Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
File: 4gShwspKTbAzN142DeMjeQumpbk.mft (raw, json)
Hash identifier: fvsw9pGN4LX+xSbf3WdjpknDVmhXbQwp6W9+eHTr1+E=
Subject key identifier: FE:E1:67:0A:6A:AC:EA:F8:70:9F:3B:5D:02:F7:5D:CB:80:0D:24:C9
Authority key identifier: E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
Certificate issuer: /CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Certificate serial: 019770AC8B9E1DF511A9FEE35E174CBEEE37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
Manifest number: 0E25
Signing time: Sat 14 Jun 2025 23:00:45 +0000
Manifest this update: Sat 14 Jun 2025 23:00:45 +0000
Manifest next update: Sun 15 Jun 2025 23:00:45 +0000
Files and hashes: 1: 4gShwspKTbAzN142DeMjeQumpbk.crl (hash: dXK36Hd+968J+HCSrzHf61f04wZnYa/wxWq2NnplVaY=)
2: gA2VeOc__NflxeLdsWWIIUZ9Deg.roa (hash: ipk5YS27VQlaPqS1epEEueLOZHeXvism8b/2q3vbuaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:ac:8b:9e:1d:f5:11:a9:fe:e3:5e:17:4c:be:ee:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Validity
Not Before: Jun 14 23:00:45 2025 GMT
Not After : Jun 15 23:00:45 2025 GMT
Subject: CN=fee1670a6aaceaf8709f3b5d02f75dcb800d24c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:37:20:bd:81:e8:e6:b4:b5:33:2a:30:2f:1d:
83:b8:51:46:23:24:69:e3:a7:ec:26:01:4c:fc:ca:
e7:b0:5f:f0:ac:d1:7b:1a:bc:20:13:03:12:6b:af:
1f:d2:d1:49:0e:8f:37:7f:5f:c1:69:d7:2c:2d:9a:
bb:ce:e2:0a:18:a2:4a:09:a6:72:89:45:c6:11:af:
09:17:e8:90:64:d8:85:71:d0:8f:2b:8f:a1:1f:1e:
10:ed:f0:65:68:30:b2:1c:f4:7c:d4:c8:a8:0d:61:
e3:04:0a:34:af:82:73:81:61:30:ae:1f:6d:65:5d:
ba:19:28:a0:96:2b:b9:19:16:b4:00:f7:be:bf:98:
3a:4f:83:c7:da:8d:1f:08:19:bf:db:a1:30:6e:17:
6c:f9:0e:9d:29:a9:8a:a5:60:98:33:37:6f:c0:b9:
c4:03:55:2e:77:78:a1:3b:90:d0:84:b0:24:67:51:
5a:3d:4f:a6:71:c0:9b:71:42:74:d9:3c:f4:d7:89:
a4:4d:1a:68:fa:df:f7:c8:25:0d:5a:78:5a:89:35:
58:83:b7:cf:95:fd:44:40:ec:88:7c:55:8d:20:c4:
77:e6:14:b4:f7:89:2b:2f:23:ea:8e:ec:80:45:50:
b5:4b:58:30:75:4e:d6:df:d8:41:b3:e4:54:d2:46:
9a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:E1:67:0A:6A:AC:EA:F8:70:9F:3B:5D:02:F7:5D:CB:80:0D:24:C9
X509v3 Authority Key Identifier:
keyid:E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:d4:ae:4e:df:6f:2d:d1:0f:1c:33:05:30:25:89:d5:26:c5:
e6:6a:e7:d9:c3:65:71:dd:0e:16:e5:ad:f4:06:fd:9b:ff:12:
dc:11:e0:48:da:51:46:cd:be:fb:0d:bc:2b:f0:c1:2c:ca:0b:
9e:7d:37:31:69:2d:71:fd:ac:8e:9a:c5:8d:12:44:72:54:e6:
8b:b1:b5:b6:96:71:ac:1a:d6:b8:0f:42:f3:81:74:d8:7e:bf:
82:c0:36:9c:55:aa:8f:06:d1:dc:46:10:26:5f:eb:2f:2c:79:
32:f2:a6:f6:4e:f8:12:cf:4a:6f:b9:2e:68:6c:67:d9:81:0d:
54:19:3b:04:93:91:cd:77:93:24:4b:ba:13:06:32:4f:ab:87:
28:2f:00:80:b4:f7:49:51:99:8a:d3:ca:21:3d:89:71:94:f2:
66:cb:dc:9a:db:30:c9:b8:0e:b4:1c:27:67:bb:08:9d:34:c8:
e9:67:31:94:f2:4c:e0:e7:f2:ca:c7:da:9a:66:09:a9:72:ae:
13:27:a4:d4:b2:44:e4:16:39:74:9c:ae:bd:09:e1:0f:31:24:
21:97:2a:68:e1:e7:6e:85:39:6f:23:48:ce:3c:a6:c5:cc:22:
e4:bb:c4:07:ce:bd:2b:f4:d9:43:cd:f5:37:84:51:93:5b:2e:
7d:35:fd:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:09:05 2025 by rpki-client