
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
File: 4KM3CoQbiT57aPhqOTNjWC4QVkg.mft (raw, json)
Hash identifier: 0qNB2xs/5gUvwAijuknPqqOcWOewVNGZZYUOsBodT/U=
Subject key identifier: EF:73:03:D2:C6:84:9A:F4:7D:BD:88:E7:D1:13:72:7D:75:D3:AD:34
Authority key identifier: E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
Certificate issuer: /CN=e0a3370a841b893e7b68f86a393363582e105648
Certificate serial: 01987DF7CEB3EF6B779960EB5B8DF203A2D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
Manifest number: 0AF6
Signing time: Wed 06 Aug 2025 06:00:48 +0000
Manifest this update: Wed 06 Aug 2025 06:00:48 +0000
Manifest next update: Thu 07 Aug 2025 06:00:48 +0000
Files and hashes: 1: 4KM3CoQbiT57aPhqOTNjWC4QVkg.crl (hash: uE2VCvEnZqzKhcomVXgrDYBT2EdynmAPTcJcOjrq/04=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 06:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f7:ce:b3:ef:6b:77:99:60:eb:5b:8d:f2:03:a2:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0a3370a841b893e7b68f86a393363582e105648
Validity
Not Before: Aug 6 06:00:48 2025 GMT
Not After : Aug 7 06:00:48 2025 GMT
Subject: CN=ef7303d2c6849af47dbd88e7d113727d75d3ad34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:16:74:ab:dd:0e:68:15:71:a6:ef:9b:f9:20:
ee:75:81:03:6c:f7:35:b0:a6:b9:49:63:b8:d2:9d:
46:c9:6a:2a:29:c5:d8:85:88:04:eb:a0:8d:d5:80:
80:76:a3:21:98:43:b7:90:f3:44:9f:f5:4a:b6:ac:
88:dc:70:de:e4:b4:99:19:14:d4:bf:a9:14:49:3a:
1c:98:d4:72:58:34:1c:82:e5:53:cf:8b:fa:4c:da:
cf:07:91:ea:46:fd:7c:c8:a0:51:87:7b:79:e7:5d:
40:65:8e:8a:4c:84:b8:c6:43:f4:41:1f:e7:fb:71:
14:91:89:68:7b:a8:c8:af:cb:4b:8f:31:5f:bf:e8:
41:0f:82:7a:74:be:7c:d6:f8:0d:dc:02:24:7b:8d:
ef:6f:02:5a:96:0a:ab:e4:2e:35:9b:56:51:92:5b:
76:4f:93:6a:c9:fa:9a:d9:25:fe:64:4a:c2:95:1e:
2b:25:38:87:be:20:cf:a0:f0:14:aa:52:83:3f:74:
97:2b:bb:d5:10:5e:ed:bc:ff:7b:cb:23:f9:51:c2:
e9:07:f2:45:b6:c4:44:bf:7e:61:cc:c9:67:a9:f5:
91:56:b9:9c:a7:f1:49:94:0c:d0:b5:6e:8c:05:42:
33:3d:14:db:b4:38:d4:05:0a:f2:8f:a5:27:10:95:
b1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:73:03:D2:C6:84:9A:F4:7D:BD:88:E7:D1:13:72:7D:75:D3:AD:34
X509v3 Authority Key Identifier:
keyid:E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:41:b5:41:d4:3d:40:70:48:de:aa:b0:6b:05:6c:81:eb:7d:
e9:fd:22:32:ad:01:6f:99:89:9e:f0:a9:7e:94:a3:fa:ca:25:
1b:64:d0:77:ba:22:47:87:c5:30:da:a8:59:e5:72:84:78:80:
83:68:9f:76:ca:79:90:05:b5:88:0c:07:1a:66:b8:f9:aa:17:
39:09:b2:86:cd:af:5c:e6:00:88:3f:78:33:5c:e8:8c:df:56:
74:12:5c:c7:91:40:d0:36:12:46:f1:c5:16:0a:05:d3:2c:07:
a6:40:f5:54:e2:02:a4:4d:e0:70:69:9d:67:55:f1:85:6f:4e:
38:ef:d9:d3:a1:e7:e1:06:6c:f6:f7:13:9e:4f:f0:3b:60:55:
94:61:12:2d:67:3e:62:72:61:a1:74:20:bb:7d:3d:51:e6:f5:
f4:d4:16:c1:24:65:e7:ba:2a:be:dd:af:13:04:67:2a:bd:12:
9f:3c:a1:e2:95:ea:41:78:5e:82:7f:7f:8f:60:b3:74:ff:46:
29:8c:70:53:c0:0d:03:42:59:1b:fc:6f:e5:7f:79:76:42:85:
41:00:fb:08:29:ff:15:08:aa:3d:0e:b4:30:f1:2c:fd:d0:d8:
6d:50:92:b0:d9:24:55:d2:21:67:fd:b6:86:37:8f:18:39:8b:
82:6c:9e:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 10:14:49 2025 by rpki-client