Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.mft
File: 4zTsOTRI2DvxUV9JZ6RICY5V-0M.mft (raw, json)
Hash identifier: lqykTiX89Ioi6rYeqkx/TVh3pCIb/dqWrUkYRu9nvqM=
Subject key identifier: 81:B3:24:5C:97:3E:73:54:1D:55:1E:CA:CF:5C:C2:5D:49:D6:35:1C
Authority key identifier: E3:34:EC:39:34:48:D8:3B:F1:51:5F:49:67:A4:48:09:8E:55:FB:43
Certificate issuer: /CN=e334ec393448d83bf1515f4967a448098e55fb43
Certificate serial: 01976F632F11EB12AEBF9F7E975AACDF96FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4zTsOTRI2DvxUV9JZ6RICY5V-0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.mft
Manifest number: 158F
Signing time: Sat 14 Jun 2025 17:01:00 +0000
Manifest this update: Sat 14 Jun 2025 17:01:00 +0000
Manifest next update: Sun 15 Jun 2025 17:01:00 +0000
Files and hashes: 1: 3i7bDwmXfkGeboYerA9gz4okFig.roa (hash: fWhHLCsrKiodDbQX5MlZg8yk8IDQZFwIAhXPpQk2VnY=)
2: 4zTsOTRI2DvxUV9JZ6RICY5V-0M.crl (hash: mBhDtU3ht77TrBBMy1fygGVN+fNZdMvqM50TBrNcnz8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.mft
rsync://rpki.ripe.net/repository/DEFAULT/4zTsOTRI2DvxUV9JZ6RICY5V-0M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:63:2f:11:eb:12:ae:bf:9f:7e:97:5a:ac:df:96:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e334ec393448d83bf1515f4967a448098e55fb43
Validity
Not Before: Jun 14 17:01:00 2025 GMT
Not After : Jun 15 17:01:00 2025 GMT
Subject: CN=81b3245c973e73541d551ecacf5cc25d49d6351c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9d:3e:a5:43:a7:73:95:11:ca:92:4a:2b:ed:
e9:03:63:04:a0:bc:f5:f5:e2:86:c1:6b:74:b6:71:
94:3f:9f:32:dd:79:be:85:5b:12:0b:8c:fd:3c:b7:
9f:ec:5b:c6:87:9f:9a:1e:d5:73:b8:4c:29:bd:f6:
11:ce:b2:45:8a:df:7c:5a:2e:17:a3:aa:7f:30:09:
41:3f:9c:88:fe:34:37:44:bf:24:a3:45:84:e7:58:
8a:e0:ed:23:4a:cd:d4:55:b0:31:1a:15:58:60:ae:
99:7b:a6:29:e0:b8:36:6a:fc:40:0b:f6:b6:2e:fb:
d3:2f:0c:12:46:34:4f:5d:ae:a8:69:0d:89:84:07:
41:62:7f:3b:e4:e4:e8:7e:6f:cb:ca:46:99:c2:d8:
09:e5:e8:39:35:0f:67:b7:b8:1e:70:d9:fe:4c:a3:
be:6f:44:b4:1f:9e:1b:26:7e:97:cd:bb:2d:20:c6:
78:2f:de:8d:cc:87:d1:3d:31:9b:e4:a7:54:eb:71:
67:15:99:8e:c5:92:6b:e6:b3:94:5e:81:59:d5:2d:
aa:09:7d:c5:fd:4c:de:94:fc:c1:41:44:da:a9:bf:
30:54:f8:59:12:56:02:e4:8d:4f:6b:ef:cc:1f:64:
2c:36:fa:69:d6:8f:48:e8:bf:8c:58:63:e0:35:24:
27:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B3:24:5C:97:3E:73:54:1D:55:1E:CA:CF:5C:C2:5D:49:D6:35:1C
X509v3 Authority Key Identifier:
keyid:E3:34:EC:39:34:48:D8:3B:F1:51:5F:49:67:A4:48:09:8E:55:FB:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4zTsOTRI2DvxUV9JZ6RICY5V-0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:c8:82:3b:2f:b3:7e:6e:2a:14:99:0f:44:d6:04:27:99:33:
74:f4:73:a8:6c:23:b2:d7:26:80:c5:ff:ad:7c:22:b1:11:b6:
42:f5:53:4f:92:06:bf:70:a9:59:2d:7d:07:8f:89:0c:ea:48:
e0:1b:ce:8e:db:d5:ae:1c:2e:f6:d8:65:9e:2f:43:26:3c:24:
0e:e6:b9:5e:4f:92:9b:73:f7:11:47:13:79:89:b6:b6:ce:5b:
10:11:78:72:65:1b:0a:eb:f6:f3:08:68:8a:11:ef:ca:ac:32:
2d:42:b4:dc:32:ec:09:55:fd:62:22:83:dc:0c:4b:97:37:7c:
9a:39:0d:4a:b0:0d:e2:7f:79:c8:a6:11:fd:96:b7:07:ba:4d:
b4:a3:72:20:df:8e:a1:52:b4:1b:a2:c8:f6:33:8b:73:34:2a:
52:7e:65:f7:4f:fa:7c:0f:61:03:2b:20:88:6e:25:91:e7:52:
5d:f6:8a:0d:0f:df:39:59:f3:5a:0c:f1:d1:dc:3c:d9:d3:67:
ca:41:d3:6a:f0:39:06:31:e9:1a:27:b0:7a:d4:34:cc:0c:8f:
56:9b:50:0d:c9:5d:ec:af:09:ce:df:8f:d5:c3:9a:1c:31:2c:
c3:c8:76:93:39:62:23:f8:92:b4:27:f1:43:42:68:9a:81:08:
37:70:04:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 21:44:28 2025 by rpki-client