Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
File: 4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft (raw, json)
Hash identifier: ZZ3S6wECFpE/Us2+sX0iwKq+P2FJ0oXezateJzxp/KY=
Subject key identifier: D7:E3:DD:E8:54:DC:D0:50:DC:57:01:87:02:44:56:30:7D:5C:E4:C6
Authority key identifier: E1:A3:23:54:64:84:22:0C:B4:02:06:33:80:F4:01:63:69:26:2A:CF
Certificate issuer: /CN=e1a323546484220cb402063380f4016369262acf
Certificate serial: 0197B77C387DC8BF139892CBE3D49DE39F24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
Manifest number: 08F9
Signing time: Sat 28 Jun 2025 17:01:00 +0000
Manifest this update: Sat 28 Jun 2025 17:01:00 +0000
Manifest next update: Sun 29 Jun 2025 17:01:00 +0000
Files and hashes: 1: 4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl (hash: jU4HwoHDAsctz1BAc2v+ybMVxiexlZvFfGzrgBNnp+8=)
2: oLxnPDOjx34zqrjQ27ju_ZuWYV4.roa (hash: aFW6lgXJpeg0bmQI7iZHPliZcmK0ToNkD5OYtI2CIQI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:38:7d:c8:bf:13:98:92:cb:e3:d4:9d:e3:9f:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1a323546484220cb402063380f4016369262acf
Validity
Not Before: Jun 28 17:01:00 2025 GMT
Not After : Jun 29 17:01:00 2025 GMT
Subject: CN=d7e3dde854dcd050dc570187024456307d5ce4c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:40:61:f7:a7:28:59:47:7c:e6:95:c4:89:dc:
26:12:fe:2f:87:7a:fe:46:d1:db:3c:48:3d:b2:45:
86:50:12:4c:3b:42:9a:78:5a:54:7a:7e:04:fe:23:
1c:5c:8a:37:b6:8b:0c:3d:0c:9e:8a:84:01:47:70:
66:73:bd:ef:15:38:cf:9b:03:a0:a5:7c:6a:f4:ab:
a4:8b:6a:fe:2f:7f:15:de:ec:f5:03:0b:f2:ee:d9:
bb:02:bd:c8:47:63:57:3c:4c:00:64:24:4b:a2:d2:
ae:82:82:b4:b2:96:96:31:78:4f:13:8e:ec:ac:4e:
2a:ce:48:29:6d:7d:96:1b:24:0a:66:e7:e7:a8:ea:
72:9f:5f:d2:aa:0f:ed:41:02:eb:68:a2:65:f2:e2:
e7:31:6b:cf:92:f3:05:6c:eb:84:ef:9f:61:eb:55:
74:29:7e:ce:ee:44:fc:a8:2e:8e:7c:00:48:83:18:
39:a9:f8:b1:e5:d7:6e:e0:38:29:d4:b0:cb:9c:44:
d4:f4:d9:a5:fa:60:80:05:b9:0c:1d:33:70:47:28:
28:0d:de:11:09:11:5e:63:7b:42:7d:0a:24:18:a0:
25:5d:61:c3:eb:d7:a6:5b:95:8e:78:af:ca:d6:d7:
28:0f:7b:d8:e3:c7:ac:09:d1:89:b4:20:3f:c2:4b:
65:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:E3:DD:E8:54:DC:D0:50:DC:57:01:87:02:44:56:30:7D:5C:E4:C6
X509v3 Authority Key Identifier:
keyid:E1:A3:23:54:64:84:22:0C:B4:02:06:33:80:F4:01:63:69:26:2A:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:8b:1b:2d:a1:e8:14:ac:d2:c4:5d:f1:62:92:4d:43:11:99:
6c:55:bf:e2:e8:7a:a0:d5:9c:b2:de:86:00:2b:7d:88:19:8c:
3f:38:94:f3:64:b7:aa:d6:28:da:05:46:f6:0f:f5:49:2a:2d:
f1:3d:d7:a5:4e:a5:53:ea:c7:ed:73:e5:ed:71:3b:21:ce:ab:
3b:42:0b:8e:f0:cf:0f:43:12:12:35:78:ca:2c:08:b3:c7:26:
1c:30:4e:6b:2d:f9:ef:28:8c:c8:d8:b6:bf:6e:92:fb:08:25:
a8:0c:d9:a3:a3:2a:85:9c:61:7d:76:12:6e:98:f7:a3:0d:61:
ac:34:c1:19:70:f3:b1:90:69:19:18:61:15:4d:03:67:48:d2:
16:44:01:66:af:c6:f6:ec:d6:cd:97:8f:9f:64:1a:3f:9d:dc:
8f:3a:be:5e:dd:43:14:ba:e7:8a:7d:c9:8b:af:e6:14:76:a0:
95:8b:44:31:71:68:00:4d:a5:bf:f9:c2:8a:57:70:59:9d:45:
94:90:11:a5:a4:47:1a:66:d6:ad:ff:5f:a6:7f:b2:ac:7d:13:
f5:7e:26:4f:4a:41:0e:c1:f6:0a:d2:fc:da:6d:b5:2c:fc:d9:
de:d6:6f:bc:b3:c8:6d:87:ca:db:b2:93:0e:9b:1d:66:08:cd:
47:5d:f4:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:54:15 2025 by rpki-client