Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft
File: v4iEmi616d1XGo50O-17lRPXoSE.mft (raw, json)
Hash identifier: NH8QX5LgdCpn8rep1BTv8lx6d8LpvCut77k/rufgeIs=
Subject key identifier: B4:0E:A9:61:62:9E:A1:A7:C2:3F:9D:F5:65:81:B2:C1:1F:54:22:22
Authority key identifier: BF:88:84:9A:2E:B5:E9:DD:57:1A:8E:74:3B:ED:7B:95:13:D7:A1:21
Certificate issuer: /CN=bf88849a2eb5e9dd571a8e743bed7b9513d7a121
Certificate serial: 0197B77C005DDCEF3C40C19DC6EFF2BDB43D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft
Manifest number: 017F
Signing time: Sat 28 Jun 2025 17:00:46 +0000
Manifest this update: Sat 28 Jun 2025 17:00:46 +0000
Manifest next update: Sun 29 Jun 2025 17:00:46 +0000
Files and hashes: 1: BsVvYEeON_W4W9ZLNqa4GXckg6I.roa (hash: iOxv5V+HpG39JzWV7shdmh0Q2oD1yPq3ovyP8RI1dPM=)
2: PejYz8HPGGclVll9vz9DLWCJzMQ.roa (hash: kVrf6QXYUJflpg6RS9qqGj+K93kGQxvjJpeCSRiFtPk=)
3: v4iEmi616d1XGo50O-17lRPXoSE.crl (hash: LJPPE1IYeanUQyl8xNy+pIQ0Y1aAoI052RIAf9NUs0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:00:5d:dc:ef:3c:40:c1:9d:c6:ef:f2:bd:b4:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf88849a2eb5e9dd571a8e743bed7b9513d7a121
Validity
Not Before: Jun 28 17:00:46 2025 GMT
Not After : Jun 29 17:00:46 2025 GMT
Subject: CN=b40ea961629ea1a7c23f9df56581b2c11f542222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fe:81:e2:1a:e2:db:a4:4c:6d:81:b7:d9:39:
f4:06:f7:64:92:39:d1:c6:0d:a1:ae:d3:77:99:8c:
a5:e1:9e:db:ab:82:20:b7:8a:8a:56:34:2e:70:fa:
16:1b:b2:ea:da:fe:f1:69:03:be:b9:4d:93:13:e8:
aa:4b:ed:6b:bf:9a:fc:32:bb:b4:c1:00:a1:56:25:
f7:13:9d:4b:81:de:56:01:1f:a8:9e:e4:b5:0d:59:
ef:fb:78:b6:e2:6d:98:eb:23:fc:54:a3:49:05:11:
ff:d9:79:b8:d2:66:93:7c:c5:04:11:44:3e:4b:10:
6d:92:d9:ba:45:ff:19:27:d2:78:51:f0:e6:cd:b3:
be:7f:6b:7c:ef:01:67:a9:bc:a5:39:cd:4a:2a:e6:
d7:b1:7f:2e:fb:d2:1a:d6:b0:46:ea:fb:63:6a:40:
02:6e:10:75:86:43:a1:21:43:71:03:4e:af:40:7b:
fe:e9:b7:10:94:3f:75:27:90:82:2a:1f:c0:04:eb:
de:d7:6a:36:f2:dd:6e:41:7a:8e:aa:99:4e:b8:13:
16:11:ce:64:20:05:5d:bc:eb:83:d0:f1:ed:cf:8c:
45:30:8e:d6:dd:cd:64:1c:f3:d6:7c:e8:f6:a7:9e:
48:73:ab:95:63:a9:2e:c9:28:59:a0:ea:b2:4b:d4:
76:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:0E:A9:61:62:9E:A1:A7:C2:3F:9D:F5:65:81:B2:C1:1F:54:22:22
X509v3 Authority Key Identifier:
keyid:BF:88:84:9A:2E:B5:E9:DD:57:1A:8E:74:3B:ED:7B:95:13:D7:A1:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:d9:1f:f2:85:b9:5f:60:0a:0c:2c:a4:95:f1:5f:c3:71:66:
44:87:4b:8c:71:b0:ac:f2:ae:40:a6:9d:21:5f:95:f7:c6:e7:
fb:be:a9:60:36:2a:dd:fd:04:6a:89:ce:d0:b8:aa:1e:df:5d:
0a:dc:0e:19:8f:32:01:0d:4e:5f:46:34:79:72:c2:26:1f:6c:
68:15:e2:48:45:ee:0c:f3:6d:06:66:6b:ac:e7:84:11:00:b1:
3f:48:0f:38:b2:5e:cf:be:3b:11:5c:f0:77:ea:c0:bb:ad:eb:
97:1a:53:35:0b:6c:b8:88:e9:09:4b:4f:e9:d5:32:a6:14:0a:
44:61:5a:64:6e:77:13:8c:de:4b:1e:ac:0e:1b:10:b1:12:da:
d2:d2:6d:40:e5:9d:12:6f:ad:8b:a9:23:f3:40:df:c7:0d:f2:
c4:99:10:89:f6:14:8a:dd:67:21:17:ff:ec:2a:a6:01:f4:51:
10:5d:34:b8:0c:df:38:57:7b:0f:23:5a:f5:c5:c7:13:49:1d:
22:e9:3f:d6:13:20:7e:02:6f:c4:b1:6b:83:dd:b8:16:29:9c:
0e:12:bb:2e:70:89:39:b5:ce:f8:02:e0:e6:35:4f:9d:25:86:
16:d2:ca:c3:41:b0:eb:84:3a:ba:74:5b:32:0c:51:aa:97:d9:
a2:7b:46:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:06:02 2025 by rpki-client