Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
File: 4gShwspKTbAzN142DeMjeQumpbk.mft (raw, json)
Hash identifier: akrJ+ecHmh5hEPxq0kAt+0mdxsWSFPMf/ROUazEQWaQ=
Subject key identifier: 5A:3F:99:29:E2:6A:2A:06:11:E9:14:AF:B5:4E:22:61:75:01:EC:35
Authority key identifier: E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
Certificate issuer: /CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Certificate serial: 01967D57FCF7CE056FB86982121308D5DB0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
Manifest number: 0DA7
Signing time: Mon 28 Apr 2025 17:00:40 +0000
Manifest this update: Mon 28 Apr 2025 17:00:40 +0000
Manifest next update: Tue 29 Apr 2025 17:00:40 +0000
Files and hashes: 1: 4gShwspKTbAzN142DeMjeQumpbk.crl (hash: Z9D+vT4rImK7fr7R+ImASQ+lcEhah5MDCTNcbApP6oc=)
2: gA2VeOc__NflxeLdsWWIIUZ9Deg.roa (hash: ipk5YS27VQlaPqS1epEEueLOZHeXvism8b/2q3vbuaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:57:fc:f7:ce:05:6f:b8:69:82:12:13:08:d5:db:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Validity
Not Before: Apr 28 17:00:40 2025 GMT
Not After : Apr 29 17:00:40 2025 GMT
Subject: CN=5a3f9929e26a2a0611e914afb54e22617501ec35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:26:1d:14:db:9b:cb:44:42:07:5d:73:65:94:
8f:27:a8:0c:1e:55:c9:5f:c4:31:79:f0:fa:07:63:
30:0a:97:8e:99:35:b1:86:f3:68:1d:f9:9e:5d:59:
67:6d:80:b4:0a:4f:72:4c:9b:9b:99:f6:d0:e3:7a:
b2:c6:ad:ea:ce:fc:75:f8:06:78:4a:81:24:7f:c1:
90:da:90:7c:f4:ce:ff:98:8a:e9:21:b4:fb:ba:15:
2d:51:d1:f8:78:26:4c:0f:11:fd:44:94:92:2b:4f:
93:65:6d:6b:0e:71:b0:6f:9a:18:d0:72:93:de:8a:
f5:b3:51:05:6d:aa:ed:b6:f7:28:61:a7:77:af:91:
b1:5d:0c:8c:16:52:2d:ff:f9:f7:f0:eb:da:0d:af:
e7:47:d3:e5:69:f8:c5:a3:89:93:89:ef:48:6e:92:
1a:0e:fc:5c:06:e1:60:6c:dd:d4:d1:76:c7:9d:92:
bc:b5:cd:b6:06:20:c0:00:e6:4c:3d:66:25:e4:85:
b5:c2:a7:05:ad:4e:4b:89:1d:4f:78:45:46:2d:db:
1b:fd:25:9d:55:08:fe:f5:9b:8d:57:57:c4:e8:83:
7a:e1:09:e0:5d:31:67:be:5b:91:4b:92:df:2d:8c:
9f:14:a4:f7:81:27:2e:da:2c:fd:f9:9b:78:0f:4a:
d3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:3F:99:29:E2:6A:2A:06:11:E9:14:AF:B5:4E:22:61:75:01:EC:35
X509v3 Authority Key Identifier:
keyid:E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:85:5a:bc:4e:bd:a5:bc:fc:17:a1:77:c8:23:90:f3:d0:c5:
3b:17:49:c0:36:a2:5d:8a:9f:a8:42:4f:0b:29:6d:03:80:21:
98:7a:af:ff:c2:79:96:26:ee:7d:a3:5d:bb:99:af:b5:85:ca:
15:dd:c7:4c:de:7e:bc:56:bd:90:c2:95:2d:47:76:8f:22:56:
f5:5f:8a:98:0e:28:e2:53:e3:5f:6e:2f:02:ee:54:a5:cb:4e:
4a:d4:cb:7d:3d:bd:85:6d:aa:bc:b2:c2:e4:df:2d:d3:df:a2:
8a:5d:61:6e:7f:60:e9:91:af:69:35:82:f6:11:fe:4b:f8:05:
d3:ad:78:10:46:d5:f9:08:c1:99:11:50:07:ac:0d:fd:ab:ca:
07:13:bb:c3:20:b4:c6:a5:cc:98:53:b2:42:8a:1d:9b:29:30:
f1:54:51:0e:c9:00:69:78:07:30:0a:0a:65:7d:ff:df:38:33:
f2:b0:ab:8e:39:ca:7a:ad:f8:ab:e5:85:2b:8f:ff:f9:b3:8b:
ee:62:bd:c4:ad:f0:3c:8c:00:47:00:d0:15:57:ed:45:1f:c7:
38:f8:38:4b:4c:ad:6e:f7:eb:9d:52:4f:11:26:e6:34:cd:56:
38:1a:1a:37:b8:ed:e9:b0:f9:b7:d5:2c:1d:61:0f:ae:c7:53:
ee:83:41:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 01:53:46 2025 by rpki-client