Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
File: eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft (raw, json)
Hash identifier: qbY+CFmzhB+UPqNIRpRgd3s4dQXJUm8bOUeJXgmTilE=
Subject key identifier: D0:87:CE:CB:F6:C6:9C:4A:CF:71:69:A4:6D:A5:E5:E3:C1:33:71:E5
Authority key identifier: 78:70:62:1F:C0:AF:C8:EC:18:EE:F2:06:33:F6:14:88:13:27:99:76
Certificate issuer: /CN=7870621fc0afc8ec18eef20633f6148813279976
Certificate serial: 01974B8D57D03BEDC51228B8AFBC19B80F23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHBiH8CvyOwY7vIGM_YUiBMnmXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
Manifest number: 0443
Signing time: Sat 07 Jun 2025 18:00:43 +0000
Manifest this update: Sat 07 Jun 2025 18:00:43 +0000
Manifest next update: Sun 08 Jun 2025 18:00:43 +0000
Files and hashes: 1: Mg8uBQPef3LyJjKgZxMt4YNcO_E.roa (hash: PmmY7x5LyJJDD6LlXlPdfzSLFcMHWHakThUWPxHgQkY=)
2: eHBiH8CvyOwY7vIGM_YUiBMnmXY.crl (hash: s1TQvrLINHRV82kSo4muTefo76CGoUUg40A3jv0l82o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/eHBiH8CvyOwY7vIGM_YUiBMnmXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:57:d0:3b:ed:c5:12:28:b8:af:bc:19:b8:0f:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7870621fc0afc8ec18eef20633f6148813279976
Validity
Not Before: Jun 7 18:00:43 2025 GMT
Not After : Jun 8 18:00:43 2025 GMT
Subject: CN=d087cecbf6c69c4acf7169a46da5e5e3c13371e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7e:16:60:3d:e5:bf:17:2c:b1:da:d3:c7:3f:
bd:06:27:78:92:c9:68:81:98:d7:2b:1f:a6:6e:01:
a1:2e:e6:37:1d:18:64:03:ab:1b:ad:a2:2e:68:f6:
84:4d:c8:ef:ae:73:01:3f:0c:cd:2a:e9:67:e7:b6:
90:99:ec:4a:22:60:86:38:26:05:43:5b:0f:12:31:
3a:91:8d:75:92:a1:f9:ed:0a:22:a1:b9:10:6e:0d:
7b:d0:1f:e3:b8:9b:c6:e5:d1:40:cc:9e:20:a4:fe:
81:65:ca:49:80:76:0c:9a:0c:6f:08:e2:94:9f:d2:
a0:11:81:a1:bc:66:8b:53:1b:b1:de:1b:8c:83:4a:
61:46:dd:06:af:99:63:5b:58:60:77:30:e5:b8:4c:
10:a8:39:be:2e:57:4c:74:22:e0:2c:20:03:b8:73:
5f:77:a6:ec:a5:99:c2:e1:d5:0c:0b:dd:a2:db:9b:
f4:cb:19:4b:e3:f1:a0:e3:95:8f:8a:fe:3c:be:97:
af:78:b1:1b:68:bc:42:78:83:2d:f1:b0:18:49:13:
c1:5e:01:9c:b9:a9:e6:c3:dc:25:86:6d:f5:89:fb:
3f:54:75:26:e4:99:69:3b:62:53:0a:4b:24:06:79:
64:b1:4e:6f:c1:f7:b5:0c:c4:52:f6:85:69:d2:46:
1b:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:87:CE:CB:F6:C6:9C:4A:CF:71:69:A4:6D:A5:E5:E3:C1:33:71:E5
X509v3 Authority Key Identifier:
keyid:78:70:62:1F:C0:AF:C8:EC:18:EE:F2:06:33:F6:14:88:13:27:99:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHBiH8CvyOwY7vIGM_YUiBMnmXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:53:fa:83:38:33:17:57:25:2f:43:98:e4:08:c1:dd:ac:a5:
40:8e:fa:9b:ba:26:69:9d:d0:56:41:12:71:b6:e7:99:da:4f:
ba:b0:dc:27:d8:84:62:7a:1d:40:9a:32:7e:70:23:84:58:70:
39:a6:9a:d4:62:f3:06:fb:4f:7b:f2:c1:13:20:53:c4:46:45:
c9:e5:1d:0b:b8:79:c1:20:2b:5f:26:8a:33:1a:19:e5:c7:8a:
33:fe:f3:04:64:00:6f:0a:56:62:43:a4:e0:f3:02:ba:34:9b:
b4:9d:ea:5d:c4:61:ae:fd:a6:15:de:22:e3:55:97:d1:bd:8c:
ea:2b:87:8b:9e:d4:82:80:da:28:9f:af:4d:81:93:90:ce:dc:
fb:dd:1c:37:51:d6:cf:96:27:ac:e6:16:2f:a9:90:96:17:f1:
eb:11:c9:cc:cc:a9:4c:47:a3:e2:b0:f9:90:48:e8:ba:84:63:
e9:14:f4:b5:14:73:f3:d1:28:d7:ab:ee:fa:be:81:c9:f1:36:
06:7a:96:20:dd:7c:b2:22:db:70:4a:e6:1b:38:e2:9d:23:c9:
96:6c:a1:d8:39:d1:bc:82:9c:80:08:df:4a:4e:da:2c:92:e1:
25:02:62:2f:8d:f1:84:70:a1:e0:69:cd:a3:8f:3a:e9:1a:95:
2e:84:c8:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:23:23 2025 by rpki-client