Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
File: ejUNAkrwH46vElcXyqA6r60YTh0.mft (raw, json)
Hash identifier: YNjS8rWyszrpk7dHQd8RBq5wkvbnNL0uXSSh5R3mL4o=
Subject key identifier: 79:66:4D:00:B4:2B:47:24:10:7A:51:B9:63:F0:CF:13:68:DD:A7:1F
Authority key identifier: 7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D
Certificate issuer: /CN=7a350d024af01f8eaf125717caa03aafad184e1d
Certificate serial: 01975E019307A354614C65F47C3DEF7292A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
Manifest number: 1588
Signing time: Wed 11 Jun 2025 08:00:50 +0000
Manifest this update: Wed 11 Jun 2025 08:00:50 +0000
Manifest next update: Thu 12 Jun 2025 08:00:50 +0000
Files and hashes: 1: 2JjyX_-1ihqsSblonAIGQ2WI8zE.roa (hash: zFek1n9vUOT2IuGKFpGhKS8yEEOPqAUeFGqimhy7H3I=)
2: 2zv-bqUF4ie6dLoJOvbHg-Khzrk.roa (hash: SuQwzPeSaf/HqGV5aFne0AqsUIDLEGL4BEqdCUksZzA=)
3: 90IBFTm1n0EdouWYts1bm2C2AV0.roa (hash: ERgPNr6bXt5OGFwKPUno3LLiwFJjlAJ5vniWmV4rL9o=)
4: IPDWq2JXklmZilVzAW_qJFHve_M.roa (hash: 8qLID3yci9mCWiyOl1eMby2l1Aaax7OKoB39T8J6xu0=)
5: Qhk5DeOzxRoTsaRY5UPu50xo2Q4.roa (hash: SAnzykFF7+yaqNzuYwleeCNNDy8d940iOSnUgG5s+iM=)
6: Zu3SmHOhZpwuSSti9wdImp6Ga-Q.roa (hash: 5ZnrCuNHa1wjQpFfQY/Zj6DgGr5ywhEPGA9N3saHG2U=)
7: ejUNAkrwH46vElcXyqA6r60YTh0.crl (hash: ByNI4KkGW9YqlM0nBwS6iR7xZCMK9kOEaFo/+9VL7uo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 08:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5e:01:93:07:a3:54:61:4c:65:f4:7c:3d:ef:72:92:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a350d024af01f8eaf125717caa03aafad184e1d
Validity
Not Before: Jun 11 08:00:50 2025 GMT
Not After : Jun 12 08:00:50 2025 GMT
Subject: CN=79664d00b42b4724107a51b963f0cf1368dda71f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c6:5c:88:56:b6:4a:e4:54:71:5e:40:30:e9:
3c:67:f3:aa:c4:ff:41:42:04:6d:aa:ca:bb:df:6c:
79:1b:37:55:d7:28:3c:56:3a:82:f3:01:dc:bf:e8:
a5:f9:af:09:f4:1a:e6:0e:db:4c:9d:1b:97:8c:e7:
bd:b3:f5:36:44:a2:27:f9:78:bb:ae:02:a2:f4:0b:
e6:c9:73:48:a1:ae:7e:04:9d:e0:03:f5:fc:d1:b9:
80:8c:0c:71:16:67:94:94:ee:36:2f:af:ca:3f:bd:
fa:8f:06:86:19:e9:a2:38:47:b1:ab:69:79:2c:6e:
55:4a:97:9c:98:b9:5f:df:6c:10:ca:cf:aa:d6:4c:
68:a8:05:05:82:86:4b:7c:b9:de:93:de:2c:6d:cc:
36:8a:40:5e:68:c2:45:21:11:54:13:e6:b2:11:31:
a8:ab:95:4e:83:6a:8b:82:dc:f7:d1:cf:18:53:e4:
bb:5f:e2:44:65:43:77:4b:98:bc:49:d4:40:0b:84:
d5:eb:df:25:8e:12:80:54:ad:00:b4:55:ce:41:56:
50:2a:ad:20:76:fb:3a:fc:3c:07:38:73:e9:06:63:
88:15:a3:11:c3:89:95:9f:4a:bc:b7:5b:ea:be:6b:
92:5f:17:98:20:f4:cc:9d:6d:23:3e:e8:62:a5:b4:
8e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:66:4D:00:B4:2B:47:24:10:7A:51:B9:63:F0:CF:13:68:DD:A7:1F
X509v3 Authority Key Identifier:
keyid:7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:ce:fc:c5:71:94:48:19:1c:dd:a1:7c:b6:fa:88:e2:3b:17:
6b:3e:55:e1:5c:cf:16:0a:a4:c5:e1:2c:80:f9:28:eb:7f:71:
af:7e:58:9c:6d:81:0b:2e:d7:65:10:3d:6e:41:2c:36:b5:49:
8d:1c:2d:68:7f:8e:e0:23:c5:41:cd:7e:32:f0:9d:30:a7:10:
ac:ac:11:04:b9:98:e9:7f:c1:23:17:27:70:e1:d6:8e:db:2c:
96:1b:a6:35:dd:89:da:59:0f:d3:88:f1:ec:03:17:d9:bd:07:
09:30:27:41:97:24:7e:1e:d9:67:a5:4a:f0:e2:42:10:e1:b0:
de:c5:73:93:df:cb:ae:98:28:69:72:8b:74:6b:ba:37:03:71:
91:ea:1a:87:d4:cc:a4:57:7f:72:42:cc:f7:40:ec:32:1c:27:
93:73:28:76:d9:a7:69:07:71:3f:cc:7b:46:1c:64:5e:a3:77:
9c:f0:33:54:24:b6:e9:4b:c9:c1:db:29:c3:50:5b:8a:9b:f4:
60:f2:fc:b8:30:2f:0c:98:5a:ab:25:3c:86:79:2a:14:d0:3b:
1b:fe:ba:c5:6f:2d:a6:a9:32:03:52:5f:35:56:02:d0:0d:06:
75:df:29:c2:19:9b:62:b2:73:4f:40:3f:ea:b4:90:67:be:e9:
69:19:bc:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 12:53:37 2025 by rpki-client