Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
File: 4Genud52frl9tk5RZHhJRjO9VOo.mft (raw, json)
Hash identifier: V47o6YDPrclcubAwE7rwALtyBW9ngld9luE8FLhHPFQ=
Subject key identifier: D6:13:4E:D1:9F:68:E7:E3:52:2C:2D:93:B2:C3:E0:FA:84:E9:F1:DB
Authority key identifier: E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
Certificate issuer: /CN=e067a7b9de767eb97db64e516478494633bd54ea
Certificate serial: 01987908D3EA06B067073FF3180AFA364B62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
Manifest number: 0C1A
Signing time: Tue 05 Aug 2025 07:01:18 +0000
Manifest this update: Tue 05 Aug 2025 07:01:18 +0000
Manifest next update: Wed 06 Aug 2025 07:01:18 +0000
Files and hashes: 1: 4Genud52frl9tk5RZHhJRjO9VOo.crl (hash: YNXzKd0wuqsztZeNBehmwefQrPDIlbXlopGvBhLFpgA=)
2: DQo4EErqs46yA4QIpyLHGlOprVU.roa (hash: jpEUtUNk7NIqvU0XQCmCZgYXNkApAZ2zVdQgWdhDGWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 07:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:79:08:d3:ea:06:b0:67:07:3f:f3:18:0a:fa:36:4b:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e067a7b9de767eb97db64e516478494633bd54ea
Validity
Not Before: Aug 5 07:01:18 2025 GMT
Not After : Aug 6 07:01:18 2025 GMT
Subject: CN=d6134ed19f68e7e3522c2d93b2c3e0fa84e9f1db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cf:7e:b2:71:7d:54:70:64:3f:1f:e9:b5:1d:
e8:fa:26:57:d9:eb:58:f8:fe:f9:e9:81:2a:5c:57:
7e:22:f9:39:40:2b:08:d7:81:07:3e:6e:e8:7c:86:
7d:73:86:2e:49:04:63:c7:f4:5f:d9:f3:2b:c8:32:
26:92:6f:64:31:f8:a1:3f:5d:5c:03:c6:28:e6:de:
2e:b1:27:cc:95:07:54:85:d2:d0:2c:80:af:0b:39:
31:41:c5:60:a3:5c:22:bc:fb:bc:03:5c:7f:fa:c0:
c3:f5:16:9f:0c:16:46:33:a9:ca:1e:dd:4a:84:f0:
f9:b2:fd:2a:e5:02:19:b7:6f:45:52:50:17:81:e2:
e5:39:d0:52:90:d8:c3:8d:ab:cc:e7:91:2e:54:c6:
5b:b4:e4:84:7b:be:27:e5:94:39:66:e9:2e:3c:cb:
e8:92:88:0b:04:a2:25:ed:bb:95:e8:ca:1e:15:22:
d5:4d:a8:ad:f8:39:89:ef:c0:4b:6a:49:8f:0c:b9:
a3:3a:0f:32:11:bb:07:54:b7:5e:17:f9:5b:71:3b:
17:84:e4:87:e5:f4:53:3b:03:d4:77:03:07:83:49:
76:47:3a:b4:04:d7:46:6e:82:c7:82:ad:44:1e:3b:
cb:d4:fd:f8:68:9b:fa:05:2a:0a:ef:93:9b:c9:d2:
42:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:13:4E:D1:9F:68:E7:E3:52:2C:2D:93:B2:C3:E0:FA:84:E9:F1:DB
X509v3 Authority Key Identifier:
keyid:E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:32:a6:a6:70:95:ff:63:34:bd:ab:c5:20:01:85:c2:1b:25:
25:9d:b8:70:fa:3e:fe:36:1b:97:09:2f:bd:7f:49:93:fb:e0:
52:f8:bf:97:e9:f6:b9:d4:e7:d6:4b:4e:ef:fd:95:a8:b9:4b:
31:45:95:7e:20:69:55:96:fd:6f:7d:0c:c7:e9:d1:ec:1e:1f:
44:5c:0e:ec:2b:07:77:b5:2e:53:c3:b8:05:36:7c:eb:85:02:
13:43:58:a9:cc:21:75:3b:75:a9:bb:49:36:81:8d:a7:07:6b:
e3:95:fc:f0:bf:97:ce:65:11:83:34:1a:f3:79:a8:c3:d3:5a:
1e:7d:42:18:9c:d7:99:8c:76:33:d1:01:f5:4b:8e:44:5a:51:
ff:f2:9f:ea:06:15:a4:d3:bd:e8:84:cb:9d:5c:ce:91:9f:e9:
93:05:58:14:9c:09:88:21:ec:f1:fa:fb:17:ee:e2:94:1b:27:
c9:35:3b:02:9d:ef:93:38:c5:c6:34:a6:57:58:3d:21:4b:78:
a1:38:61:93:6e:10:af:a9:b7:4a:fa:c3:2a:d1:3b:56:9b:1e:
a5:b0:14:bf:df:ec:dd:97:cc:f2:6b:df:04:3d:20:e8:99:c1:
6a:62:7c:f2:6a:25:6e:8b:8d:49:20:07:02:05:2b:46:c1:39:
e3:36:c2:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 17:12:31 2025 by rpki-client