Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
File: ejUNAkrwH46vElcXyqA6r60YTh0.mft (raw, json)
Hash identifier: S9x4L4ylQKPV3/pMCgOdySfw+cqyhCF9IpBFWbgFV+A=
Subject key identifier: 28:05:B0:55:6F:8B:C8:6C:E7:8C:98:38:0C:E6:95:13:A7:76:5A:77
Authority key identifier: 7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D
Certificate issuer: /CN=7a350d024af01f8eaf125717caa03aafad184e1d
Certificate serial: 01965F169412F31F8B7A489DB5899E3F2A94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
Manifest number: 1504
Signing time: Tue 22 Apr 2025 20:00:37 +0000
Manifest this update: Tue 22 Apr 2025 20:00:37 +0000
Manifest next update: Wed 23 Apr 2025 20:00:37 +0000
Files and hashes: 1: 2JjyX_-1ihqsSblonAIGQ2WI8zE.roa (hash: zFek1n9vUOT2IuGKFpGhKS8yEEOPqAUeFGqimhy7H3I=)
2: 2zv-bqUF4ie6dLoJOvbHg-Khzrk.roa (hash: SuQwzPeSaf/HqGV5aFne0AqsUIDLEGL4BEqdCUksZzA=)
3: 90IBFTm1n0EdouWYts1bm2C2AV0.roa (hash: ERgPNr6bXt5OGFwKPUno3LLiwFJjlAJ5vniWmV4rL9o=)
4: IPDWq2JXklmZilVzAW_qJFHve_M.roa (hash: 8qLID3yci9mCWiyOl1eMby2l1Aaax7OKoB39T8J6xu0=)
5: Qhk5DeOzxRoTsaRY5UPu50xo2Q4.roa (hash: SAnzykFF7+yaqNzuYwleeCNNDy8d940iOSnUgG5s+iM=)
6: Zu3SmHOhZpwuSSti9wdImp6Ga-Q.roa (hash: 5ZnrCuNHa1wjQpFfQY/Zj6DgGr5ywhEPGA9N3saHG2U=)
7: ejUNAkrwH46vElcXyqA6r60YTh0.crl (hash: 7AX5B4cQID1JWaSq5LRPbvksEW53XNGq4vMCq0AKrb4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 20:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5f:16:94:12:f3:1f:8b:7a:48:9d:b5:89:9e:3f:2a:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a350d024af01f8eaf125717caa03aafad184e1d
Validity
Not Before: Apr 22 20:00:37 2025 GMT
Not After : Apr 23 20:00:37 2025 GMT
Subject: CN=2805b0556f8bc86ce78c98380ce69513a7765a77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1b:57:a3:a9:48:59:af:89:37:47:ed:76:c6:
5c:89:79:55:f1:6b:24:71:f4:70:bf:1e:b1:08:e0:
a2:51:62:3e:95:df:60:06:c2:e9:15:51:13:d7:23:
db:e4:5e:bd:e3:11:55:9d:ee:e2:eb:3d:77:8e:43:
2b:b5:1b:8b:07:9e:4c:42:35:a7:ea:4b:4d:2d:94:
87:3f:d5:b0:4d:1c:f7:2d:f1:7b:f0:dc:25:2f:f4:
f0:5e:8f:a9:93:ec:e7:7d:fe:41:1c:e7:ab:f3:78:
7c:f5:ac:7e:29:2c:79:8b:7a:32:3e:66:7e:32:35:
1d:38:c9:ca:c8:21:62:f2:80:a9:27:a0:ac:30:5c:
36:c7:27:32:f1:38:ec:58:57:79:b3:1b:63:0b:dd:
c2:14:59:90:af:d3:0b:f9:19:a4:8b:9a:a3:b4:f0:
75:06:2b:f3:4c:b3:46:68:cc:8f:a6:6d:9a:24:01:
6d:94:07:8a:ff:e6:8e:7d:c9:32:ce:fb:2a:61:3c:
22:56:73:94:7b:af:9e:da:7f:42:bb:22:5c:14:e0:
5f:76:a9:c6:71:ce:00:34:0a:72:ac:4c:c4:a1:c8:
a7:8d:17:53:e3:49:6d:7d:c8:8e:57:33:39:73:71:
07:f6:50:e5:f4:85:45:d6:89:8a:ea:de:60:e6:52:
6e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:05:B0:55:6F:8B:C8:6C:E7:8C:98:38:0C:E6:95:13:A7:76:5A:77
X509v3 Authority Key Identifier:
keyid:7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:3d:ba:22:ae:6c:c2:bf:22:40:59:84:89:a4:30:ae:54:38:
a4:57:0f:2f:65:35:17:9b:f8:ba:2d:49:b1:31:00:b4:2d:53:
12:d4:85:b5:b5:e1:dd:bd:b8:a8:22:39:f3:77:ba:0e:92:8f:
b7:11:b0:88:62:a3:a0:81:a9:39:b1:38:12:2d:bd:4f:b0:f4:
a6:d1:09:7e:9f:22:bd:67:29:72:8c:ab:16:37:42:05:80:a2:
78:b7:02:05:43:b4:cf:70:e2:5b:8c:b8:6d:c5:70:3d:fb:98:
1e:8d:c7:5e:a0:95:3a:0b:b4:dd:9e:d3:8a:f5:a8:b9:ad:d2:
47:68:67:b5:b1:cd:77:c2:b2:1d:6a:cf:0f:9f:fd:91:8a:7d:
51:59:b5:ce:f7:59:f8:40:59:53:99:26:cd:0b:b6:99:00:8f:
f5:65:84:b2:ea:30:ea:ed:7d:fa:e5:83:f2:3d:07:55:1e:04:
50:cd:65:47:3a:02:f5:a8:c0:be:e5:69:7c:56:ca:cb:cf:97:
37:f7:79:ab:8b:4f:23:06:60:a2:9e:70:53:e8:9b:cb:df:a2:
c8:e2:a0:20:ee:14:c7:5e:23:0c:f3:ec:b5:9c:82:95:e6:ba:
e3:07:28:56:d0:0c:97:99:82:af:f0:bd:99:00:21:60:e5:26:
c0:da:d9:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 01:04:59 2025 by rpki-client