Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
File: 4EHIW0dOi2wAiR2VQST_DIEgDYw.mft (raw, json)
Hash identifier: WDM5Vr1IXxh9yuBymHy9rzXem1r/IvtK2WYdFcw8TKM=
Subject key identifier: 04:E8:24:FD:BC:23:70:E0:50:28:A1:08:6A:58:A4:64:C8:80:88:10
Authority key identifier: E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C
Certificate issuer: /CN=e041c85b474e8b6c00891d954124ff0c81200d8c
Certificate serial: 019616FD94BB832D922C30E0EAB80B12355E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
Manifest number: 0837
Signing time: Tue 08 Apr 2025 20:00:39 +0000
Manifest this update: Tue 08 Apr 2025 20:00:39 +0000
Manifest next update: Wed 09 Apr 2025 20:00:39 +0000
Files and hashes: 1: 4EHIW0dOi2wAiR2VQST_DIEgDYw.crl (hash: UCbhRTY/VxiZOUUaUxo+h0NsWXStepO0E8AwNYoSpV0=)
2: N3RhFZbfRfFlakkE1oKkv4idahs.roa (hash: S19WQvJ0cwuBe3l5agvGw5hBi9jlwv6QitA6NIAiWl4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 20:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:16:fd:94:bb:83:2d:92:2c:30:e0:ea:b8:0b:12:35:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e041c85b474e8b6c00891d954124ff0c81200d8c
Validity
Not Before: Apr 8 20:00:39 2025 GMT
Not After : Apr 9 20:00:39 2025 GMT
Subject: CN=04e824fdbc2370e05028a1086a58a464c8808810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:20:6b:7d:0d:b7:fb:99:77:12:82:b9:4b:0f:
39:7f:29:1a:75:95:03:4f:3e:3c:21:e6:c1:70:db:
d7:9d:65:11:94:66:b5:4a:0d:a7:5f:3d:3a:1f:a2:
a3:89:27:c6:0f:e0:4e:6a:88:f8:5d:2c:8a:dd:91:
95:58:aa:d5:44:6f:36:18:10:03:cd:21:e0:b7:87:
6a:01:66:5d:04:b3:80:79:fa:5f:7f:5e:7d:a6:26:
ab:7e:1e:d0:a1:81:74:d5:6d:2f:44:ea:3d:45:05:
f1:6b:4f:b3:1c:4f:00:68:4d:3b:1d:26:22:8f:9d:
35:9f:cf:03:97:5e:97:e3:a2:f3:40:2a:79:b5:f7:
70:01:ea:d9:cc:a9:3d:39:81:23:8d:c3:6c:6e:6e:
d5:d2:e8:29:52:69:3e:bd:67:9d:8a:50:f7:e2:26:
1b:66:e1:94:cc:a4:dd:fb:00:1a:6f:3b:2a:d7:0b:
6b:bb:9b:20:e8:6f:8a:f0:12:a7:11:e4:b2:01:75:
99:6a:71:8c:e8:b1:6f:02:9c:38:12:51:fd:64:03:
bf:ba:63:40:e8:70:5f:98:0e:4e:3e:e7:ff:54:39:
4f:8c:9a:dc:22:a2:9b:f9:9f:69:35:a3:e2:4c:e4:
41:47:15:a3:68:b2:14:04:86:d7:07:c9:71:56:60:
6c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:E8:24:FD:BC:23:70:E0:50:28:A1:08:6A:58:A4:64:C8:80:88:10
X509v3 Authority Key Identifier:
keyid:E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:b3:fe:d6:33:ce:96:7d:49:90:3d:40:88:9c:81:26:30:a2:
e7:be:27:a2:66:91:05:18:a7:52:bf:fc:d2:f0:5a:75:37:53:
77:3f:16:c4:0b:df:95:d1:66:68:6a:2b:39:fa:ad:c7:14:b8:
5e:94:51:2d:bd:68:aa:3c:3e:7e:50:8c:38:90:70:74:28:36:
0f:e7:a2:7c:6c:7c:dc:9b:0d:6b:6b:c9:35:28:19:4e:f7:8a:
7a:47:83:55:75:b0:30:ca:8c:9d:16:b9:58:eb:fa:9e:96:8d:
24:52:e8:9e:05:d8:40:ea:f3:42:19:42:76:8d:d8:3f:3e:a5:
1a:a9:14:ae:15:b6:49:62:c3:66:c2:ed:42:bf:11:39:d7:f7:
35:74:c6:65:0f:3a:2c:b8:e5:49:91:73:51:f0:7b:f6:6e:18:
19:c0:1e:21:43:f8:14:32:4b:69:59:00:51:bc:e8:ed:ea:ea:
38:82:11:dc:56:24:22:b8:94:f0:0e:11:74:d5:b2:62:ed:e1:
63:86:71:c1:c5:23:7c:4a:e0:12:ab:48:a8:25:15:e6:36:23:
ca:ea:e7:d5:b6:04:16:41:01:a9:60:d6:f8:5a:00:bb:4e:9d:
0c:7d:52:68:97:c6:0b:85:43:7e:f1:ee:e1:14:23:8e:09:21:
1b:24:a1:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 00:40:35 2025 by rpki-client