Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
File: egtky28YoRQXQjEFCwF5kxteSG0.mft (raw, json)
Hash identifier: NNoXyh0beqZI5urb1yrJaiihQ2cMPAuP80UUHjH/VS4=
Subject key identifier: C7:D6:D5:E5:19:6A:1F:41:33:46:58:D1:80:AC:CE:C1:A3:06:A8:A8
Authority key identifier: 7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D
Certificate issuer: /CN=7a0b64cb6f18a114174231050b0179931b5e486d
Certificate serial: 01959005E9AEDBCC2334ABA990A14EFB7B85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
Manifest number: 01A5
Signing time: Thu 13 Mar 2025 15:01:01 +0000
Manifest this update: Thu 13 Mar 2025 15:01:01 +0000
Manifest next update: Fri 14 Mar 2025 15:01:01 +0000
Files and hashes: 1: cChdW9IKygfKR2rAFYsXhx5RqmU.roa (hash: TyxqseiqVgQ1lk5s+kcYQAHiXGFHWxgFXhhbbIVGfj4=)
2: egtky28YoRQXQjEFCwF5kxteSG0.crl (hash: nfWWQjFzZASuc4D5Z4DbguqMMFwtyEO5EAxBFxMGy+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:05:e9:ae:db:cc:23:34:ab:a9:90:a1:4e:fb:7b:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a0b64cb6f18a114174231050b0179931b5e486d
Validity
Not Before: Mar 13 15:01:01 2025 GMT
Not After : Mar 14 15:01:01 2025 GMT
Subject: CN=c7d6d5e5196a1f41334658d180accec1a306a8a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:cf:e0:d8:95:f9:a6:27:f3:df:ce:be:3a:ad:
50:59:13:e1:71:e2:75:6c:d3:31:bc:23:31:bf:a9:
82:90:5c:b1:37:aa:b2:ce:c0:32:32:5d:05:3e:13:
87:ce:13:15:25:e2:29:e8:d0:d8:7c:d2:87:7c:e3:
d0:23:dd:c0:65:2f:3e:81:91:ea:22:8e:ce:71:2d:
e7:32:4b:2c:92:38:bb:59:03:af:b4:74:1b:ed:bc:
7f:0c:26:19:45:34:47:38:9d:7a:6c:28:df:91:54:
7e:d5:4a:a8:ad:99:ce:be:e2:90:e8:dc:8c:97:b3:
78:35:36:e4:70:3e:4c:e5:52:9f:e5:35:27:42:8b:
48:0b:32:b7:19:8f:f4:8d:9b:95:69:e4:ac:a0:a6:
f0:01:52:d5:a1:43:23:8b:93:a7:4c:d0:73:2a:f6:
66:21:76:66:07:29:f5:fa:91:7b:c2:53:02:29:d5:
d1:aa:97:ac:32:fd:e3:8e:54:ec:dd:58:36:99:a4:
0a:5e:73:3a:fb:92:de:e8:c3:5f:a2:c6:09:5e:85:
21:07:20:70:69:63:78:63:c7:75:41:19:fd:5c:74:
00:b2:cb:7f:0d:c2:e0:5f:db:13:eb:ca:db:9f:1a:
cf:34:76:0b:4b:7c:21:4a:40:03:e3:5b:9c:75:c9:
39:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:D6:D5:E5:19:6A:1F:41:33:46:58:D1:80:AC:CE:C1:A3:06:A8:A8
X509v3 Authority Key Identifier:
keyid:7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:56:bd:3a:86:19:1f:e1:59:7e:9c:18:da:68:bc:b1:41:f5:
44:36:fd:2c:09:4f:43:af:a1:1a:95:20:d1:cc:ff:5e:f3:f3:
9c:80:c6:2e:f0:c1:fb:80:09:e8:33:63:f9:ba:c7:19:5c:07:
96:77:c3:76:d5:81:32:b6:ac:28:b6:5a:2f:6a:e5:95:14:f6:
e2:18:51:80:4c:9f:19:c7:0a:ae:11:3f:30:9b:8a:f6:ec:4e:
27:19:56:37:6f:94:e7:7e:13:de:a3:fa:0f:02:ed:87:1b:88:
43:50:a2:a4:91:6f:0a:80:24:37:2b:7e:bb:f0:2f:7e:2e:bc:
a4:b7:11:99:61:0c:e7:41:b1:09:99:e2:e2:a4:a6:cc:55:24:
85:16:1c:8a:dc:c4:25:71:76:0a:cf:16:17:91:25:ee:85:e6:
f0:4e:c0:48:f8:3b:77:0b:12:9c:1c:84:c3:a2:b6:be:0c:ce:
c7:95:55:d3:d1:06:48:a9:5e:4f:d9:9c:38:48:c3:47:67:99:
25:4a:a6:d0:60:87:f9:1a:4d:b2:0c:58:6f:4d:a1:dd:83:5a:
79:48:fd:79:83:d0:64:7e:b3:7f:30:28:2f:d5:27:ba:f3:6c:
5a:c7:d0:96:b1:38:6f:3f:4f:45:d3:7d:c5:b3:39:ce:d0:48:
da:de:76:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:50:00 2025 by rpki-client