Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
File: 4gShwspKTbAzN142DeMjeQumpbk.mft (raw, json)
Hash identifier: jzL+arT1iB5uI9DLfTiJwGVSK6ixkQOmufY+Z+9kIvk=
Subject key identifier: 49:2F:B3:0B:E6:A4:4C:65:D4:92:AF:BA:8A:99:E4:3F:0A:41:35:89
Authority key identifier: E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
Certificate issuer: /CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Certificate serial: 0196B93585A584758C620BD3F5DD57FC042D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
Manifest number: 0DC6
Signing time: Sat 10 May 2025 08:00:14 +0000
Manifest this update: Sat 10 May 2025 08:00:14 +0000
Manifest next update: Sun 11 May 2025 08:00:14 +0000
Files and hashes: 1: 4gShwspKTbAzN142DeMjeQumpbk.crl (hash: RkRWAjyPYpxuhGB9ImcPWni0CMfypMiH8nEIlAxo4N8=)
2: gA2VeOc__NflxeLdsWWIIUZ9Deg.roa (hash: ipk5YS27VQlaPqS1epEEueLOZHeXvism8b/2q3vbuaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:35:85:a5:84:75:8c:62:0b:d3:f5:dd:57:fc:04:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Validity
Not Before: May 10 08:00:14 2025 GMT
Not After : May 11 08:00:14 2025 GMT
Subject: CN=492fb30be6a44c65d492afba8a99e43f0a413589
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:99:1d:c2:54:eb:bf:69:f5:e6:21:99:60:a3:
8c:dd:93:a0:3c:5c:f4:47:58:c0:4c:14:e7:c6:f5:
fb:d3:b9:a6:a9:5e:9f:88:f0:4f:b1:8d:88:74:bd:
a5:24:b0:57:27:b9:5a:2e:8a:8e:2c:0c:1a:ae:42:
34:fe:7c:93:b0:29:c5:8e:cf:35:8c:77:21:cb:5f:
1c:be:80:c9:cd:42:0f:37:a9:24:c0:d5:48:de:4f:
a2:6e:14:a2:cc:e2:86:4d:95:14:e0:0c:48:72:7e:
80:58:fc:05:6e:8b:d2:ef:72:29:3d:a1:bf:22:c4:
67:e4:3f:30:44:a8:f8:20:3a:8f:e5:06:d0:81:29:
87:e5:7a:58:16:87:7e:86:8d:f1:cd:94:f5:dd:9e:
ad:cd:cf:a8:3a:c5:47:bf:40:91:1f:54:f9:55:fe:
b6:eb:62:2f:af:0e:1f:9a:9d:8e:f4:a2:22:cb:0c:
6d:8c:6b:77:72:d7:d4:b4:57:33:78:03:e3:b1:4d:
47:c0:4b:e4:1e:bc:28:a6:69:7a:87:fb:f7:4c:3c:
3a:5b:62:09:8f:ad:bb:fc:7b:a2:c3:6f:61:3f:12:
7b:2d:c9:51:2a:ff:8d:79:75:b0:7f:70:5a:15:90:
bb:79:b5:6b:46:2c:e1:81:4e:15:4f:78:fd:07:7c:
9c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:2F:B3:0B:E6:A4:4C:65:D4:92:AF:BA:8A:99:E4:3F:0A:41:35:89
X509v3 Authority Key Identifier:
keyid:E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:6d:64:c9:ad:d7:61:80:af:f5:c4:0b:29:51:f4:7f:71:1b:
36:18:d2:7c:cf:5c:6c:be:dd:be:e5:86:98:e6:73:4d:10:05:
bd:51:3d:10:dd:5a:07:7a:fc:4a:b0:ff:c7:1e:31:eb:97:40:
74:b0:7e:30:32:a1:9f:c7:c5:53:54:d0:e2:21:d3:91:90:d3:
c3:56:68:96:29:7c:ab:e0:f0:0a:63:6e:48:a7:73:13:8d:3e:
0a:69:25:00:d9:97:8a:39:e7:89:73:c6:79:e2:5e:18:95:53:
22:32:0e:11:64:9c:fd:f8:2d:02:78:c2:31:36:a5:62:f8:f4:
19:af:79:ca:1c:08:f0:4f:32:56:36:1e:95:a0:f9:e1:c5:c6:
7f:ff:2b:2a:41:ef:65:30:2f:d1:ff:5b:2f:ac:f9:47:ea:b6:
35:06:54:e0:ab:25:b9:80:5b:09:ae:ea:99:f2:7f:6b:ea:d1:
ea:e5:dc:67:1d:15:0a:74:64:2c:e0:0e:43:3a:4f:59:da:b7:
ee:66:a7:c4:84:21:8f:06:56:d3:8a:a9:40:3a:c6:83:91:d6:
39:60:93:82:28:d7:26:bd:55:bd:b0:8d:94:f1:32:45:b4:45:
b0:93:8e:03:ec:e6:04:97:e8:10:e3:ac:b3:1e:e3:c6:2c:4c:
ab:8e:16:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 09:52:08 2025 by rpki-client