Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
File: 4koD-A9i2oZjUuGZCZfx1GzrL7A.mft (raw, json)
Hash identifier: 7E3apYD0dW/Om86mQlI9HoHdEVY+WehIIvznnoIbJsA=
Subject key identifier: EE:C2:75:AC:E0:07:89:F2:B9:DE:10:33:3C:11:C4:81:7B:43:EE:3E
Authority key identifier: E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
Certificate issuer: /CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Certificate serial: 01977D8CA25F571BA2B5F7BFAD9D7770F0C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
Manifest number: 1254
Signing time: Tue 17 Jun 2025 11:00:57 +0000
Manifest this update: Tue 17 Jun 2025 11:00:57 +0000
Manifest next update: Wed 18 Jun 2025 11:00:57 +0000
Files and hashes: 1: 4koD-A9i2oZjUuGZCZfx1GzrL7A.crl (hash: +KkRXWyHC0cLpGbLYmg0MlmRxMuYUa8Tx1hHuhEfwXo=)
2: _SDGNnpAJAI5c9TTproSlcDE1Ew.roa (hash: FWM2UQvUNqFuHmMAV7nZEdUtqbqVwiTq2Q2yh+QWjTY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 11:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7d:8c:a2:5f:57:1b:a2:b5:f7:bf:ad:9d:77:70:f0:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Validity
Not Before: Jun 17 11:00:57 2025 GMT
Not After : Jun 18 11:00:57 2025 GMT
Subject: CN=eec275ace00789f2b9de10333c11c4817b43ee3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8a:68:d4:ad:96:32:70:ad:58:e5:ea:85:3a:
6e:46:cc:b1:3d:61:e1:17:44:76:72:ae:fe:3c:8e:
b9:36:5c:22:2b:01:f0:e3:b2:28:b8:f7:44:e0:6f:
b1:88:5e:1d:a5:b3:bf:99:92:7b:5c:da:98:f1:68:
70:86:7f:3b:45:d1:dc:39:b7:68:98:fc:ec:5d:1d:
99:1e:a3:21:75:22:6e:f4:ec:f9:34:c1:ad:99:47:
72:dd:ab:b0:07:6b:af:92:8f:cc:7c:03:d4:6f:d3:
52:6d:a9:a6:4c:3d:55:02:6a:21:f3:c7:8f:c5:a2:
86:10:86:8d:75:5a:be:9b:94:7d:6d:79:77:79:93:
7e:c6:f4:76:f0:17:6e:48:aa:ae:6b:27:e2:2d:e0:
d0:1d:89:9c:67:c1:db:95:f9:2e:ed:38:cb:47:41:
3b:9d:88:d2:8d:62:32:f1:5e:80:bc:03:10:fa:8a:
e2:7e:aa:69:da:37:a8:7e:37:c8:00:3f:5e:81:23:
df:e2:58:47:a3:af:11:a1:25:8f:ef:21:b5:9a:31:
ab:79:4e:42:bc:c2:c1:66:2d:79:99:46:c2:59:66:
5d:aa:97:8c:3d:d3:01:b8:18:6d:7c:39:ee:b5:7e:
a4:e0:85:f1:28:88:8a:a0:36:0d:9c:e1:fd:54:e7:
51:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:C2:75:AC:E0:07:89:F2:B9:DE:10:33:3C:11:C4:81:7B:43:EE:3E
X509v3 Authority Key Identifier:
keyid:E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:f9:fb:e8:f4:52:fc:bb:a6:ea:a5:5c:a7:e2:44:5a:c1:ad:
9c:6d:1b:9c:1a:4d:75:4c:85:08:c8:3d:0e:95:a2:ef:a4:e5:
a2:6b:5f:41:9e:75:92:cf:c6:b9:7e:50:6b:1c:ed:43:88:29:
0f:3d:08:d9:80:24:99:ab:f1:4b:70:0e:84:0d:27:8d:c3:1b:
79:c0:ef:96:af:06:7f:49:8c:84:be:df:6c:39:50:73:0c:a2:
8d:a6:43:fd:bd:7f:6a:3d:f9:7c:fb:2c:37:c5:37:2e:02:3b:
71:20:26:d8:23:58:42:d5:90:04:c2:d6:05:9b:cf:61:26:38:
35:37:c3:3b:a1:a8:f1:b0:8d:cd:ce:bd:14:fd:00:51:11:f5:
21:08:85:69:33:f7:6b:6f:8b:e6:1a:06:95:e2:14:e0:ab:fd:
aa:e0:a9:f3:77:ff:a7:bd:e9:b7:8f:98:69:d9:cd:aa:ca:2d:
69:d3:fb:f0:98:a5:1b:f2:3f:f3:8f:53:ae:9a:6f:9e:f8:4f:
b3:4b:ff:b8:62:c7:0c:a8:24:f2:b8:7d:50:0e:78:7a:57:44:
a0:e9:ae:56:df:fc:f0:0a:8d:88:0f:fa:c5:28:82:0c:53:ea:
ad:24:68:86:84:31:33:71:23:d9:23:34:dc:c7:48:6f:5b:12:
e8:fd:5a:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 16:21:27 2025 by rpki-client