Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
File: ePKehzghWcpegTh9fud-US-tFjY.mft (raw, json)
Hash identifier: OyjAunrQG/YtLS9Ff6QqKrkvM6J93hv/nW4UDAyK1T0=
Subject key identifier: F4:0F:9D:22:DA:7B:21:51:70:81:86:D4:D4:6C:F9:9B:31:E2:86:47
Authority key identifier: 78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
Certificate issuer: /CN=78f29e87382159ca5e81387d7ee77e512fad1636
Certificate serial: 01964DB5192C4BC4488C85AA587CDA1C7EA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
Manifest number: 054B
Signing time: Sat 19 Apr 2025 11:00:35 +0000
Manifest this update: Sat 19 Apr 2025 11:00:35 +0000
Manifest next update: Sun 20 Apr 2025 11:00:35 +0000
Files and hashes: 1: ePKehzghWcpegTh9fud-US-tFjY.crl (hash: 7OmFRpuM+87PWNLZZqrfzOgWw1Rm5MSyJh52bztTgag=)
2: zTW-DDqj_DKyybC8B3Erc_k4_OE.roa (hash: aF2vKf/Dc/OONsqmm+OYYMGFEckKwY/y3uqC3qA2PH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 11:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:b5:19:2c:4b:c4:48:8c:85:aa:58:7c:da:1c:7e:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f29e87382159ca5e81387d7ee77e512fad1636
Validity
Not Before: Apr 19 11:00:35 2025 GMT
Not After : Apr 20 11:00:35 2025 GMT
Subject: CN=f40f9d22da7b2151708186d4d46cf99b31e28647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:09:2c:9c:c5:09:06:8a:6a:83:97:20:e8:59:
2f:cf:fe:7f:46:e9:61:ce:1a:f6:50:31:28:e0:fb:
71:f8:d0:c0:e6:e1:f1:56:1b:ef:be:db:cb:c4:34:
7b:eb:35:a3:8d:c7:8c:31:55:4d:c5:d3:a9:aa:f8:
a3:0c:89:9c:0d:42:da:16:d9:aa:73:d4:fa:5b:4d:
1c:e3:81:c4:c9:d4:78:6a:73:07:90:42:e9:70:6b:
b4:72:d3:72:9c:32:bb:0d:d7:80:a5:11:42:fe:ec:
c6:2f:69:47:65:98:46:84:bc:ba:00:4c:ea:6f:53:
8d:9d:ee:76:1e:a1:9c:1c:cb:ab:96:bf:64:67:55:
77:d7:85:11:f9:33:b3:98:f4:18:61:7e:1e:f7:7f:
58:90:ac:6b:c4:cf:77:ec:15:3e:bf:cb:e7:8e:66:
d2:7a:05:37:b8:9a:f6:8a:a8:1f:b5:eb:93:f3:19:
ce:cb:bd:a5:80:68:ee:d3:bb:7b:11:1a:c3:ad:39:
3f:dd:68:e9:ae:11:03:8d:2a:86:b6:b4:b2:a9:29:
be:77:c3:cd:ef:4b:91:e1:73:24:a0:5d:24:3e:24:
3d:01:b7:9e:e6:42:7f:25:20:87:0d:fe:4e:68:fe:
04:7a:17:d4:88:c7:ad:4b:cc:1c:fc:f2:1e:f9:c1:
e1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:0F:9D:22:DA:7B:21:51:70:81:86:D4:D4:6C:F9:9B:31:E2:86:47
X509v3 Authority Key Identifier:
keyid:78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:f9:89:9c:c4:5d:e0:ff:83:e6:00:51:4d:b3:6f:07:53:f9:
c5:84:aa:14:a8:b9:64:9b:7e:30:5a:b1:03:13:28:d0:8b:4e:
24:6d:7d:de:ec:ee:b4:12:62:0d:25:d2:2b:70:27:d6:40:98:
e0:40:35:4d:6c:85:d4:66:4f:99:c7:ec:d0:80:2d:c7:78:ca:
67:18:c6:c6:fb:87:83:56:24:9e:69:1f:49:5e:27:35:15:66:
e5:4d:4d:06:bf:c7:af:2d:39:a2:28:fa:e1:d9:76:f4:7a:8e:
b0:93:09:b8:5f:70:53:34:04:cb:86:9b:42:44:64:4b:6a:f7:
4b:70:5f:d4:b1:45:43:5d:ba:f3:e7:47:b3:6e:c2:eb:87:ca:
c7:c6:c6:1c:e9:45:4a:e5:9b:e4:7d:cf:d3:fa:83:e1:77:ac:
25:02:82:23:18:26:0c:17:a7:b8:3b:70:dc:48:38:54:b2:84:
56:58:12:d7:4b:9a:9f:83:44:c8:9f:4a:a8:83:92:88:a7:d7:
14:1b:5c:8a:8d:25:ef:94:e8:50:f8:8d:e2:04:63:e2:d4:2f:
d0:00:8e:80:26:ab:64:60:17:83:c3:8f:72:8f:ca:05:0c:6a:
be:4a:59:5a:a5:04:99:a7:e2:5f:46:4d:1c:e6:1b:a9:21:55:
42:01:35:e3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZNtRksS8RIjIWqWHzaHH6gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4ZjI5ZTg3MzgyMTU5Y2E1ZTgxMzg3ZDdlZTc3ZTUxMmZh
ZDE2MzYwHhcNMjUwNDE5MTEwMDM1WhcNMjUwNDIwMTEwMDM1WjAzMTEwLwYDVQQD
EyhmNDBmOWQyMmRhN2IyMTUxNzA4MTg2ZDRkNDZjZjk5YjMxZTI4NjQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwAksnMUJBopqg5cg6Fkvz/5/Rulh
zhr2UDEo4Ptx+NDA5uHxVhvvvtvLxDR76zWjjceMMVVNxdOpqvijDImcDULaFtmq
c9T6W00c44HEydR4anMHkELpcGu0ctNynDK7DdeApRFC/uzGL2lHZZhGhLy6AEzq
b1ONne52HqGcHMurlr9kZ1V314UR+TOzmPQYYX4e939YkKxrxM937BU+v8vnjmbS
egU3uJr2iqgfteuT8xnOy72lgGju07t7ERrDrTk/3WjprhEDjSqGtrSyqSm+d8PN
70uR4XMkoF0kPiQ9Abee5kJ/JSCHDf5OaP4EehfUiMetS8wc/PIe+cHh2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPQPnSLaeyFRcIGG1NRs+Zsx4oZHMB8GA1UdIwQY
MBaAFHjynoc4IVnKXoE4fX7nflEvrRY2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZVBLZWh6Z2hXY3BlZ1RoOWZ1ZC1VUy10RmpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9hNGI0OGItNDYyZS00NWE2LTg2MGQt
ODJmODljYmEyNmQ4LzEvZVBLZWh6Z2hXY3BlZ1RoOWZ1ZC1VUy10RmpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy9hNGI0OGItNDYyZS00NWE2LTg2MGQtODJmODljYmEyNmQ4
LzEvZVBLZWh6Z2hXY3BlZ1RoOWZ1ZC1VUy10RmpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHfmJnMRd
4P+D5gBRTbNvB1P5xYSqFKi5ZJt+MFqxAxMo0ItOJG193uzutBJiDSXSK3An1kCY
4EA1TWyF1GZPmcfs0IAtx3jKZxjGxvuHg1YknmkfSV4nNRVm5U1NBr/Hry05oij6
4dl29HqOsJMJuF9wUzQEy4abQkRkS2r3S3Bf1LFFQ1268+dHs27C64fKx8bGHOlF
SuWb5H3P0/qD4XesJQKCIxgmDBenuDtw3Eg4VLKEVlgS10uan4NEyJ9KqIOSiKfX
FBtcio0l75ToUPiN4gRj4tQv0ACOgCarZGAXg8OPco/KBQxqvkpZWqUEmafiX0ZN
HOYbqSFVQgE14w==
-----END CERTIFICATE-----
Generated at Sat Apr 19 17:41:28 2025 by rpki-client