Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
File: EHTblkAv9c8YdWRWDqjxPu61_-s.mft (raw, json)
Hash identifier: pxELeftYx5X/ZoYoppJJEwuW/H4Rtje8qhxl4Diesxc=
Subject key identifier: 58:6F:77:A5:DD:66:2D:19:79:00:04:3A:DB:B9:5F:B5:B7:5A:19:3E
Authority key identifier: 10:74:DB:96:40:2F:F5:CF:18:75:64:56:0E:A8:F1:3E:EE:B5:FF:EB
Certificate issuer: /CN=1074db96402ff5cf187564560ea8f13eeeb5ffeb
Certificate serial: 019651FFF2695D37B6A67D6736D0B9897ED9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHTblkAv9c8YdWRWDqjxPu61_-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
Manifest number: 1502
Signing time: Sun 20 Apr 2025 07:00:50 +0000
Manifest this update: Sun 20 Apr 2025 07:00:50 +0000
Manifest next update: Mon 21 Apr 2025 07:00:50 +0000
Files and hashes: 1: 3v8yr5gJI83WUjRJ9OZVqhkkR7c.roa (hash: fBGuRwwzNL/uOKrTf6Q2PyK8x8wJZZLUSDBTYI2GL84=)
2: EHTblkAv9c8YdWRWDqjxPu61_-s.crl (hash: IRQKbdbIWVEaEhhjnOwNuG2HJohoK6U3RC3TTcH0Fxw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
rsync://rpki.ripe.net/repository/DEFAULT/EHTblkAv9c8YdWRWDqjxPu61_-s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:ff:f2:69:5d:37:b6:a6:7d:67:36:d0:b9:89:7e:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1074db96402ff5cf187564560ea8f13eeeb5ffeb
Validity
Not Before: Apr 20 07:00:50 2025 GMT
Not After : Apr 21 07:00:50 2025 GMT
Subject: CN=586f77a5dd662d197900043adbb95fb5b75a193e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ff:0d:b6:24:0d:7a:2e:77:e2:31:54:1e:44:
e9:fb:c0:12:22:ca:5e:18:97:8c:90:02:42:3f:73:
4f:bd:29:0b:e9:7d:32:5a:89:da:d2:6a:4e:d8:51:
91:9a:54:12:e8:9e:e6:3d:b6:1e:4b:00:c4:6b:39:
7d:63:d9:d5:73:f3:11:05:ba:57:d7:66:ee:66:d4:
25:0e:09:f5:b2:18:34:b6:07:09:e2:bf:cc:67:b4:
12:dc:f1:d4:0f:d0:29:07:79:12:35:c7:a4:68:ce:
b2:08:68:e0:34:06:e4:f5:a9:e4:cd:b4:51:51:7b:
5c:70:05:30:96:87:68:60:5a:14:35:a1:72:3a:30:
fa:be:8e:b9:54:a4:6e:0b:bd:f1:e1:49:03:02:34:
98:c9:f9:fd:ac:b3:7f:b0:2b:5f:ee:3a:75:75:99:
a0:1b:38:57:a9:e9:ef:d3:fa:a4:58:7e:c3:bf:19:
90:6d:d0:cc:5c:b5:92:38:6d:58:b8:e4:6a:aa:2d:
03:01:a2:3d:67:3b:19:e2:89:d6:24:ea:d2:c8:ca:
e9:9f:ed:03:96:05:51:6a:64:de:aa:e7:8b:e0:1b:
47:ff:35:3d:94:0a:bd:48:c4:ca:9a:ca:a8:bb:f1:
7c:0e:3e:ad:90:a6:76:e9:b4:b9:17:f3:5a:80:5c:
3f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:6F:77:A5:DD:66:2D:19:79:00:04:3A:DB:B9:5F:B5:B7:5A:19:3E
X509v3 Authority Key Identifier:
keyid:10:74:DB:96:40:2F:F5:CF:18:75:64:56:0E:A8:F1:3E:EE:B5:FF:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHTblkAv9c8YdWRWDqjxPu61_-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:e4:1a:06:f9:10:fc:f7:b8:3c:d3:59:6d:fd:a5:91:4e:5d:
06:59:5a:8b:11:ba:ec:0f:ae:71:bb:dc:73:e7:a5:0f:d0:16:
0d:6d:2d:31:3a:ad:dd:6f:63:69:67:35:b1:d6:c4:0c:c7:24:
25:ce:42:01:cb:05:97:7f:bf:56:d3:7f:5c:fd:b7:5f:f6:d0:
c2:b3:2f:ba:ab:70:76:7d:04:b1:b0:d0:5d:57:9a:51:49:dc:
14:7e:e1:79:80:19:08:72:8e:45:30:b1:3a:88:10:e4:5e:e6:
99:e7:5c:ab:5d:99:80:94:46:1c:c9:b9:ad:4a:46:c5:73:c9:
f0:a2:41:4b:1c:33:37:2a:5e:a3:43:89:ff:21:2e:f9:bc:3b:
3d:9b:a2:a7:8b:91:ae:d6:7d:db:42:43:52:cd:b3:dc:ef:b1:
85:0f:ba:18:76:8a:35:45:99:7e:29:31:14:af:6d:aa:88:50:
32:df:d8:19:75:11:ea:d5:3f:8b:2a:64:1f:f8:42:27:74:52:
bd:d7:6d:da:25:eb:e0:1a:89:8a:2a:d4:ff:b6:ca:93:a9:0d:
46:ee:32:d6:a6:fe:a8:ea:95:44:76:00:be:3d:45:b8:bb:12:
09:7a:a1:b6:68:5f:22:c3:5e:3e:7f:7c:35:2b:95:ba:2a:df:
fe:a2:6c:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:13:05 2025 by rpki-client