Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/EfLjWzxVm22ENmfK1drGdOAblsM.mft
File: EfLjWzxVm22ENmfK1drGdOAblsM.mft (raw, json)
Hash identifier: dpglLMEmJ5PC1WpT27mjzGXdCojAs/KIxk+37Jj6Zog=
Subject key identifier: F5:27:50:74:61:C7:24:F1:E7:CF:8D:C6:43:62:A1:37:83:F0:AE:4E
Authority key identifier: 11:F2:E3:5B:3C:55:9B:6D:84:36:67:CA:D5:DA:C6:74:E0:1B:96:C3
Certificate issuer: /CN=11f2e35b3c559b6d843667cad5dac674e01b96c3
Certificate serial: 01965838B1A45BF9F4523F035E3758235488
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EfLjWzxVm22ENmfK1drGdOAblsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/EfLjWzxVm22ENmfK1drGdOAblsM.mft
Manifest number: 0CF4
Signing time: Mon 21 Apr 2025 12:00:32 +0000
Manifest this update: Mon 21 Apr 2025 12:00:32 +0000
Manifest next update: Tue 22 Apr 2025 12:00:32 +0000
Files and hashes: 1: A-AGhnJX9Bou2rtGJEVxpp70P0k.roa (hash: 8oKZWa78oAwwYr/+i37u8p1ocYsZreiBnXNl6eWkZHg=)
2: EfLjWzxVm22ENmfK1drGdOAblsM.crl (hash: MdQfRVjyxp66zXihb5gyFyVgd+F4IcmhVxGJmdWRDUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/EfLjWzxVm22ENmfK1drGdOAblsM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/EfLjWzxVm22ENmfK1drGdOAblsM.mft
rsync://rpki.ripe.net/repository/DEFAULT/EfLjWzxVm22ENmfK1drGdOAblsM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:38:b1:a4:5b:f9:f4:52:3f:03:5e:37:58:23:54:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11f2e35b3c559b6d843667cad5dac674e01b96c3
Validity
Not Before: Apr 21 12:00:32 2025 GMT
Not After : Apr 22 12:00:32 2025 GMT
Subject: CN=f527507461c724f1e7cf8dc64362a13783f0ae4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1b:02:fe:4a:ed:f5:72:85:b0:13:e7:2d:ef:
9f:23:45:c8:5e:22:48:5f:dc:ce:8e:c8:4d:09:a4:
98:fc:89:64:f1:4e:a6:29:19:4b:4f:17:9a:e2:f3:
d5:8a:62:31:1d:2a:60:e5:61:06:bf:44:91:92:df:
3d:3c:64:0f:e6:d8:10:66:8b:eb:b9:a0:77:18:cd:
b5:c3:4b:91:d1:af:c1:bd:f4:8d:0f:e9:58:18:d7:
93:a1:12:49:ff:83:1a:4d:0e:e8:1f:fe:28:55:25:
86:ad:2f:c2:e0:0c:7d:df:53:4f:43:71:66:b4:c8:
f7:f3:e7:02:f2:3e:c1:32:46:f0:61:12:6d:b0:72:
2e:bf:b8:06:dd:d3:90:b3:c2:86:0b:90:42:9d:58:
4e:3b:e1:96:33:da:cc:ac:0a:7b:ea:e1:cb:76:7f:
71:0e:b8:aa:b4:bb:2e:69:29:49:eb:91:50:48:7e:
d3:4d:d9:e2:ca:96:f8:d5:c6:04:2e:a3:5e:32:9c:
2d:22:1e:c8:f7:95:24:8a:55:ed:92:dd:ea:45:14:
b2:3c:d6:d1:bf:7b:b2:c5:89:30:6b:06:2e:87:1d:
db:3c:87:37:16:79:be:71:90:0f:6c:89:9e:7b:ae:
9a:63:2f:ee:c8:ec:e1:fb:4e:4e:ee:e2:aa:87:5a:
7c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:27:50:74:61:C7:24:F1:E7:CF:8D:C6:43:62:A1:37:83:F0:AE:4E
X509v3 Authority Key Identifier:
keyid:11:F2:E3:5B:3C:55:9B:6D:84:36:67:CA:D5:DA:C6:74:E0:1B:96:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EfLjWzxVm22ENmfK1drGdOAblsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/EfLjWzxVm22ENmfK1drGdOAblsM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/EfLjWzxVm22ENmfK1drGdOAblsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:79:d8:89:75:da:60:ec:18:d8:db:0e:c4:6e:4c:45:9c:28:
cf:28:86:05:74:04:d2:04:a7:28:8b:db:dc:d6:80:9a:7c:be:
b2:4b:7d:37:dc:c9:96:7c:c2:22:74:11:66:94:83:cd:9e:25:
63:b0:6b:a6:f1:21:55:ed:7d:fe:53:18:64:cd:a9:34:64:d6:
58:6b:bb:59:74:4f:60:3b:f1:9c:c4:b3:81:c8:a1:14:71:66:
c1:e2:65:b3:67:45:c5:e8:d8:49:86:4e:8c:d1:d1:67:b2:18:
c7:c5:44:3f:c8:4d:d5:b1:c0:a3:d3:3d:d7:4e:44:41:94:d4:
2f:14:7e:7b:41:ca:a3:e4:7c:37:cb:37:f1:86:aa:de:da:af:
78:a4:8b:1c:a8:c2:24:c8:74:10:27:15:6e:16:48:81:90:31:
76:be:b3:0e:dd:d2:78:1d:42:34:1b:ae:c5:42:50:aa:c0:a0:
1b:c7:93:ee:d6:b9:e6:f3:58:42:0f:53:1f:e1:5a:60:b9:b6:
1c:ac:b7:6e:12:7a:ca:96:08:77:24:25:51:1d:dc:9a:2c:df:
7e:13:35:42:68:04:3f:7a:f6:5e:74:d1:8c:b7:1a:fe:a3:75:
07:b5:43:30:8a:e7:1b:73:fa:ff:28:bb:b3:ba:76:fa:7c:44:
18:7b:5a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:56 2025 by rpki-client