Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
File: 4kycUM9OLawF4fBDKCJOIKRgXXc.mft (raw, json)
Hash identifier: Ywid4ya41RmOlpX38unVcgG/qPkM6oYJ84OiTBtGIuQ=
Subject key identifier: A3:2B:21:8A:B8:60:71:82:64:EC:29:F7:94:82:F2:A3:93:76:22:7B
Authority key identifier: E2:4C:9C:50:CF:4E:2D:AC:05:E1:F0:43:28:22:4E:20:A4:60:5D:77
Certificate issuer: /CN=e24c9c50cf4e2dac05e1f04328224e20a4605d77
Certificate serial: 0196C427A6E89C1FB39DF657975A43A67958
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4kycUM9OLawF4fBDKCJOIKRgXXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
Manifest number: 0C1F
Signing time: Mon 12 May 2025 11:00:55 +0000
Manifest this update: Mon 12 May 2025 11:00:55 +0000
Manifest next update: Tue 13 May 2025 11:00:55 +0000
Files and hashes: 1: 4kycUM9OLawF4fBDKCJOIKRgXXc.crl (hash: V4/PYu5bKHp0H8b+MDa104I+ejja6hlQ3g/Xv2aSKO0=)
2: Q3-HdEPCyjZHl-Sg4_PuJRYIuT8.roa (hash: XEPQxkckVuIQ5rwgxJmegps237sKjQ4AEXFUBlmNa1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/4kycUM9OLawF4fBDKCJOIKRgXXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 11:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:27:a6:e8:9c:1f:b3:9d:f6:57:97:5a:43:a6:79:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24c9c50cf4e2dac05e1f04328224e20a4605d77
Validity
Not Before: May 12 11:00:55 2025 GMT
Not After : May 13 11:00:55 2025 GMT
Subject: CN=a32b218ab860718264ec29f79482f2a39376227b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:42:06:5d:52:db:f3:7c:78:59:c0:5d:61:4d:
60:3d:60:2c:ba:71:de:71:08:fd:79:69:47:31:6e:
65:4a:9d:c5:2a:3c:00:33:b2:49:8a:e6:d3:1e:21:
3e:09:89:e7:c9:49:11:01:b6:d3:48:e1:03:54:5b:
0d:46:3e:44:b2:1c:69:fb:25:d4:89:55:02:ce:71:
ed:03:4f:83:06:f3:99:e5:b6:a9:8c:a5:bb:5b:da:
2f:cb:b0:07:cd:75:62:9c:bb:f8:cd:be:72:40:ed:
59:75:d6:db:4d:0a:84:c4:c7:41:d8:30:7c:6b:87:
e1:57:f6:e7:97:d1:ee:8b:8c:77:f5:d5:32:51:36:
2a:f5:6d:be:a1:ed:4b:61:b1:51:a6:a2:ff:95:de:
30:56:43:f9:02:8f:83:f0:c2:e4:0a:e0:5c:a2:85:
83:65:28:1e:46:56:bf:6b:23:62:a9:da:0b:e6:39:
1e:99:df:45:76:42:af:7e:bc:05:a8:10:3d:4f:14:
2c:c2:ae:a5:ae:11:87:59:ca:2f:8f:15:3f:f8:ea:
b8:6c:6c:58:e4:bc:c1:2e:b1:27:b9:f9:cb:57:a7:
83:9f:be:58:b0:db:68:56:60:2a:59:cb:16:4e:1c:
0a:06:2e:5a:11:43:ba:b1:26:c1:e2:8e:03:8d:41:
ee:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:2B:21:8A:B8:60:71:82:64:EC:29:F7:94:82:F2:A3:93:76:22:7B
X509v3 Authority Key Identifier:
keyid:E2:4C:9C:50:CF:4E:2D:AC:05:E1:F0:43:28:22:4E:20:A4:60:5D:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4kycUM9OLawF4fBDKCJOIKRgXXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:2c:01:f4:ca:05:91:3a:b0:1c:ca:de:26:6e:66:13:ac:09:
3c:d7:1f:55:c1:a0:c6:20:ac:1a:fb:91:b6:03:7f:c4:9b:0e:
a4:f9:05:12:79:f8:bf:41:5d:c1:65:5a:ba:33:f0:97:01:4e:
c9:5e:04:01:8e:3d:72:d4:a3:21:7c:af:8f:69:36:7d:45:ab:
29:97:ed:8c:4e:59:1b:32:f3:1b:ab:94:88:1d:a0:53:e4:e7:
19:05:50:87:b1:5f:06:e3:c9:18:a9:c7:e4:55:e8:7b:6a:1a:
9e:cc:ec:59:75:4f:78:52:fa:d2:fb:ef:14:54:6d:a0:02:b7:
b4:ad:51:dd:c6:41:24:65:11:41:ac:5e:76:e9:89:f7:c0:3c:
22:e7:d2:8b:ec:57:c5:d1:6e:0a:cc:2c:3b:18:99:a9:3a:9c:
21:85:aa:71:0c:97:18:ae:36:d7:96:64:c1:ea:fa:f7:62:89:
00:c6:99:6a:53:fa:67:6b:12:c9:ab:68:ea:2f:e6:a8:93:93:
a1:79:e0:e5:61:02:c2:36:c5:f9:7a:df:4e:58:d8:de:e3:79:
6d:01:48:42:bb:3c:34:25:3e:6e:c0:f5:cf:88:06:27:97:14:
1b:85:25:7c:cb:5a:45:d9:57:d9:c6:1d:0e:6a:52:e1:20:ba:
c2:e3:36:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 19:56:55 2025 by rpki-client