Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
File: 4gShwspKTbAzN142DeMjeQumpbk.mft (raw, json)
Hash identifier: +Uau3W+hcFZ3/WnRzTF3RlifOOVUL8FOe8ndTx1u6xw=
Subject key identifier: 49:FA:09:54:FF:62:8D:9A:DC:E8:58:72:A0:5B:9B:E3:10:83:B8:56
Authority key identifier: E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
Certificate issuer: /CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Certificate serial: 0197B82135E333671E3230CD030E31515B78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
Manifest number: 0E4A
Signing time: Sat 28 Jun 2025 20:01:13 +0000
Manifest this update: Sat 28 Jun 2025 20:01:13 +0000
Manifest next update: Sun 29 Jun 2025 20:01:13 +0000
Files and hashes: 1: 4gShwspKTbAzN142DeMjeQumpbk.crl (hash: X88lxzBcNtAXF6KmRDQkwz5zdSoudb4h2ww7HMRK82w=)
2: gA2VeOc__NflxeLdsWWIIUZ9Deg.roa (hash: ipk5YS27VQlaPqS1epEEueLOZHeXvism8b/2q3vbuaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:35:e3:33:67:1e:32:30:cd:03:0e:31:51:5b:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Validity
Not Before: Jun 28 20:01:13 2025 GMT
Not After : Jun 29 20:01:13 2025 GMT
Subject: CN=49fa0954ff628d9adce85872a05b9be31083b856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:66:a0:1a:81:c4:af:b5:62:a9:a1:e1:b7:5c:
0d:11:fa:c6:cc:35:8b:a4:c2:d4:f2:18:98:1b:78:
3f:fc:b1:fc:3f:6e:2b:2e:37:aa:e4:88:fb:f4:fe:
4b:38:cf:49:80:37:44:4e:bc:b6:7d:38:e6:fd:c2:
5d:18:32:b7:81:bd:35:69:fd:fd:83:75:75:04:b6:
11:46:cd:33:2c:78:60:a6:97:11:f0:39:5b:40:e5:
0b:fd:5e:3e:c4:99:68:f5:9f:d7:4a:9e:51:9e:bb:
37:16:5a:e4:07:ed:c3:65:60:66:18:31:60:d1:ab:
97:ca:ac:43:78:8f:b0:73:31:34:ee:c8:72:e7:a2:
ce:f6:c8:92:b6:07:b6:92:07:e8:91:aa:b2:09:f1:
15:5a:2d:fe:c2:d2:c1:75:84:21:6c:10:da:51:f7:
75:09:2c:f8:f1:9f:7c:c2:b8:cd:d6:ea:20:e0:53:
a8:d2:f5:de:00:a9:3d:72:a5:b1:5c:f9:05:5c:3e:
10:bf:65:fe:5c:9d:e8:c0:12:9b:6b:36:0a:42:de:
21:27:5d:6c:66:29:d9:d4:67:c0:cb:67:7e:80:50:
d5:93:93:a8:88:cb:c4:87:ce:d2:13:50:cc:78:bd:
01:70:ca:dc:9f:72:1b:a3:df:3a:46:7e:da:6b:cc:
f9:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:FA:09:54:FF:62:8D:9A:DC:E8:58:72:A0:5B:9B:E3:10:83:B8:56
X509v3 Authority Key Identifier:
keyid:E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:b9:e4:75:e0:06:57:0c:ee:65:44:29:4c:26:e0:5c:7f:a1:
2d:96:b3:07:71:5b:7a:12:f1:37:2b:fb:88:f4:77:9c:71:5b:
f7:89:0b:96:6c:0f:63:f6:3b:3a:26:03:a9:24:8b:29:4f:ce:
fa:8d:44:3f:5a:80:14:6c:32:c1:88:8b:db:0f:79:31:e5:1b:
5e:bc:29:31:f8:4e:19:26:70:50:1c:81:62:8b:d3:11:38:92:
14:b6:bf:e2:d1:7c:30:6d:48:c1:2b:5a:65:ab:f3:d9:75:4d:
0a:b2:45:27:a8:35:fb:52:eb:6f:f8:92:34:68:18:48:9c:31:
7b:f6:37:6c:99:ae:c5:97:47:f8:da:0d:2b:42:c3:71:82:e2:
aa:aa:4f:30:0b:8e:bd:bb:f6:c1:7c:26:e6:34:b5:4c:19:c1:
ec:4f:76:9c:9e:89:45:df:2f:f0:eb:aa:ee:83:af:f9:a8:76:
d8:e8:d5:8f:95:e2:89:f0:e4:d0:9e:3b:d5:0d:48:dc:88:4b:
6b:d9:18:cc:1d:97:c7:33:ae:1c:41:98:d5:40:19:66:67:c6:
5a:c0:ae:39:3e:8e:72:1c:ff:ee:f2:76:c7:16:de:86:35:6d:
e0:16:e3:39:04:2e:d6:5e:ff:be:82:30:b3:2b:7b:5a:9d:dc:
ea:59:53:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:00:11 2025 by rpki-client