Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
File: rjRcTQnm4iTh2vRmV9PHEYewIjY.mft (raw, json)
Hash identifier: FA5hc8jtSN+A9r8leIbFn/IWVAzCTrI6STzLjtBCcN0=
Subject key identifier: 3D:FA:7C:3D:11:88:1C:8F:38:A1:39:F2:43:EA:70:19:F9:A0:C3:F4
Authority key identifier: AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
Certificate issuer: /CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Certificate serial: 0197838E9821B933773EFCF58BAD45ED438C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
Manifest number: 04E4
Signing time: Wed 18 Jun 2025 15:00:49 +0000
Manifest this update: Wed 18 Jun 2025 15:00:49 +0000
Manifest next update: Thu 19 Jun 2025 15:00:49 +0000
Files and hashes: 1: rjRcTQnm4iTh2vRmV9PHEYewIjY.crl (hash: Gj2Fi/AoO7HjYU2BfhrLDwTcy4YBHZp0DwJ293yDLPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 15:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:83:8e:98:21:b9:33:77:3e:fc:f5:8b:ad:45:ed:43:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Validity
Not Before: Jun 18 15:00:49 2025 GMT
Not After : Jun 19 15:00:49 2025 GMT
Subject: CN=3dfa7c3d11881c8f38a139f243ea7019f9a0c3f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:32:24:2d:69:b5:60:a8:e5:f9:6d:67:14:d9:
bc:1e:5e:4c:e3:7a:c6:0d:ca:ca:41:16:42:0d:13:
c7:40:02:4c:b9:64:09:81:d0:9e:da:bc:b9:b5:98:
5b:d8:eb:7d:0f:4d:e8:56:ed:6e:95:9a:33:2c:d8:
b9:53:48:41:ee:8c:88:05:b0:8e:f3:6f:00:bf:f0:
c9:2b:7c:a4:1b:7a:62:eb:5f:0d:2c:c6:ff:49:60:
21:2b:e9:54:45:13:06:e0:d1:18:4c:c0:f4:49:02:
da:90:ae:c4:b1:13:ac:b7:da:c3:59:15:49:be:0e:
ad:35:68:34:8d:99:11:80:11:ff:07:0c:0f:d1:54:
df:6a:da:2c:29:bc:53:79:a4:c8:24:b9:6e:54:d2:
6e:d6:ea:1e:3a:8b:99:7d:f4:ab:63:f3:d6:fd:69:
99:ca:23:85:03:a4:3e:2f:6f:9d:f8:50:00:5a:2d:
a3:f1:48:42:d1:35:8c:df:f8:8b:2a:ab:29:7f:2e:
4c:5e:57:29:20:2b:df:41:1e:f4:9f:80:fa:7f:78:
0a:f9:f5:9a:38:40:75:06:01:e7:54:13:0f:c4:5b:
32:5b:54:16:0e:89:84:01:7d:da:fc:6e:59:cc:1c:
8b:41:f1:f3:22:82:f3:f2:94:e4:42:87:e5:e2:7e:
56:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:FA:7C:3D:11:88:1C:8F:38:A1:39:F2:43:EA:70:19:F9:A0:C3:F4
X509v3 Authority Key Identifier:
keyid:AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:eb:b8:48:f1:bf:2b:5d:d9:ef:c7:62:48:51:05:b2:a3:5f:
34:f4:c3:e2:36:38:dc:a2:78:bd:17:92:35:6d:d3:f4:84:bd:
53:3c:55:22:33:d6:6e:8d:95:94:34:3a:ba:49:13:92:e2:48:
ec:4e:fb:39:e0:a6:85:76:52:7b:69:42:31:af:05:56:8c:53:
a6:f5:d6:fc:58:5b:8c:aa:7c:af:b1:96:62:ce:52:18:b9:40:
e0:e3:3f:20:73:75:a1:06:16:47:24:93:88:61:5d:bd:c9:c1:
b8:f9:97:84:79:34:16:35:b4:81:12:04:78:a0:c5:da:6b:82:
28:93:83:93:b7:e5:e1:3c:c8:d1:1d:c8:ec:59:74:db:3d:cc:
42:97:3c:30:63:f5:85:b0:12:a0:8d:35:2c:a4:f5:d2:95:3b:
fd:7d:4e:ff:3e:fd:03:1b:85:c7:ca:a2:54:93:99:46:03:1e:
9a:cd:bf:2c:27:6d:20:9b:73:51:9c:16:f6:0a:8d:25:a8:b4:
c7:4f:39:30:68:86:9e:13:63:13:91:1e:68:54:53:25:dd:90:
47:74:69:8c:f1:9d:81:a9:42:92:96:b1:a8:ef:2c:97:c5:dc:
97:4c:d5:25:f4:97:0c:ce:b7:f8:2f:60:f4:c3:ce:32:0e:bf:
0f:cf:fb:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 00:51:11 2025 by rpki-client