Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
File: 4kycUM9OLawF4fBDKCJOIKRgXXc.mft (raw, json)
Hash identifier: vdQMaonMjyY+xt6kLcHimsewFgbSLvbCvaraXoxvGV4=
Subject key identifier: 86:9C:A2:4A:E6:B4:B3:C6:59:95:A8:FC:DC:74:81:83:41:95:11:48
Authority key identifier: E2:4C:9C:50:CF:4E:2D:AC:05:E1:F0:43:28:22:4E:20:A4:60:5D:77
Certificate issuer: /CN=e24c9c50cf4e2dac05e1f04328224e20a4605d77
Certificate serial: 0197B77C6FA8EB683183CD3FA14C3F61BB5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4kycUM9OLawF4fBDKCJOIKRgXXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
Manifest number: 0C9D
Signing time: Sat 28 Jun 2025 17:01:14 +0000
Manifest this update: Sat 28 Jun 2025 17:01:14 +0000
Manifest next update: Sun 29 Jun 2025 17:01:14 +0000
Files and hashes: 1: 4kycUM9OLawF4fBDKCJOIKRgXXc.crl (hash: XlgyqvFV5/TXjDtvc3gEW16Qapxh+akftQXl0OaZKOM=)
2: Q3-HdEPCyjZHl-Sg4_PuJRYIuT8.roa (hash: XEPQxkckVuIQ5rwgxJmegps237sKjQ4AEXFUBlmNa1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/4kycUM9OLawF4fBDKCJOIKRgXXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:6f:a8:eb:68:31:83:cd:3f:a1:4c:3f:61:bb:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24c9c50cf4e2dac05e1f04328224e20a4605d77
Validity
Not Before: Jun 28 17:01:14 2025 GMT
Not After : Jun 29 17:01:14 2025 GMT
Subject: CN=869ca24ae6b4b3c65995a8fcdc74818341951148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ee:87:59:18:5d:98:b0:d8:d4:ca:59:8a:37:
75:34:a7:83:55:09:dc:a8:73:f2:a2:6e:30:23:3e:
9a:7c:d4:fa:18:95:c5:62:f2:df:f9:c7:d5:bd:10:
cc:8f:d3:84:1b:87:56:34:bf:ad:d8:17:68:50:74:
2b:10:54:d6:58:4a:03:d6:ad:67:2c:43:ea:5e:88:
53:11:08:d3:96:43:ba:20:1d:e1:72:6c:ff:4d:f9:
10:90:fb:a8:c5:89:e9:a9:17:f5:bf:8b:a5:56:2a:
05:1e:9c:13:29:94:b9:41:a6:a8:08:52:80:6c:42:
6c:65:c8:f3:14:e1:58:36:21:c9:31:dc:d3:6e:fd:
81:ed:e3:fd:ef:ef:c8:4b:b0:ec:ce:07:c2:19:41:
09:e9:4b:6f:2f:01:b7:4b:05:58:37:6e:a3:2e:6b:
d3:4d:ea:eb:37:06:ae:6b:7b:66:77:9e:32:d6:91:
f2:0c:74:5c:3d:e1:03:84:f8:12:75:07:bc:92:8d:
1d:09:35:53:98:98:53:61:2d:63:51:ad:1c:88:61:
37:d8:b6:51:a9:f6:a9:e6:d2:39:b5:6c:ed:2f:4b:
a7:d9:1c:be:fc:6c:0a:d8:75:9b:5d:55:f7:9a:6b:
ea:e9:09:aa:a8:7c:30:0e:23:9d:61:8c:51:5f:85:
06:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:9C:A2:4A:E6:B4:B3:C6:59:95:A8:FC:DC:74:81:83:41:95:11:48
X509v3 Authority Key Identifier:
keyid:E2:4C:9C:50:CF:4E:2D:AC:05:E1:F0:43:28:22:4E:20:A4:60:5D:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4kycUM9OLawF4fBDKCJOIKRgXXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:9d:af:d8:4b:1a:a0:76:43:ce:b9:c9:f3:ad:98:2b:35:f2:
a6:2a:70:75:8b:45:bd:fa:81:2d:98:16:f7:fb:d1:6c:c9:4f:
cf:b0:49:fe:3a:20:6c:55:ad:96:fa:82:91:4f:0d:c9:29:51:
a8:0e:5c:88:13:ed:66:64:62:01:6f:40:94:68:2a:29:cb:83:
27:12:34:63:f1:e5:3d:23:cd:7d:d0:0e:4d:80:d5:c9:ae:da:
53:60:0e:83:8d:85:b8:e0:39:2a:e7:b1:d9:19:bf:fc:77:6d:
e9:de:a1:cd:05:c4:93:68:d6:db:43:7f:70:42:a8:ae:52:ab:
fa:2a:86:5a:10:a6:00:ba:0f:d4:15:f9:3e:bd:a1:2f:18:0a:
e9:3b:f6:fa:f0:f1:bb:44:58:39:cb:ce:a7:3f:51:d4:f1:9b:
c2:3c:97:f2:c6:86:30:5e:d3:82:3e:6f:63:23:c5:b3:cc:f1:
a0:22:8f:dd:04:9a:30:c7:22:df:8c:66:85:25:6c:4e:d3:4c:
2b:35:f3:c2:1f:ec:0b:9a:8c:7c:1a:7b:56:13:e5:69:47:0d:
21:49:5d:81:4c:e0:8c:cd:b8:f8:83:38:1f:1f:4c:4b:77:25:
e0:e8:d1:1c:64:d8:6b:26:ff:83:25:5f:9e:43:fb:b4:c6:96:
96:12:f9:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:32:58 2025 by rpki-client