Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
File: 4KM3CoQbiT57aPhqOTNjWC4QVkg.mft (raw, json)
Hash identifier: 5EmL+drLpzNuyXKJ391RxYHiSbyHNMwen4GtKNT8bjU=
Subject key identifier: 9C:B1:71:F0:04:3E:22:28:BC:41:3E:C0:CF:8F:F4:A0:D4:64:B2:7C
Authority key identifier: E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
Certificate issuer: /CN=e0a3370a841b893e7b68f86a393363582e105648
Certificate serial: 0198D4E055DE4640698A0BFF9C840F1CEE17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
Manifest number: 0B23
Signing time: Sat 23 Aug 2025 03:02:08 +0000
Manifest this update: Sat 23 Aug 2025 03:02:08 +0000
Manifest next update: Sun 24 Aug 2025 03:02:08 +0000
Files and hashes: 1: 4KM3CoQbiT57aPhqOTNjWC4QVkg.crl (hash: mHEuDRf7keK2T6/Dt6KuY+RnGgReCmNdA9ZIcl4sUfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:55:de:46:40:69:8a:0b:ff:9c:84:0f:1c:ee:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0a3370a841b893e7b68f86a393363582e105648
Validity
Not Before: Aug 23 03:02:08 2025 GMT
Not After : Aug 24 03:02:08 2025 GMT
Subject: CN=9cb171f0043e2228bc413ec0cf8ff4a0d464b27c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:90:ac:11:31:3f:a7:13:85:44:23:02:d2:ab:
8d:79:d1:d3:39:38:0d:fc:cd:36:19:a1:ec:ab:e3:
e1:11:02:51:6d:4d:4a:14:7c:c9:f8:f7:60:b7:cf:
ef:8a:a2:7d:d8:0a:81:2a:d2:46:81:f7:25:67:2e:
fd:f2:d3:4f:fd:b3:29:13:0f:17:9d:df:9b:8c:17:
1e:62:e6:bc:bc:ad:b5:03:86:75:79:77:70:4f:79:
86:f1:bc:37:04:8e:b5:05:8a:83:30:ae:5b:56:c2:
3e:b6:a4:a4:46:c3:20:ff:0a:28:36:55:90:28:cc:
3e:44:4b:ae:bf:6b:4c:b6:10:87:35:78:04:79:d8:
56:1c:9f:e7:78:d5:b8:04:59:4a:4f:3d:a5:c0:52:
67:88:e9:75:28:56:d8:e5:a0:b9:9b:16:50:16:fa:
0f:78:73:10:e9:c6:a1:41:71:be:be:e5:9f:df:30:
77:e6:25:20:76:c3:a0:37:d8:fa:1e:f7:0f:48:cb:
65:40:1a:d6:62:4f:7a:bc:5a:44:7c:67:90:63:bf:
9a:b6:18:39:fe:a5:93:8b:6f:6e:1f:5a:d0:df:87:
66:d5:b5:dc:b6:50:86:dc:75:10:a4:d7:a2:b8:3c:
e5:33:12:8b:e0:8f:f5:70:d5:71:d7:18:cd:56:3b:
9f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:B1:71:F0:04:3E:22:28:BC:41:3E:C0:CF:8F:F4:A0:D4:64:B2:7C
X509v3 Authority Key Identifier:
keyid:E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:f8:6a:55:ee:a7:58:d6:19:8c:9a:48:1f:0c:b7:07:b2:06:
cc:be:fa:3a:84:c9:79:87:c7:01:9d:79:ce:63:93:98:29:50:
fb:13:18:35:43:83:1f:17:78:1c:0d:8c:5c:85:3c:d5:b9:9b:
db:d6:2c:03:9f:55:eb:5f:e6:d7:fa:6e:31:28:2f:17:70:c0:
d0:bf:e9:4c:4c:11:7e:83:42:85:bc:a3:22:93:45:84:dd:1d:
44:55:26:2b:9b:14:95:06:7d:52:a7:11:c0:5b:b4:a8:a4:1d:
78:59:2b:fd:74:46:3c:49:e3:2c:ff:44:09:38:c3:cd:43:ff:
19:09:a1:a6:23:8a:7e:5b:8d:fd:7f:5f:34:c4:5c:9c:f0:79:
5c:90:ba:7f:95:42:ea:76:f8:3e:0e:03:0c:6a:44:b0:bb:a7:
a2:30:bd:55:db:1b:c2:ec:64:19:70:b2:2c:fd:25:3b:12:e5:
68:3d:db:15:1b:93:2f:d8:24:6e:d0:4a:e4:82:a1:28:ba:ce:
d9:d6:8b:b4:56:2b:59:30:d8:be:69:97:a5:02:9f:69:64:1b:
af:86:20:f6:00:d6:8d:8e:7a:f3:3c:6d:1c:e4:53:62:25:a5:
61:19:37:81:75:0d:16:0a:6c:a1:36:bd:53:c0:26:48:4b:18:
41:f7:34:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:16 2025 by rpki-client