Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
File: 4HG570GlOChYzZ7vmKf7nRJqpK4.mft (raw, json)
Hash identifier: 5EagyHNsMirxcaArpnaBYdW4buHxERkCUpvWujmTAKE=
Subject key identifier: 20:1D:5C:42:55:84:D7:C2:D7:D4:D7:6E:0C:E7:BA:B7:75:53:D5:E8
Authority key identifier: E0:71:B9:EF:41:A5:38:28:58:CD:9E:EF:98:A7:FB:9D:12:6A:A4:AE
Certificate issuer: /CN=e071b9ef41a5382858cd9eef98a7fb9d126aa4ae
Certificate serial: 0198D474126A08400DA4719B97D258254628
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4HG570GlOChYzZ7vmKf7nRJqpK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
Manifest number: 0372
Signing time: Sat 23 Aug 2025 01:03:53 +0000
Manifest this update: Sat 23 Aug 2025 01:03:53 +0000
Manifest next update: Sun 24 Aug 2025 01:03:53 +0000
Files and hashes: 1: 4HG570GlOChYzZ7vmKf7nRJqpK4.crl (hash: Tz5GLGgryzDu3144rBTJm6U+ZDvjLNR3KBl3wRIndFw=)
2: YBfLAkuYURNDoMTvjD2hLc0uuNc.roa (hash: gM7Y+qrK9OGNkcbA31bQAYiigRBUM5Di4cIR3nOhPM8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4HG570GlOChYzZ7vmKf7nRJqpK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:12:6a:08:40:0d:a4:71:9b:97:d2:58:25:46:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e071b9ef41a5382858cd9eef98a7fb9d126aa4ae
Validity
Not Before: Aug 23 01:03:53 2025 GMT
Not After : Aug 24 01:03:53 2025 GMT
Subject: CN=201d5c425584d7c2d7d4d76e0ce7bab77553d5e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:90:92:e4:73:38:52:55:fa:9b:37:bd:a8:8b:
cb:84:89:73:69:d8:32:57:e0:8e:65:74:dc:a4:f8:
af:e0:18:94:c7:d4:14:27:6c:1a:06:f7:af:b8:03:
a6:98:64:e2:2c:2a:9c:bb:c5:53:b9:ea:5f:3d:81:
99:27:3f:0e:2b:1d:fd:08:20:de:be:e9:46:04:e5:
52:ac:85:27:70:77:38:75:ab:9a:a7:88:d1:48:78:
4a:4d:01:55:0e:7b:fb:11:be:dc:5e:7e:0f:1e:f9:
f4:83:a5:24:d1:b0:ff:6b:15:c9:0d:3c:bf:74:c7:
35:df:cd:20:23:22:2e:b4:e9:f1:6d:d7:df:a0:4d:
c7:b5:a9:f1:51:d2:64:c6:ed:53:f1:36:da:1c:b8:
bb:c3:da:a0:26:a5:9d:02:83:eb:0d:02:87:f6:e1:
76:fd:00:f5:72:6b:d7:ab:57:e9:14:8e:59:10:aa:
45:cf:41:9e:12:2c:7f:83:4c:19:e6:06:c2:c0:f9:
af:c6:20:29:c8:8d:1f:e8:f2:a5:a1:dc:da:9b:bd:
31:e3:0d:ab:3c:fc:8d:32:fd:b3:92:68:10:fa:aa:
1a:c7:82:4e:b8:d4:50:f7:73:b0:27:03:a6:38:a6:
b1:b3:38:c6:40:52:78:69:7f:41:5c:a0:c0:bd:a7:
1a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:1D:5C:42:55:84:D7:C2:D7:D4:D7:6E:0C:E7:BA:B7:75:53:D5:E8
X509v3 Authority Key Identifier:
keyid:E0:71:B9:EF:41:A5:38:28:58:CD:9E:EF:98:A7:FB:9D:12:6A:A4:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4HG570GlOChYzZ7vmKf7nRJqpK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:b3:30:23:f2:b4:57:a5:94:59:00:a3:d9:eb:2a:9d:d7:80:
f8:95:07:9d:61:1f:da:fd:c0:c8:ec:82:98:a0:8c:10:2a:1b:
53:1c:81:18:af:3f:4e:14:5f:27:c7:80:9f:4f:d2:c3:a3:3d:
08:db:a1:ee:98:f9:4d:dc:ee:9f:d1:47:85:0e:52:4d:29:64:
33:f7:d4:79:3d:1d:1c:98:36:e3:8d:d7:46:81:8d:01:e0:79:
3f:aa:c8:e4:82:3b:8a:dd:76:50:eb:58:df:cc:bc:fa:a2:d3:
80:64:f8:85:7d:8c:2f:48:2a:bd:53:66:b9:5b:fa:ba:5d:93:
d1:b5:ef:26:1c:dd:bd:c9:d6:2c:4f:1d:da:fb:5f:e6:09:65:
d5:d2:fe:45:66:80:cb:4b:e7:7a:76:2a:76:7b:1d:25:26:66:
1e:0a:9d:65:c5:e0:8c:f6:23:4b:b0:08:51:4e:04:15:d1:1a:
11:ba:ce:e9:52:3b:33:a7:45:52:85:db:88:85:37:62:f4:b8:
a1:e1:1f:9f:fa:c4:b8:f0:a7:08:f4:4a:22:72:f7:31:55:15:
c5:8f:f9:7d:41:79:11:35:89:d3:ac:34:55:b0:b6:ed:cc:5c:
b3:42:28:c6:47:30:d0:fb:15:33:e0:a3:54:c4:cb:14:1a:fb:
ab:01:b7:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:34 2025 by rpki-client