Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
File: 4Genud52frl9tk5RZHhJRjO9VOo.mft (raw, json)
Hash identifier: OeKENBsey8GOkq6UrtxSYReEXdq4QqxdBw7DL6Z3z+M=
Subject key identifier: 07:56:DC:36:3A:F2:53:87:B7:83:96:7E:30:88:E0:66:8D:00:23:14
Authority key identifier: E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
Certificate issuer: /CN=e067a7b9de767eb97db64e516478494633bd54ea
Certificate serial: 0197B7EA9EC9403B415AA3379EBE684C706F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
Manifest number: 0BB6
Signing time: Sat 28 Jun 2025 19:01:35 +0000
Manifest this update: Sat 28 Jun 2025 19:01:35 +0000
Manifest next update: Sun 29 Jun 2025 19:01:35 +0000
Files and hashes: 1: 4Genud52frl9tk5RZHhJRjO9VOo.crl (hash: Yn2acECQBwG/8QPFf4FZonxDTs21L5FUTWmC6313UP4=)
2: DQo4EErqs46yA4QIpyLHGlOprVU.roa (hash: jpEUtUNk7NIqvU0XQCmCZgYXNkApAZ2zVdQgWdhDGWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:9e:c9:40:3b:41:5a:a3:37:9e:be:68:4c:70:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e067a7b9de767eb97db64e516478494633bd54ea
Validity
Not Before: Jun 28 19:01:35 2025 GMT
Not After : Jun 29 19:01:35 2025 GMT
Subject: CN=0756dc363af25387b783967e3088e0668d002314
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ad:c6:8c:63:62:74:e3:0c:61:70:ec:bd:02:
4a:73:4c:b3:6e:e5:37:12:4b:7c:b3:c8:d5:b9:b6:
c2:d4:0e:9e:1d:9f:67:57:1a:44:dd:6f:a7:17:39:
ba:89:c8:18:46:c7:53:02:90:2b:52:70:24:ed:48:
39:19:6d:ec:70:4f:82:99:5f:d6:e0:87:66:f9:8e:
28:a9:29:d0:22:b5:69:6f:20:6c:ce:ab:18:09:15:
4e:f9:ad:bf:92:3e:5f:89:96:1c:a7:5a:32:25:7d:
5b:e3:3a:5b:b3:cb:8e:bd:da:71:26:2c:15:39:d9:
54:6c:75:c7:ba:5d:e9:1d:6c:89:d0:b2:21:0d:4e:
96:5d:ad:84:5f:2c:72:95:bc:4b:a3:90:d1:2c:9f:
eb:4d:f6:e3:3a:79:13:38:08:e8:f8:d8:f9:53:6a:
29:6d:1b:4b:f0:1f:e5:d8:98:80:0e:43:3d:1a:af:
37:80:2e:c8:f7:83:a2:fc:fa:ef:c8:04:6e:6e:9c:
5e:e1:d1:b5:e6:56:34:42:59:69:d0:d6:3e:bc:ed:
ea:3d:46:d1:ee:23:94:7c:ae:54:c6:e9:7b:82:ca:
60:11:0d:76:c9:1e:06:0d:89:6a:bc:6c:a3:69:59:
82:5b:d5:6e:c7:10:16:ed:5b:25:63:db:34:d2:32:
64:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:56:DC:36:3A:F2:53:87:B7:83:96:7E:30:88:E0:66:8D:00:23:14
X509v3 Authority Key Identifier:
keyid:E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:82:7b:9b:d3:3c:83:7f:8c:ee:99:df:fe:b9:24:02:b7:a2:
72:fc:01:36:ac:30:5f:0e:28:27:5f:5a:ec:8f:78:41:11:58:
68:67:11:42:fc:1b:5c:44:3f:8a:30:e3:a2:b8:54:c1:03:67:
10:a9:aa:43:ad:f7:f0:29:30:98:05:ce:c8:c1:37:75:5c:96:
fc:b5:b0:28:b8:43:0d:22:11:8a:39:dc:0e:48:72:0f:fc:b4:
52:50:be:93:1d:3a:4b:3f:fb:50:aa:c2:d2:a2:f3:79:5e:a1:
11:e2:78:f3:97:5e:c1:8b:3c:2c:fa:86:0c:35:69:71:3f:96:
a7:18:23:f4:26:e6:d7:4b:1b:a1:ff:82:fd:d5:d6:0e:c1:3a:
7c:6a:c7:5c:fe:36:96:bb:8b:b2:40:b7:18:78:7e:11:83:22:
16:a4:51:52:3b:61:23:a7:d9:c7:1b:b6:f2:82:ed:1f:94:60:
b2:6d:f1:e1:42:fd:cf:67:79:8e:ec:b5:92:9e:eb:59:58:c6:
df:5c:a7:93:61:2c:7c:10:ac:22:cb:3f:04:43:2f:dd:ea:3c:
52:51:6e:c8:f6:4d:fb:b4:b5:34:90:c8:22:e0:34:76:4a:50:
4a:41:fc:f3:29:b1:93:28:0b:b7:d3:64:f3:f2:f2:ba:28:b9:
18:1b:0c:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:12:55 2025 by rpki-client