Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
File: 4HG570GlOChYzZ7vmKf7nRJqpK4.mft (raw, json)
Hash identifier: nT0go0seZNK84fVh/gOGQlwzcsXgac2AYH6e4xc9dpA=
Subject key identifier: 8F:2E:62:DB:83:F4:47:0B:09:C6:41:42:F2:15:37:D1:6B:26:41:1F
Authority key identifier: E0:71:B9:EF:41:A5:38:28:58:CD:9E:EF:98:A7:FB:9D:12:6A:A4:AE
Certificate issuer: /CN=e071b9ef41a5382858cd9eef98a7fb9d126aa4ae
Certificate serial: 0197B88FBDC979577FD2C79754F4E84BB767
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4HG570GlOChYzZ7vmKf7nRJqpK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
Manifest number: 02DF
Signing time: Sat 28 Jun 2025 22:01:57 +0000
Manifest this update: Sat 28 Jun 2025 22:01:57 +0000
Manifest next update: Sun 29 Jun 2025 22:01:57 +0000
Files and hashes: 1: 4HG570GlOChYzZ7vmKf7nRJqpK4.crl (hash: rjnAOi4AUI9Wz7zQ1xLljSsAexdYMkJon85FwerP5+4=)
2: YBfLAkuYURNDoMTvjD2hLc0uuNc.roa (hash: gM7Y+qrK9OGNkcbA31bQAYiigRBUM5Di4cIR3nOhPM8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4HG570GlOChYzZ7vmKf7nRJqpK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:bd:c9:79:57:7f:d2:c7:97:54:f4:e8:4b:b7:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e071b9ef41a5382858cd9eef98a7fb9d126aa4ae
Validity
Not Before: Jun 28 22:01:57 2025 GMT
Not After : Jun 29 22:01:57 2025 GMT
Subject: CN=8f2e62db83f4470b09c64142f21537d16b26411f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:28:3b:72:2a:00:1d:8f:2d:3a:56:cf:be:70:
75:8d:42:ac:9b:c5:be:d8:46:1e:c9:b4:2e:db:ac:
d8:7c:1d:95:fa:98:2e:99:1a:26:93:a1:d3:b3:e5:
9a:b9:d4:f3:f0:d3:45:34:19:52:d2:3e:5a:fb:fa:
4a:d4:b6:09:3e:1a:33:db:5c:7f:e1:e0:0a:25:00:
58:2c:61:83:23:b4:25:25:2d:0d:1d:40:d1:47:4f:
c2:9f:2e:65:d7:66:a0:73:5f:f2:36:d3:c7:3b:72:
50:44:65:cc:8b:22:f3:bb:8b:d8:a3:f6:c1:50:54:
ca:96:b1:74:1f:01:4b:b6:96:33:7b:95:43:62:97:
5b:c3:e8:d7:ad:20:ef:aa:35:fb:95:b3:ac:9e:2b:
09:f1:01:0b:6c:ee:d7:13:28:7c:d9:45:d8:7f:48:
b1:2c:2c:1d:53:ff:e4:9b:bc:dc:5c:47:51:d3:de:
98:f0:3f:01:1f:ba:ee:2a:22:88:6f:93:ca:2f:2e:
61:ee:8d:ff:c8:e5:04:61:07:f2:85:19:ec:91:4d:
75:1e:b0:71:b1:b8:ec:fc:50:07:77:4c:3f:49:7d:
8a:67:a5:8a:e5:8c:fa:f3:0f:28:39:46:00:e6:de:
f8:1d:da:18:99:c4:66:cf:74:5a:80:b2:30:27:72:
ec:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:2E:62:DB:83:F4:47:0B:09:C6:41:42:F2:15:37:D1:6B:26:41:1F
X509v3 Authority Key Identifier:
keyid:E0:71:B9:EF:41:A5:38:28:58:CD:9E:EF:98:A7:FB:9D:12:6A:A4:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4HG570GlOChYzZ7vmKf7nRJqpK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:c8:d4:8b:09:37:1d:df:3b:49:17:d5:2f:c4:83:5c:e5:e4:
57:51:c0:8f:bb:0a:25:f9:fd:ac:a4:52:b4:8d:2a:54:bf:c4:
36:68:8f:24:82:ed:63:b6:e2:5f:ec:1c:66:5e:35:2b:3c:ff:
59:80:14:4d:6c:6c:e1:e8:d4:c3:58:4c:c0:3d:ad:79:16:8b:
00:70:53:de:fd:6c:0e:ae:6a:2d:86:b3:ba:c5:e3:6a:fe:11:
eb:68:f6:26:f4:0a:56:92:8d:9c:26:74:b6:82:21:6a:ed:06:
c3:1a:19:d7:9a:24:c2:b5:91:b3:8f:1e:9c:db:e2:48:3a:15:
a7:54:ec:c0:17:11:66:f9:b6:ec:cd:e4:c2:9b:17:ee:49:b9:
c2:ad:0a:9d:3e:cc:de:72:ff:32:8a:07:77:ce:b0:d4:f1:e8:
96:f5:cc:4d:0e:ad:42:ab:a9:63:0d:31:9c:46:ea:90:c8:b7:
64:83:d8:c0:46:18:85:82:0a:8c:85:e2:3b:c1:e9:e2:21:7f:
a0:a7:08:41:2f:30:ef:9e:f1:f4:89:03:f7:9f:7e:34:d2:85:
22:40:87:e1:fe:24:a2:30:f6:f7:f8:62:c7:08:7e:6c:f7:ec:
a3:cf:07:cd:69:92:e3:ba:f3:53:71:fd:ce:44:0d:fa:da:79:
ae:94:a4:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:13:04 2025 by rpki-client