Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.mft
File: g4xPgQ16IKeDpPqxwDRGe4JQUbk.mft (raw, json)
Hash identifier: +XhpeEL5FybcSZbzv0MtdEa0zdteFrQr/2PyZRHCSDs=
Subject key identifier: 43:90:B8:24:64:72:5B:BF:57:2F:CD:13:BF:27:23:77:1A:BF:81:14
Authority key identifier: 83:8C:4F:81:0D:7A:20:A7:83:A4:FA:B1:C0:34:46:7B:82:50:51:B9
Certificate issuer: /CN=838c4f810d7a20a783a4fab1c034467b825051b9
Certificate serial: 01977007ACAA8DEBACC32C02E05F481CD359
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g4xPgQ16IKeDpPqxwDRGe4JQUbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.mft
Manifest number: 158F
Signing time: Sat 14 Jun 2025 20:00:40 +0000
Manifest this update: Sat 14 Jun 2025 20:00:40 +0000
Manifest next update: Sun 15 Jun 2025 20:00:40 +0000
Files and hashes: 1: JRNBLXBQWgTuBg1-jZxrM7iYCuQ.roa (hash: A/80zWYF3RYk10mzwst52/4Qz1yzT35DfBM28lDeN+s=)
2: g4xPgQ16IKeDpPqxwDRGe4JQUbk.crl (hash: zReq7eFConAqjVayVPPcos5ZTH+yTyNa18sfTnDz5Hs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.mft
rsync://rpki.ripe.net/repository/DEFAULT/g4xPgQ16IKeDpPqxwDRGe4JQUbk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:07:ac:aa:8d:eb:ac:c3:2c:02:e0:5f:48:1c:d3:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=838c4f810d7a20a783a4fab1c034467b825051b9
Validity
Not Before: Jun 14 20:00:40 2025 GMT
Not After : Jun 15 20:00:40 2025 GMT
Subject: CN=4390b82464725bbf572fcd13bf2723771abf8114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f1:4d:9c:03:98:0c:a2:1d:11:88:ab:0f:a1:
a7:4f:35:01:86:b6:11:c3:7f:78:9d:65:d9:2c:f0:
bf:de:92:97:f5:f7:b0:94:45:d9:e3:55:9e:f7:b7:
57:05:77:ec:31:4e:c4:ea:58:f7:c3:ef:ae:f7:3a:
aa:24:b4:9b:9c:42:d1:93:0b:67:f9:e9:01:62:35:
ff:b0:fd:44:01:ef:88:7d:00:6c:8c:32:20:0d:0a:
93:47:e1:10:f2:61:12:22:e2:6d:1f:56:82:4e:d6:
22:b3:ff:63:39:83:ae:21:1e:cd:0d:c2:7b:38:5b:
8f:c2:c8:1d:c3:7c:71:c7:9f:b0:dd:c7:4e:3c:c6:
de:4a:b4:9a:22:96:b5:ce:00:77:1b:8e:70:b2:a9:
ed:f1:e5:2b:42:7f:60:13:73:25:70:a4:ec:81:b3:
76:bf:02:bd:ea:e5:cc:3d:f0:5c:af:2e:10:a8:1f:
5c:47:e8:c3:9d:71:62:cf:7e:b7:10:02:84:62:7a:
dc:72:9d:70:67:f9:7e:98:b8:35:54:40:43:fd:88:
52:21:82:d1:f0:07:6e:f3:66:32:bf:cd:87:78:3b:
dd:3e:24:cb:26:f2:9c:02:b0:18:96:57:7e:e6:98:
4c:f4:8a:bb:4f:df:6d:56:cf:3a:23:57:c0:21:47:
18:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:90:B8:24:64:72:5B:BF:57:2F:CD:13:BF:27:23:77:1A:BF:81:14
X509v3 Authority Key Identifier:
keyid:83:8C:4F:81:0D:7A:20:A7:83:A4:FA:B1:C0:34:46:7B:82:50:51:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g4xPgQ16IKeDpPqxwDRGe4JQUbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:42:40:ac:25:42:d5:85:b1:96:94:ac:5c:ed:fb:ce:f0:99:
56:85:13:0a:bf:7f:41:63:4b:e1:06:47:c4:38:fb:4d:ce:e5:
a2:cc:5b:00:02:cd:4e:1d:67:4d:fe:16:cf:fc:e3:34:6c:b4:
f9:a1:ea:03:d9:ba:2a:e5:a9:57:60:4c:5b:65:8d:1c:8c:73:
4b:00:9c:8f:bb:d8:47:93:94:d9:ce:6b:6f:f6:cb:1a:79:06:
43:31:de:f4:10:f9:89:b3:8b:e3:af:9a:78:5a:4a:d3:1b:1b:
fe:7b:1a:e0:33:65:ff:14:bd:05:56:04:03:52:e2:0d:2a:1e:
42:67:09:49:5a:ad:d4:18:0c:4b:af:ad:7f:a4:78:ae:e2:9d:
04:50:3f:8e:79:8c:c7:e2:9d:d9:67:5d:eb:d8:64:8d:55:6b:
0b:b3:22:a3:3d:4d:d0:81:bc:25:54:dc:93:97:fc:c7:90:f2:
31:70:fc:99:07:3c:d4:95:cc:af:ed:62:a8:c5:58:a3:fe:c4:
25:3b:1d:d4:2a:2b:44:25:5c:df:fc:b6:9c:1b:99:68:a2:1f:
e8:26:3e:20:e9:dc:fe:5e:51:d5:b6:9d:f0:dc:34:c3:32:cd:
e9:9a:13:0a:94:9d:38:d5:54:62:1a:e6:49:17:bc:07:dc:06:
5c:40:ab:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:26:08 2025 by rpki-client