Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
File: 4Genud52frl9tk5RZHhJRjO9VOo.mft (raw, json)
Hash identifier: 7yHTzxNt7gT52BYKI2w17shzj7hoK/N38WZsUX/ufq0=
Subject key identifier: 99:A1:14:AF:87:8A:C4:78:A8:80:17:43:C3:86:A6:EE:1B:C1:7D:36
Authority key identifier: E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
Certificate issuer: /CN=e067a7b9de767eb97db64e516478494633bd54ea
Certificate serial: 01976E877AD31DF7E8E93A4DE4E9F60C092D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
Manifest number: 0B90
Signing time: Sat 14 Jun 2025 13:01:01 +0000
Manifest this update: Sat 14 Jun 2025 13:01:01 +0000
Manifest next update: Sun 15 Jun 2025 13:01:01 +0000
Files and hashes: 1: 4Genud52frl9tk5RZHhJRjO9VOo.crl (hash: BDteSSegb4z+tD6sXZgYC9Va4cS2ZU4FjPljY15cchI=)
2: DQo4EErqs46yA4QIpyLHGlOprVU.roa (hash: jpEUtUNk7NIqvU0XQCmCZgYXNkApAZ2zVdQgWdhDGWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:87:7a:d3:1d:f7:e8:e9:3a:4d:e4:e9:f6:0c:09:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e067a7b9de767eb97db64e516478494633bd54ea
Validity
Not Before: Jun 14 13:01:01 2025 GMT
Not After : Jun 15 13:01:01 2025 GMT
Subject: CN=99a114af878ac478a8801743c386a6ee1bc17d36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:56:2d:a6:d7:5e:1a:4e:ff:bc:17:24:74:23:
bf:2a:e2:37:2a:75:40:7f:68:e9:9b:6f:44:d0:82:
cf:c3:9d:37:b6:18:2d:4e:6d:16:23:d6:fa:4c:b7:
4e:3f:00:6c:e0:d0:5d:58:63:27:38:3a:68:08:63:
6c:82:1b:ed:6b:a7:96:a3:81:30:64:d2:f5:29:1a:
6b:9f:95:5c:99:b0:b2:f4:3a:70:4e:40:6e:47:8d:
60:b9:11:1d:f8:d2:cd:9a:ec:c9:fe:e7:87:97:79:
22:9e:3a:84:30:42:c4:7b:79:45:73:21:55:42:3a:
64:bb:d2:f0:18:5b:6f:6d:bb:73:ed:9b:a0:e8:05:
cd:e0:a5:9d:e2:a4:f0:2c:d1:c2:81:e5:ee:49:be:
29:bc:58:e0:93:b0:9d:c9:08:ea:56:ea:7c:d4:44:
2b:34:39:21:81:0c:34:ad:90:28:6b:46:03:a8:31:
ac:02:10:b0:66:00:c7:26:9e:f6:5e:35:f2:c0:69:
d5:d5:be:5d:b1:74:65:cc:7f:81:a2:1f:2f:ec:99:
a4:31:2d:00:53:a2:70:44:70:98:99:69:d6:02:c2:
c0:11:5e:e2:b4:ba:4b:da:67:c5:7d:b7:b5:1c:1a:
8e:fa:a8:59:5d:cb:22:76:1a:68:51:15:b1:5c:d0:
c8:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A1:14:AF:87:8A:C4:78:A8:80:17:43:C3:86:A6:EE:1B:C1:7D:36
X509v3 Authority Key Identifier:
keyid:E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:86:05:8a:d5:1b:36:75:97:2e:02:a0:49:42:a4:6d:5f:e7:
07:e5:f2:75:b0:e2:ef:74:df:55:9e:cf:18:10:ec:84:c9:f5:
9d:c2:9b:20:96:be:55:5e:86:2d:ac:d2:6a:ff:60:9e:d3:b9:
8d:36:f4:f1:a4:d4:82:7d:c2:24:02:dc:57:7e:30:2d:16:93:
24:75:20:8e:fa:80:fc:43:4a:27:ad:68:70:92:c8:65:d8:8d:
99:ab:01:4a:9b:b9:49:43:0b:4a:19:c5:71:e7:cb:d4:88:c9:
d9:74:1a:91:cb:2f:3a:1b:32:d6:8d:1c:e3:5b:ae:ad:65:0b:
27:22:2d:26:69:04:1f:3a:16:61:2b:ec:4d:c3:ae:a3:9c:74:
49:2b:99:f6:28:01:ac:14:4c:01:5d:2f:8b:f6:5a:a9:4a:3e:
f2:ac:5b:2f:28:5b:e7:3f:1a:30:d6:a8:2a:3f:92:36:0b:45:
89:da:3d:20:b0:68:66:fa:fa:07:2e:6b:b4:23:28:fc:6f:de:
be:68:17:c8:48:df:2b:fc:9c:94:40:4e:52:50:d5:c3:4e:4a:
46:25:05:6a:83:af:02:ff:3d:0c:92:02:c9:5c:e3:ea:76:81:
5e:d5:f2:6d:44:cc:01:df:b6:e9:5f:6c:5b:51:40:ef:2b:8f:
e2:bf:b4:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:47:13 2025 by rpki-client