Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
File: 4koD-A9i2oZjUuGZCZfx1GzrL7A.mft (raw, json)
Hash identifier: 2rw/aW4wJZc1I4oFDnRGVoZEnLzLDY9pxSeuJUtI5pA=
Subject key identifier: D3:70:B4:BD:60:DA:D5:A2:47:6A:12:0E:D2:B4:5B:0A:79:36:CB:FD
Authority key identifier: E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
Certificate issuer: /CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Certificate serial: 01968A37C74062EC680AE6E38FADDE55B456
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
Manifest number: 11D6
Signing time: Thu 01 May 2025 05:00:33 +0000
Manifest this update: Thu 01 May 2025 05:00:33 +0000
Manifest next update: Fri 02 May 2025 05:00:33 +0000
Files and hashes: 1: 4koD-A9i2oZjUuGZCZfx1GzrL7A.crl (hash: GukHkLTU72OtRVulFp+4ZLp3bVT9x51xc7xXNZBkfwc=)
2: _SDGNnpAJAI5c9TTproSlcDE1Ew.roa (hash: FWM2UQvUNqFuHmMAV7nZEdUtqbqVwiTq2Q2yh+QWjTY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 05:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8a:37:c7:40:62:ec:68:0a:e6:e3:8f:ad:de:55:b4:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Validity
Not Before: May 1 05:00:33 2025 GMT
Not After : May 2 05:00:33 2025 GMT
Subject: CN=d370b4bd60dad5a2476a120ed2b45b0a7936cbfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d4:d2:b3:18:ad:cf:7a:ba:ee:a6:6c:ce:9e:
87:f9:4f:e5:e2:9a:6b:f4:07:a0:36:2b:d7:eb:7e:
8d:cf:98:8e:ce:c6:cc:71:e8:e0:d2:d5:4f:7b:e7:
51:57:d0:4b:08:c4:2b:4e:fe:33:8a:0d:e7:b3:1e:
29:68:35:7c:a8:93:1c:5c:1b:ed:1a:19:db:90:cd:
35:e1:10:19:ec:72:47:f1:61:ee:55:d0:55:ae:b3:
01:c1:9b:de:c9:7b:90:ab:00:05:54:45:b8:09:d6:
b0:d9:77:eb:70:e9:fe:b3:14:ce:a1:f0:cd:d2:36:
74:a7:19:c4:15:9f:b7:4b:07:bf:1c:cf:fc:c6:45:
00:81:42:6e:c0:99:22:2c:81:7d:6b:0a:0d:86:7b:
c1:9e:18:fe:06:5b:5d:a5:51:25:b2:14:89:3b:c7:
bb:44:8d:41:cc:4d:1f:11:a0:66:52:93:2d:bb:a4:
cc:73:f9:2f:fa:f3:30:ab:50:ae:4c:5f:74:d6:27:
0a:74:53:ae:f1:67:8f:30:ed:09:29:8b:15:b2:1a:
32:3b:0b:b9:b8:29:29:4a:38:c7:be:f3:ad:9c:7b:
09:13:b6:67:c3:34:08:85:69:27:98:65:48:85:2a:
08:21:75:26:61:9d:75:58:fd:4a:4f:28:65:4d:69:
7a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:70:B4:BD:60:DA:D5:A2:47:6A:12:0E:D2:B4:5B:0A:79:36:CB:FD
X509v3 Authority Key Identifier:
keyid:E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:ce:07:36:c9:5e:15:cc:48:57:cc:e5:74:5d:32:cf:03:b8:
5c:4d:16:02:a2:b9:7f:bf:10:ea:3e:46:d5:42:b7:de:75:05:
48:e5:34:c1:c1:90:3b:3a:be:6b:7a:5a:8e:ad:c5:b7:d4:65:
97:c4:71:f4:b2:9e:a6:23:4a:1c:70:2c:1f:98:77:4f:30:d6:
b1:8f:19:7c:69:e0:9b:67:cd:6c:28:dd:ac:de:2e:a0:1e:e3:
f2:c2:58:36:cd:36:d4:e9:f2:f2:3a:d1:e4:77:5a:39:a9:61:
65:e6:2f:48:b2:be:fc:8a:f7:c4:af:a1:cd:56:3c:4b:84:7d:
4e:d1:0a:24:21:3a:d0:c7:ab:f7:3c:4d:64:a0:a4:d8:ab:f7:
d5:1e:c8:7d:be:18:b5:6e:b5:a9:be:64:86:c2:d9:4d:82:3a:
53:7a:42:25:9b:bf:ed:07:bc:3c:9a:3c:77:2a:bc:d3:86:2b:
c7:2a:cc:98:48:f9:f5:ec:0a:db:28:65:69:23:7e:96:24:e7:
b1:65:ff:a1:b7:95:0e:46:28:89:cf:78:6c:0f:ca:98:89:72:
74:2d:62:ae:d5:e1:dc:59:52:09:b2:d0:b4:47:39:a8:ed:e0:
18:1a:7a:9a:8e:15:ee:a2:6b:47:4b:c9:35:81:f7:86:a6:dd:
e5:27:6c:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 11:08:45 2025 by rpki-client