Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
File: ejUNAkrwH46vElcXyqA6r60YTh0.mft (raw, json)
Hash identifier: TzQuVF4VjFv34tH5UMU4Z7wX7veZC0vca0dlKAVPEbk=
Subject key identifier: A5:DF:A1:79:DB:8E:54:38:25:68:C4:5A:02:7A:33:BB:13:71:BB:87
Authority key identifier: 7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D
Certificate issuer: /CN=7a350d024af01f8eaf125717caa03aafad184e1d
Certificate serial: 01958C973CBAE25B59E00B7A42AD9878FCF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
Manifest number: 1497
Signing time: Wed 12 Mar 2025 23:01:16 +0000
Manifest this update: Wed 12 Mar 2025 23:01:16 +0000
Manifest next update: Thu 13 Mar 2025 23:01:16 +0000
Files and hashes: 1: 2JjyX_-1ihqsSblonAIGQ2WI8zE.roa (hash: zFek1n9vUOT2IuGKFpGhKS8yEEOPqAUeFGqimhy7H3I=)
2: 2zv-bqUF4ie6dLoJOvbHg-Khzrk.roa (hash: SuQwzPeSaf/HqGV5aFne0AqsUIDLEGL4BEqdCUksZzA=)
3: 90IBFTm1n0EdouWYts1bm2C2AV0.roa (hash: ERgPNr6bXt5OGFwKPUno3LLiwFJjlAJ5vniWmV4rL9o=)
4: IPDWq2JXklmZilVzAW_qJFHve_M.roa (hash: 8qLID3yci9mCWiyOl1eMby2l1Aaax7OKoB39T8J6xu0=)
5: Qhk5DeOzxRoTsaRY5UPu50xo2Q4.roa (hash: SAnzykFF7+yaqNzuYwleeCNNDy8d940iOSnUgG5s+iM=)
6: Zu3SmHOhZpwuSSti9wdImp6Ga-Q.roa (hash: 5ZnrCuNHa1wjQpFfQY/Zj6DgGr5ywhEPGA9N3saHG2U=)
7: ejUNAkrwH46vElcXyqA6r60YTh0.crl (hash: pXuZ9l5kwtuw+UcBaWqutC3leYbu6kYT3WQGI9YjSNc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:97:3c:ba:e2:5b:59:e0:0b:7a:42:ad:98:78:fc:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a350d024af01f8eaf125717caa03aafad184e1d
Validity
Not Before: Mar 12 23:01:16 2025 GMT
Not After : Mar 13 23:01:16 2025 GMT
Subject: CN=a5dfa179db8e54382568c45a027a33bb1371bb87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:53:07:6e:e1:37:eb:41:03:77:c0:78:62:1e:
01:b8:20:d1:aa:b4:a0:12:b4:79:06:f9:f6:fd:a4:
db:85:49:af:d7:14:c3:db:2a:de:eb:6f:3c:46:86:
ea:5c:94:ee:ad:27:cc:0f:5c:d3:0e:7d:aa:98:0e:
80:a9:d1:ef:f5:d3:8a:43:a6:e1:b1:c2:a0:63:8d:
a8:ed:43:1e:03:56:8c:ff:07:79:a5:5e:8c:de:2f:
cd:81:8e:82:d7:a7:b8:72:a2:0e:95:b3:62:f3:e0:
fd:f0:62:b5:c7:07:67:dd:e2:1f:d3:d1:16:aa:db:
33:0c:8e:59:8e:ac:00:76:fe:4a:5e:77:38:20:79:
7b:0b:0c:7e:91:c6:42:69:c8:dc:b9:38:8f:5e:ba:
60:c3:15:a6:d3:86:6f:e8:46:26:5d:7b:ce:50:00:
ee:b9:94:99:59:14:c9:cd:06:51:63:a3:e8:fe:ae:
e8:1a:f7:fc:fe:5f:b6:7a:64:82:3d:d0:c6:f8:b3:
73:f9:09:e3:4b:c8:74:f9:53:00:96:63:72:42:9b:
ec:78:ce:48:47:2c:62:4f:37:a0:45:12:26:dc:14:
92:13:db:82:aa:37:1e:4d:b7:10:66:81:e2:ee:09:
c1:54:07:27:8c:b5:6d:9b:9a:3f:5d:71:a2:8c:10:
8f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:DF:A1:79:DB:8E:54:38:25:68:C4:5A:02:7A:33:BB:13:71:BB:87
X509v3 Authority Key Identifier:
keyid:7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:3b:c9:01:06:86:85:fb:ec:56:a7:82:0f:a3:18:b2:74:9f:
a7:dc:97:df:5e:3b:af:ce:99:5f:07:f7:d0:61:33:e1:99:c2:
89:22:3d:77:4e:77:19:60:13:b6:52:7d:b2:34:11:65:68:08:
a8:ef:05:d3:4c:ea:d2:8a:05:ac:11:fb:b4:02:5f:ed:7b:3c:
0b:55:a3:b9:83:82:a9:65:b4:d3:19:49:c7:49:a9:90:67:07:
25:33:2f:2e:8c:a4:80:c8:96:9c:fe:1e:29:76:ed:c6:9f:24:
ba:b0:d5:e2:09:c2:32:b3:3e:dc:7b:83:e4:7e:34:00:52:2d:
df:0d:52:43:d6:bb:64:25:21:f8:35:d7:4a:c1:29:60:09:87:
ef:70:49:cb:99:77:18:cf:4f:9d:56:fa:34:94:ef:c8:c5:ff:
82:f7:d7:a6:97:f3:63:ec:fe:f4:02:fc:9c:43:9c:77:34:3f:
11:ad:1b:de:5e:1e:47:5b:fb:1c:d7:e2:95:43:45:a7:3e:e0:
c5:c3:4a:76:b6:7e:c4:c8:83:d7:c7:e9:bb:dd:c2:32:f3:ed:
19:88:b5:fa:3e:ca:b0:0a:99:e3:fb:3a:f1:2e:e9:b1:f6:39:
eb:66:87:73:16:51:59:79:98:7b:5c:2f:c8:be:ec:7e:4a:a7:
1c:8c:7e:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:37:58 2025 by rpki-client