Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
File: ePKehzghWcpegTh9fud-US-tFjY.mft (raw, json)
Hash identifier: gnQvfgQoc51/Z8A0xOY09M/TgtLLFg+MCol5pzU0TJ8=
Subject key identifier: 6A:B5:17:4D:98:01:D2:4B:81:1F:F0:52:F8:6F:91:38:55:72:9F:5F
Authority key identifier: 78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
Certificate issuer: /CN=78f29e87382159ca5e81387d7ee77e512fad1636
Certificate serial: 01984588D968DE7B9A06BEC452C2042C581D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
Manifest number: 0653
Signing time: Sat 26 Jul 2025 07:00:53 +0000
Manifest this update: Sat 26 Jul 2025 07:00:53 +0000
Manifest next update: Sun 27 Jul 2025 07:00:53 +0000
Files and hashes: 1: 4QzNEDyRlis-_JGlrISCfbsPszU.roa (hash: Y9K09YKp80O/JCR9exHbB8w/On++FMzgdee4rnQPOdU=)
2: ePKehzghWcpegTh9fud-US-tFjY.crl (hash: n3r2WeLvnkSRWXwS0vdWlASPVzOyTnCwGQxjgeVHrTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 02:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:45:88:d9:68:de:7b:9a:06:be:c4:52:c2:04:2c:58:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f29e87382159ca5e81387d7ee77e512fad1636
Validity
Not Before: Jul 26 07:00:53 2025 GMT
Not After : Jul 27 07:00:53 2025 GMT
Subject: CN=6ab5174d9801d24b811ff052f86f913855729f5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:06:14:05:47:a0:7e:18:4f:a5:5c:58:ed:e8:
91:55:65:7d:87:4d:84:01:77:e1:cc:7a:f6:1e:8e:
9c:6a:41:49:4b:e2:0e:ab:fb:5f:13:91:b1:13:ba:
6e:ec:e0:64:04:31:e8:07:de:08:e6:42:ce:6b:29:
a8:1b:51:95:e5:3f:24:9d:3c:c5:fe:67:10:00:41:
14:6e:34:b9:44:40:50:60:5b:a3:aa:7f:1f:cd:11:
07:be:11:0c:18:03:bc:1d:78:90:10:71:5b:30:c9:
58:37:1f:f5:07:fc:a9:47:04:71:15:e4:15:eb:6e:
89:b2:ce:f1:b1:2d:d1:4c:40:a7:a3:0f:c7:af:af:
6c:b6:44:b7:17:15:c1:d0:87:b8:c1:a1:18:f9:bd:
5a:d0:cc:bb:c4:6d:87:26:48:cc:d6:91:87:c9:3d:
6e:29:24:10:fe:f6:88:e7:74:92:43:17:58:ae:56:
d0:cb:6a:9f:93:b1:a6:47:ab:2d:af:86:34:72:58:
8c:65:0d:9d:cc:bd:c0:3c:9a:9c:a9:00:ce:03:48:
19:e8:0b:ef:9c:be:6b:6c:ee:b7:52:20:03:d3:85:
69:7c:e0:26:0e:c4:b6:19:53:7c:76:ea:17:99:7c:
e9:03:83:6b:43:ac:b2:df:4f:58:ea:06:a3:da:37:
bb:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:B5:17:4D:98:01:D2:4B:81:1F:F0:52:F8:6F:91:38:55:72:9F:5F
X509v3 Authority Key Identifier:
keyid:78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:b3:c0:70:68:1b:d9:21:5e:7b:49:41:1c:19:69:af:46:d6:
10:04:3b:6d:9c:84:78:65:d5:de:f6:95:70:d6:aa:c0:3f:93:
44:d6:3e:63:63:3a:ee:b4:ab:d4:fe:9e:95:16:18:8f:70:7a:
a6:f9:30:24:aa:49:54:1b:d4:55:85:a8:a3:1f:d4:1a:43:b6:
40:d1:99:60:1c:67:62:96:96:cf:f1:9c:fb:89:54:16:95:31:
48:c1:9e:2f:fd:ad:64:f0:ba:76:67:1c:af:66:78:95:7a:a5:
34:0c:56:b1:be:5e:69:48:ab:ce:71:70:ee:77:fd:b3:57:e8:
2e:92:dd:ce:f3:a7:c5:c6:64:e1:dc:2e:e0:4d:0b:36:3b:e4:
3f:e0:28:83:19:70:72:3d:d4:8f:d1:20:8d:0a:5a:b6:a4:3d:
4f:22:e4:21:f1:87:7e:66:0d:d7:9e:2a:5f:4c:66:ae:f1:74:
35:c5:aa:6a:e6:f2:79:92:98:df:37:7c:9a:ba:7d:df:80:dd:
62:65:84:89:0a:f0:3f:4a:97:31:df:c2:15:d9:fe:f4:f9:38:
31:a9:11:12:55:85:93:a8:fb:ee:f5:db:3f:c1:be:50:64:f3:
fc:77:b4:05:cc:c9:24:d7:fe:23:d6:a7:2d:25:a0:08:08:a1:
47:5d:31:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 11:28:05 2025 by rpki-client