9f:88:ee:92:42:0f:8c:c2:df:36:70:
97:a3:7f:45:29:83:5a:b7:75:c8:36:b9:41:f9:2c:
35:a8:bc:79:2a:4e:f0:67:0c:66:a6:45:17:b8:85:
e1:2c:6f:5b:d8:64:b8:3b:9d:f7:7b:f2:ca:3c:7e:
02:68:01:8b:7a:47:51:91:c9:73:eb:37:4c:ab:4a:
e2:4e:b1:4b:00:9e:be:6a:c2:3f:bf:aa:c6:59:2e:
5a:8b:b4:59:c4:71:c0:03:bf:47:c7:8e:0f:28:3b:
af:f2:0b:4d:e3:b6:a7:bd:e4:a1:a8:64:4b:00:71:
47:0c:41:6b:49:91:20:5a:0b:59:c2:cc:ba:dd:fb:
08:2f:dc:a0:2c:fc:df:27:ec:d4:9c:e8:1d:49:20:
46:d5:e4:bb:97:58:82:88:4f:07:56:29:3f:aa:d0:
63:78:89:bb:74:16:a7:58:2d:27:35:ef:42:fd:c8:
5c:5f:83:ed:5d:ef:6a:5e:33:6a:bc:fb:67:8c:88:
42:48:2c:c4:31:01:2e:bc:7b:d2:70:e1:09:d8:9e:
c6:8c:c7:2e:8b:e8:f4:b6:f6:c8:86:05:12:22:85:
40:ce:38:f8:d1:aa:94:65:21:52:18:d2:43:6d:b6:
6e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:2F:57:0F:01:D5:3B:99:2F:DC:17:33:AA:10:1E:77:0F:F3:07:94
X509v3 Authority Key Identifier:
keyid:E2:78:C4:AA:A0:21:BE:D8:B9:26:E3:59:1F:DF:50:C8:DF:6B:C1:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4njEqqAhvti5JuNZH99QyN9rwXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:35:65:c0:35:49:bc:6e:8d:5e:76:2d:c9:12:fc:cf:ef:84:
1b:50:f7:d5:80:f3:97:08:04:69:b0:97:1f:ee:af:dc:38:66:
b9:1f:2c:94:96:98:e2:9a:5c:09:60:c5:c9:1f:da:97:e8:1a:
a7:f7:db:ed:9f:71:cc:10:29:b7:71:29:cc:fc:fb:2b:06:fc:
3d:b7:7c:f8:4b:a2:3f:15:0b:d4:bf:49:81:2d:cb:94:25:d4:
e2:7d:b9:50:21:75:fb:1d:08:30:1f:27:ad:f6:01:3f:95:04:
d9:ac:ec:49:30:36:29:c9:22:e5:01:9f:ee:bf:98:94:0a:4a:
a7:4a:21:78:f7:44:00:39:19:38:ab:15:74:76:5c:77:d1:da:
b7:2a:1b:46:c6:4b:ce:d5:38:35:4d:a3:54:59:05:36:ce:32:
b7:08:39:50:d0:66:eb:44:41:a7:6c:bb:c1:69:10:39:c1:4a:
ca:e6:68:eb:cc:d6:ab:92:c9:03:a4:95:cf:07:9d:99:4c:70:
56:2b:e6:20:71:53:b2:17:1a:85:59:c4:fb:fb:de:35:7e:93:
e6:47:97:9c:46:80:ec:65:51:e7:e3:5e:cb:d5:e2:d9:69:46:
95:42:cf:58:4e:94:b4:25:a2:e8:6f:ed:7c:5c:d7:c8:00:ea:
39:7d:d8:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 18:15:15 2025 by rpki-client