Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft
File: g4heOKx3ysBEgptTyzslq-Yen2Q.mft (raw, json)
Hash identifier: YWsD4J2F8HKXf+RcBo3bPTzC4CwU51wj6coms5OVx1c=
Subject key identifier: 4F:42:7F:8C:3D:8C:97:55:89:61:03:46:C3:AE:00:B2:D5:8C:4D:37
Authority key identifier: 83:88:5E:38:AC:77:CA:C0:44:82:9B:53:CB:3B:25:AB:E6:1E:9F:64
Certificate issuer: /CN=83885e38ac77cac044829b53cb3b25abe61e9f64
Certificate serial: 019768BC40A34609E724EC7BCB28828487E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g4heOKx3ysBEgptTyzslq-Yen2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft
Manifest number: 059D
Signing time: Fri 13 Jun 2025 10:00:57 +0000
Manifest this update: Fri 13 Jun 2025 10:00:57 +0000
Manifest next update: Sat 14 Jun 2025 10:00:57 +0000
Files and hashes: 1: c8jr9RK1jYIIU9J_37XkvdpDKPQ.roa (hash: FypzDCTYnJOnd+60Jv/bTV7/TP6pt9nWegIKGFpscqo=)
2: g4heOKx3ysBEgptTyzslq-Yen2Q.crl (hash: FkYWLxFugmBt+Q0VDutma3fXj21M4pJZ2mkK247kiS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/g4heOKx3ysBEgptTyzslq-Yen2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 10:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:bc:40:a3:46:09:e7:24:ec:7b:cb:28:82:84:87:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83885e38ac77cac044829b53cb3b25abe61e9f64
Validity
Not Before: Jun 13 10:00:57 2025 GMT
Not After : Jun 14 10:00:57 2025 GMT
Subject: CN=4f427f8c3d8c975589610346c3ae00b2d58c4d37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:2f:44:45:8b:97:5a:3d:f2:d6:ab:ed:e0:bc:
46:0d:3f:74:2b:1b:ea:29:2d:25:96:d3:1d:7d:76:
18:58:34:63:17:b4:61:c8:82:1a:c8:d5:b1:b0:74:
8b:0f:22:4f:02:b7:38:63:5d:5c:8c:52:ae:7d:6b:
b7:07:bd:17:a6:2d:93:61:c1:cc:55:2c:8f:1d:05:
94:81:8b:dd:ed:a0:cf:4d:c9:ef:f0:9e:52:f3:6b:
66:63:d9:ae:e5:66:0d:cf:d2:a0:99:73:e0:27:b2:
87:01:e5:e5:72:cb:a5:b2:89:64:a7:73:78:87:5b:
e6:ac:0e:10:3b:25:40:1f:2b:a2:fe:e6:b3:99:85:
62:76:65:d7:55:ff:f4:fb:44:ea:48:85:9c:13:62:
df:f4:3b:71:a7:0b:9c:eb:8a:0e:2b:38:b5:e5:bd:
0e:41:0a:39:3d:5d:d5:a7:23:87:43:fc:66:21:02:
f4:23:74:ce:41:85:cd:98:3d:d9:bf:01:79:23:5a:
93:94:06:08:de:6a:71:8d:2c:0f:31:87:57:a3:8f:
65:9b:a1:9a:b6:71:8d:2a:ab:f0:15:c3:ba:b6:62:
2a:08:6c:2a:38:50:ca:a7:84:4a:41:52:c1:43:0f:
bb:1f:66:f1:5d:c4:50:ef:2f:89:4f:37:4e:45:9b:
55:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:42:7F:8C:3D:8C:97:55:89:61:03:46:C3:AE:00:B2:D5:8C:4D:37
X509v3 Authority Key Identifier:
keyid:83:88:5E:38:AC:77:CA:C0:44:82:9B:53:CB:3B:25:AB:E6:1E:9F:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g4heOKx3ysBEgptTyzslq-Yen2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:03:af:87:ce:c6:f6:c6:47:0f:70:b3:b1:59:c6:d2:f0:41:
cb:1b:15:e2:8d:d9:2e:05:6a:4c:91:b6:f0:fb:96:d7:dd:8d:
2e:c5:19:16:8d:02:de:f4:c9:0d:27:2f:23:fd:65:38:e9:44:
8c:3f:53:5e:5e:6f:d1:5c:57:ed:f4:37:22:aa:27:55:b3:1f:
3a:ef:67:fe:9b:32:dc:75:59:22:84:a6:ce:39:26:c6:13:ad:
60:1b:c6:c5:bf:de:b5:be:68:e7:58:05:d5:85:91:05:f8:20:
82:d6:78:0c:3e:42:db:02:3d:86:19:3c:6f:40:59:0d:10:b9:
cc:ed:cb:12:69:38:43:a7:6c:3f:4e:d4:2d:8b:5d:6b:bb:ba:
c5:60:f1:93:0d:05:20:0e:04:8f:58:48:c0:68:46:a3:10:4a:
0d:30:d7:a0:c0:e0:a6:e0:48:c7:27:3e:61:34:d4:7f:af:32:
62:10:1d:79:99:22:f1:b9:35:46:26:f8:30:c6:af:a1:5d:79:
c0:de:fd:6f:3b:11:04:21:e6:7d:5d:6b:0d:52:66:0d:3d:84:
88:c5:4c:ec:1a:60:98:ef:d8:ee:61:34:fe:f1:83:2d:53:79:
39:a1:b2:f1:16:de:11:49:30:90:4f:f3:fc:a6:82:ff:bc:6f:
0c:71:e5:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:24:40 2025 by rpki-client