Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.mft
File: 4ZAOVZbAg3SX8RiUELHtIqzbfhM.mft (raw, json)
Hash identifier: A6w4kMt4A5te9D9dAQmmlpJ9lTQ8BMW1+TP5fJ9meJA=
Subject key identifier: 47:5C:7A:84:A8:C0:98:92:E2:9C:45:1C:6B:3C:4E:F8:43:74:4A:2C
Authority key identifier: E1:90:0E:55:96:C0:83:74:97:F1:18:94:10:B1:ED:22:AC:DB:7E:13
Certificate issuer: /CN=e1900e5596c0837497f1189410b1ed22acdb7e13
Certificate serial: 019782E9B8452515763B915FD0A3063A8C77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ZAOVZbAg3SX8RiUELHtIqzbfhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.mft
Manifest number: 0AB4
Signing time: Wed 18 Jun 2025 12:00:44 +0000
Manifest this update: Wed 18 Jun 2025 12:00:44 +0000
Manifest next update: Thu 19 Jun 2025 12:00:44 +0000
Files and hashes: 1: 4ZAOVZbAg3SX8RiUELHtIqzbfhM.crl (hash: P9aQlckEiIG8CnUytLPZ8uC575S6XSOoWnMTfBe5s1A=)
2: 8jfWRZ1NLj1bjkrxzRMG9yYupLo.roa (hash: 89HNIKxmIWfFBZvw0N2AfHWlUXDjHZG4VVH2GueEE+4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.mft
rsync://rpki.ripe.net/repository/DEFAULT/4ZAOVZbAg3SX8RiUELHtIqzbfhM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 12:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:82:e9:b8:45:25:15:76:3b:91:5f:d0:a3:06:3a:8c:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1900e5596c0837497f1189410b1ed22acdb7e13
Validity
Not Before: Jun 18 12:00:44 2025 GMT
Not After : Jun 19 12:00:44 2025 GMT
Subject: CN=475c7a84a8c09892e29c451c6b3c4ef843744a2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1a:06:27:8d:41:13:4c:41:fd:44:03:5c:ca:
73:50:b9:8d:8a:25:37:10:ff:b4:ec:9e:03:21:be:
fa:c3:c0:34:a3:c6:b8:8c:e8:41:b3:dd:3a:c3:8e:
1d:e8:89:4f:04:4f:04:ac:7d:86:6e:7b:0f:f1:0c:
f1:7a:31:59:24:ef:08:e3:c5:a9:dc:45:9b:56:c4:
7f:52:fc:95:b0:40:c2:c5:ae:02:b4:aa:26:21:69:
6b:a1:90:9b:af:b4:86:ea:f9:8c:4e:0b:b0:32:af:
b5:64:27:ec:f1:32:58:7a:f5:b3:b7:98:35:89:11:
9b:d3:15:dd:12:68:2f:fc:3c:54:d9:46:e7:f1:db:
d6:cd:f7:fc:88:34:55:b8:f6:6d:25:9d:62:54:39:
76:f5:31:ad:c4:55:7c:8f:49:a8:af:be:fe:47:27:
c5:f9:8b:3e:95:a9:81:9f:37:9b:b6:ac:fb:3f:8b:
34:3e:bf:6c:f0:2d:55:99:3e:20:66:5b:dc:8a:85:
64:9f:97:33:42:02:c8:c9:b3:e8:27:52:19:a6:86:
a8:79:1a:20:d9:b5:1c:5f:fe:95:e6:ae:a7:b1:49:
4f:5e:ef:c5:5c:90:65:8e:2d:a8:8c:0e:f9:94:16:
0a:cf:27:36:a3:67:ed:d6:cd:32:c6:a0:b7:7e:fd:
52:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:5C:7A:84:A8:C0:98:92:E2:9C:45:1C:6B:3C:4E:F8:43:74:4A:2C
X509v3 Authority Key Identifier:
keyid:E1:90:0E:55:96:C0:83:74:97:F1:18:94:10:B1:ED:22:AC:DB:7E:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ZAOVZbAg3SX8RiUELHtIqzbfhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:1a:75:26:97:df:da:2b:53:fc:92:c9:2f:4a:16:50:34:60:
c3:b7:b0:61:1f:e8:8e:d8:8b:cc:22:dc:19:67:c1:0c:04:bf:
8f:d6:5d:07:98:72:f2:8f:e3:1c:92:3c:cd:57:e9:95:ce:4e:
25:f5:f2:6e:63:61:4a:3a:e7:d6:18:7c:5e:cc:80:b9:1f:18:
41:eb:2c:09:b6:a0:0f:f9:97:c6:4b:78:ed:ff:53:ec:eb:94:
b5:4f:d5:7b:ab:e4:78:b4:db:42:0b:13:14:7d:9a:11:11:05:
f7:aa:85:36:11:1e:2e:27:79:fd:89:f0:21:54:d9:ca:d1:9b:
16:24:54:94:ed:f0:c9:e7:cd:e5:63:b0:04:40:08:b8:e0:88:
dd:5c:e5:25:73:57:91:39:a5:1d:28:c7:7c:a2:4c:f4:d0:28:
8c:a5:e5:5a:07:3e:e9:8c:d5:a9:eb:c0:37:3c:39:7e:be:c5:
b9:3b:17:b9:82:03:d8:b9:87:cb:4c:40:53:47:ad:c7:15:9f:
22:7f:ed:80:8e:41:43:15:41:65:24:e8:d7:a5:48:42:6e:df:
d5:ae:3e:76:ee:40:b1:84:49:3a:a9:64:9d:74:e4:0c:0a:58:
22:5d:d6:c2:c8:dc:67:61:3f:49:05:3e:93:a0:db:b8:da:f3:
b7:9a:20:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 21:55:44 2025 by rpki-client