Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.mft
File: 4ZAOVZbAg3SX8RiUELHtIqzbfhM.mft (raw, json)
Hash identifier: CKOm4Dv/N1FCaStTD2QeE7wyE5yKA6gNT+e6d1D6D58=
Subject key identifier: B0:D2:ED:2F:8A:8F:CC:A5:A6:71:15:42:08:41:D9:38:22:E9:AB:25
Authority key identifier: E1:90:0E:55:96:C0:83:74:97:F1:18:94:10:B1:ED:22:AC:DB:7E:13
Certificate issuer: /CN=e1900e5596c0837497f1189410b1ed22acdb7e13
Certificate serial: 01989712BC5693C581AB671C9AA164C33513
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ZAOVZbAg3SX8RiUELHtIqzbfhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.mft
Manifest number: 0B43
Signing time: Mon 11 Aug 2025 03:00:44 +0000
Manifest this update: Mon 11 Aug 2025 03:00:44 +0000
Manifest next update: Tue 12 Aug 2025 03:00:44 +0000
Files and hashes: 1: 4ZAOVZbAg3SX8RiUELHtIqzbfhM.crl (hash: lwiDJ3T0uUyOfkssY0RqusOGqdfGGl+OTPe+/GgS1fs=)
2: 8jfWRZ1NLj1bjkrxzRMG9yYupLo.roa (hash: 89HNIKxmIWfFBZvw0N2AfHWlUXDjHZG4VVH2GueEE+4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.mft
rsync://rpki.ripe.net/repository/DEFAULT/4ZAOVZbAg3SX8RiUELHtIqzbfhM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:12:bc:56:93:c5:81:ab:67:1c:9a:a1:64:c3:35:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1900e5596c0837497f1189410b1ed22acdb7e13
Validity
Not Before: Aug 11 03:00:44 2025 GMT
Not After : Aug 12 03:00:44 2025 GMT
Subject: CN=b0d2ed2f8a8fcca5a67115420841d93822e9ab25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b4:c0:bb:93:82:1c:a5:3c:13:49:49:c8:52:
45:86:87:87:52:71:2c:36:56:9c:a1:a5:fa:98:09:
03:25:3c:a0:a7:64:50:10:d3:f5:6c:7f:9a:33:42:
5b:3c:c9:70:be:b8:7f:56:11:8c:e7:06:eb:74:ff:
a5:5a:3e:5d:54:02:d7:b7:4a:13:f8:3a:6b:1f:99:
0a:98:7a:93:e5:31:f7:69:f2:6c:36:a0:d7:e1:de:
b7:81:98:e3:2a:18:f9:4f:db:7e:3d:6d:4f:d7:61:
56:70:8e:6e:b5:ba:6c:e3:0f:91:3d:3a:bf:b5:64:
a4:81:83:94:ba:4f:77:48:1a:76:9d:ef:49:53:cf:
9c:bb:98:8b:01:22:f5:66:11:a5:e1:94:83:fc:3a:
85:f4:b8:03:3c:18:bc:a0:d7:87:96:77:9b:90:09:
a1:2d:ea:1a:90:98:9c:9f:e8:f2:ed:45:38:b8:12:
1d:5b:d8:f2:ef:42:7c:15:f2:c2:6f:82:37:72:c2:
5d:66:0d:5c:56:a4:44:b4:77:89:a1:4c:46:36:7b:
24:80:af:72:f9:31:72:8a:ee:b1:c2:38:14:d3:cf:
9f:b9:63:60:e0:c6:2e:6e:f5:a3:19:ce:b9:10:c1:
44:07:92:10:2e:97:10:00:d4:15:52:d7:02:35:23:
a3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:D2:ED:2F:8A:8F:CC:A5:A6:71:15:42:08:41:D9:38:22:E9:AB:25
X509v3 Authority Key Identifier:
keyid:E1:90:0E:55:96:C0:83:74:97:F1:18:94:10:B1:ED:22:AC:DB:7E:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ZAOVZbAg3SX8RiUELHtIqzbfhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:81:c7:21:1d:fd:a8:11:a5:3e:7e:2b:32:96:6a:15:6d:1a:
70:56:0b:37:dd:bf:d4:2b:87:98:44:a0:b3:42:45:af:53:1a:
6e:17:ef:4a:ad:a8:82:6c:65:81:94:86:7b:84:15:96:7f:55:
67:53:c8:95:6b:47:d0:37:15:e6:f4:4a:9a:72:55:eb:98:ff:
b1:8b:c2:f8:95:5e:b5:46:18:ec:a0:70:a1:f9:ea:f9:74:49:
89:ea:2b:41:78:a3:c4:7a:61:84:44:3a:58:39:ef:22:3c:25:
c3:fc:8f:65:80:47:1c:02:de:50:10:96:dc:93:83:1e:00:82:
14:12:c5:89:d1:f2:c3:bf:6d:b4:d8:59:c4:c2:3e:c1:94:77:
8f:36:ed:cc:11:e5:b2:4a:10:a5:1d:68:bc:47:d1:fc:25:93:
87:12:74:20:2c:df:36:01:e9:76:80:e5:f3:c1:f8:ec:75:9b:
a2:ca:c9:e8:76:c7:df:c4:77:42:75:f2:e1:ce:0c:09:01:98:
2c:84:5a:17:bc:fd:43:18:55:c9:2c:d9:69:d2:db:5b:ff:a3:
30:4c:b3:a6:c4:51:8a:f8:c5:0f:e8:ec:a0:44:f0:6f:bb:1a:
7d:33:b0:ac:52:0b:b0:47:7c:7f:64:8b:58:77:d8:18:e1:af:
bd:6b:a0:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 05:06:35 2025 by rpki-client