Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
File: EHTblkAv9c8YdWRWDqjxPu61_-s.mft (raw, json)
Hash identifier: g3J63oKWV/GBcRFZJbPX2cYyY4QqkB3J2s4KjmqAC7Q=
Subject key identifier: D8:4C:E3:95:6F:51:19:60:87:D1:8E:07:7B:A4:AF:91:66:4C:62:6E
Authority key identifier: 10:74:DB:96:40:2F:F5:CF:18:75:64:56:0E:A8:F1:3E:EE:B5:FF:EB
Certificate issuer: /CN=1074db96402ff5cf187564560ea8f13eeeb5ffeb
Certificate serial: 0197499F02B3FED2C6C8FDC917FC88A66C9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHTblkAv9c8YdWRWDqjxPu61_-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
Manifest number: 1583
Signing time: Sat 07 Jun 2025 09:00:47 +0000
Manifest this update: Sat 07 Jun 2025 09:00:47 +0000
Manifest next update: Sun 08 Jun 2025 09:00:47 +0000
Files and hashes: 1: Aj2rrW4FZK0RLp7ijlwRcBGnmjk.roa (hash: eHBzjeIspzBgFyylIbpkt8jQHfok+Ou4W1bdzs7LSxY=)
2: EHTblkAv9c8YdWRWDqjxPu61_-s.crl (hash: AzxlFBWbIKMBbeX+52B9FCxvmycaDCMhDo8nHuZR4oA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
rsync://rpki.ripe.net/repository/DEFAULT/EHTblkAv9c8YdWRWDqjxPu61_-s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:02:b3:fe:d2:c6:c8:fd:c9:17:fc:88:a6:6c:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1074db96402ff5cf187564560ea8f13eeeb5ffeb
Validity
Not Before: Jun 7 09:00:47 2025 GMT
Not After : Jun 8 09:00:47 2025 GMT
Subject: CN=d84ce3956f51196087d18e077ba4af91664c626e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:fe:96:d3:58:56:3e:b5:41:31:7d:6a:52:5d:
21:86:f1:49:1a:c1:21:0b:cf:0e:06:cf:a4:ed:eb:
28:df:3c:e9:66:81:53:94:e0:29:82:8a:2f:fe:17:
f3:54:db:3f:10:cb:bd:21:51:41:8e:f7:23:76:49:
06:dc:fa:17:21:3f:9c:5f:22:2b:4c:35:f0:47:ac:
1f:aa:11:08:ec:21:dd:5d:14:fc:11:2e:96:d8:f6:
cb:b4:19:5f:57:19:66:ee:66:79:a0:62:80:ef:fa:
e9:89:43:50:9b:6f:17:38:00:fa:29:6c:fe:2b:63:
43:0b:06:a9:9f:69:20:10:46:0d:94:0d:34:57:ff:
6d:8b:f2:a6:27:d7:19:e2:ce:c6:40:e8:68:41:8a:
e4:01:07:e6:41:f4:c1:e4:60:04:25:7b:1d:a6:ff:
1e:9c:0b:46:af:3e:e1:34:e8:72:41:0b:c1:3b:aa:
6b:9a:0b:55:f9:50:03:82:8c:e3:a0:29:7a:bb:a7:
58:b9:0a:0d:4d:7d:2e:54:03:18:9f:49:58:22:88:
79:5f:95:73:7a:b1:66:d0:c2:f6:53:72:ba:53:5c:
6e:36:60:1c:1f:02:29:35:3e:ba:00:32:60:b6:8a:
de:17:63:59:d7:84:98:b2:a6:5e:8d:e6:83:52:00:
10:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:4C:E3:95:6F:51:19:60:87:D1:8E:07:7B:A4:AF:91:66:4C:62:6E
X509v3 Authority Key Identifier:
keyid:10:74:DB:96:40:2F:F5:CF:18:75:64:56:0E:A8:F1:3E:EE:B5:FF:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHTblkAv9c8YdWRWDqjxPu61_-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:64:fc:8e:10:02:c2:a7:e9:52:2d:77:14:7d:75:ed:87:22:
e8:d8:28:e0:64:8b:32:a7:a1:a3:e8:1a:48:06:b7:f3:a4:9b:
10:c5:c5:da:19:5d:76:b3:48:56:2d:a4:04:4c:af:db:5e:be:
ff:a6:53:64:9e:ba:d5:64:15:f1:8e:8c:31:dd:c2:64:06:b4:
ac:20:e4:89:38:04:24:64:79:ec:51:f3:ea:28:b5:7e:26:ed:
7e:c6:13:69:18:d4:d5:58:e6:83:72:e6:6f:13:7b:1b:69:6e:
be:a8:00:84:08:83:48:ce:67:76:15:79:9f:61:cc:d4:2e:96:
14:bc:fd:22:75:92:56:88:3b:72:0f:d8:b2:39:a9:96:66:90:
bb:9a:93:78:b6:d7:3e:67:c6:32:bc:c8:cc:77:40:6b:16:13:
ca:e8:d8:ff:1f:27:65:be:d0:81:a9:bb:4f:5d:38:c7:20:2c:
c2:6b:4e:db:82:38:fa:4b:e4:b4:3a:f9:d2:ab:bb:ad:8e:98:
c3:c5:f7:75:22:e6:41:e9:33:aa:bb:49:e5:4d:98:e3:56:16:
c2:4c:cc:90:52:85:f5:6b:bc:f5:cd:ca:bf:e3:69:53:01:aa:
e3:28:34:1c:ea:e7:c9:3e:f7:b4:df:39:9d:9b:17:2f:17:29:
79:92:90:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:45:40 2025 by rpki-client