Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
File: eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft (raw, json)
Hash identifier: 156suIdBjm21WNgCDjuKK3qii4t/r8XF4uum1cG07SY=
Subject key identifier: 81:01:FC:1D:30:A6:8C:3A:D1:7D:B7:AE:A1:68:71:3C:B0:C8:02:7C
Authority key identifier: 78:70:62:1F:C0:AF:C8:EC:18:EE:F2:06:33:F6:14:88:13:27:99:76
Certificate issuer: /CN=7870621fc0afc8ec18eef20633f6148813279976
Certificate serial: 0196564A88E35D7D2A86715473B2608A2A66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHBiH8CvyOwY7vIGM_YUiBMnmXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
Manifest number: 03C4
Signing time: Mon 21 Apr 2025 03:00:47 +0000
Manifest this update: Mon 21 Apr 2025 03:00:47 +0000
Manifest next update: Tue 22 Apr 2025 03:00:47 +0000
Files and hashes: 1: Mg8uBQPef3LyJjKgZxMt4YNcO_E.roa (hash: PmmY7x5LyJJDD6LlXlPdfzSLFcMHWHakThUWPxHgQkY=)
2: eHBiH8CvyOwY7vIGM_YUiBMnmXY.crl (hash: cjqEQm+q2zg9GsXVTkjJ9IT1cQwo2gRRnT10bZAmT+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/eHBiH8CvyOwY7vIGM_YUiBMnmXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:4a:88:e3:5d:7d:2a:86:71:54:73:b2:60:8a:2a:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7870621fc0afc8ec18eef20633f6148813279976
Validity
Not Before: Apr 21 03:00:47 2025 GMT
Not After : Apr 22 03:00:47 2025 GMT
Subject: CN=8101fc1d30a68c3ad17db7aea168713cb0c8027c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ab:c7:ad:6c:e6:1f:2f:26:78:91:c4:bd:5b:
97:c8:e3:38:c7:e8:75:f6:e0:6c:16:22:25:d9:b7:
d4:8a:5b:50:f6:40:f2:5a:c2:26:e1:7f:94:fa:92:
07:b4:2e:f8:f0:1e:ab:64:03:5c:5f:97:54:32:55:
69:77:1a:9c:a5:c8:7f:9a:47:2f:2a:bf:4e:39:cb:
aa:98:1e:17:f4:f4:60:2f:b7:4a:ab:0a:5e:a2:e1:
1a:7e:29:d9:cd:b1:e8:d9:78:59:9c:de:d6:3a:77:
e0:38:06:90:b4:c9:ee:0e:e1:24:b9:5f:2a:53:1d:
f3:5b:94:7f:a4:63:a1:4a:f1:1e:bd:e7:1a:22:4e:
e2:94:c7:78:90:b7:5b:da:d5:c2:76:3f:1f:c3:f6:
96:b0:92:85:c4:10:5d:13:4c:5f:e2:1b:f6:27:99:
ad:f4:07:42:4f:4f:b9:bc:3e:1e:da:77:1d:8a:dd:
5a:84:3d:24:ea:87:c3:0c:98:cf:b6:4f:97:40:c3:
91:d0:94:99:3a:a9:05:02:b6:5c:bc:54:25:d2:82:
93:de:16:7a:a3:bd:f9:18:42:37:a3:26:81:a3:ae:
97:e8:dd:3c:4c:4e:88:f9:e7:c9:31:41:24:74:a8:
16:92:0f:c8:49:a2:de:c2:37:94:61:f5:13:18:b5:
3e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:01:FC:1D:30:A6:8C:3A:D1:7D:B7:AE:A1:68:71:3C:B0:C8:02:7C
X509v3 Authority Key Identifier:
keyid:78:70:62:1F:C0:AF:C8:EC:18:EE:F2:06:33:F6:14:88:13:27:99:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHBiH8CvyOwY7vIGM_YUiBMnmXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:04:83:45:47:5d:30:8c:9b:73:3c:80:9a:c5:42:35:17:80:
0d:be:ec:f0:47:46:bf:87:17:b6:c8:eb:80:27:99:6a:c8:26:
5a:8b:55:4d:21:1a:ef:43:5b:18:da:72:fe:ce:ab:e5:33:14:
cc:90:74:0d:d7:c0:79:90:a6:9f:a1:7a:e7:9c:86:53:e8:43:
5c:eb:05:c3:c8:45:a9:e3:bd:95:14:80:a7:2b:9d:6d:4f:99:
cf:f2:f4:a1:7d:ab:06:79:4c:c5:e1:c8:86:b1:31:e1:d5:0a:
6e:73:71:56:73:40:be:fb:ac:06:e1:b2:50:2a:d7:1d:c2:5d:
f5:86:39:c3:56:9c:79:3d:fc:f8:ac:22:73:48:7d:dc:b3:47:
44:85:ae:5c:eb:51:31:92:7c:fb:d5:00:e9:a9:7c:a8:e9:a2:
27:c7:51:56:31:bb:8f:e2:18:a0:9b:4a:f0:ad:03:f0:5e:5b:
e0:d0:f7:77:68:20:31:0c:c2:a5:4f:fe:a6:47:21:72:83:70:
c0:1b:9a:fc:6f:f6:7a:35:90:4e:77:c4:7b:9a:7f:84:fc:ae:
25:bf:32:a8:16:16:c4:90:84:9f:d5:c4:22:6f:86:49:2b:19:
53:39:70:58:07:da:b7:54:bc:93:aa:93:41:ef:1f:cf:08:d0:
9d:2a:37:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:41:22 2025 by rpki-client