Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
File: egtky28YoRQXQjEFCwF5kxteSG0.mft (raw, json)
Hash identifier: SsRegU+iUgV0UKPW55lrWSqRipt7Hi4b8uL912r5Udc=
Subject key identifier: AF:B3:FF:C5:FF:B3:A0:72:94:9E:63:45:38:3A:02:34:8E:90:DF:B6
Authority key identifier: 7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D
Certificate issuer: /CN=7a0b64cb6f18a114174231050b0179931b5e486d
Certificate serial: 01974A43E73CAF69BC198988B0A21F05FA9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
Manifest number: 028A
Signing time: Sat 07 Jun 2025 12:00:53 +0000
Manifest this update: Sat 07 Jun 2025 12:00:53 +0000
Manifest next update: Sun 08 Jun 2025 12:00:53 +0000
Files and hashes: 1: cChdW9IKygfKR2rAFYsXhx5RqmU.roa (hash: TyxqseiqVgQ1lk5s+kcYQAHiXGFHWxgFXhhbbIVGfj4=)
2: egtky28YoRQXQjEFCwF5kxteSG0.crl (hash: q/sNhhatJ7A1WH3SSLPSt+5s2grOFwpyuHtT3Ssberw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:e7:3c:af:69:bc:19:89:88:b0:a2:1f:05:fa:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a0b64cb6f18a114174231050b0179931b5e486d
Validity
Not Before: Jun 7 12:00:53 2025 GMT
Not After : Jun 8 12:00:53 2025 GMT
Subject: CN=afb3ffc5ffb3a072949e6345383a02348e90dfb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:05:4a:9f:85:9f:cc:60:11:c7:36:df:97:32:
32:e1:68:fe:4b:0c:60:49:91:c0:a8:15:b5:0b:cd:
3d:25:d4:1e:ec:81:16:68:70:5a:ab:06:2a:af:4e:
f3:53:bc:18:39:4b:01:92:d9:ba:3b:8a:c8:06:fb:
55:eb:b7:ac:39:61:c0:8f:21:fe:6d:9b:b3:91:f7:
e4:6c:74:41:ec:53:d1:92:fd:0d:74:8c:26:0b:ca:
91:9c:5f:9a:99:8d:16:ba:7f:14:27:3c:d9:ca:4f:
44:7b:b3:a1:49:36:b2:e5:76:45:e3:f9:8f:e2:7d:
e7:bd:82:1e:71:20:86:e6:f0:54:b7:69:c2:79:90:
50:74:c5:b2:e1:f4:8b:5f:a3:f3:17:fe:81:71:59:
86:22:61:29:8a:f1:48:35:80:1a:c1:44:4c:0d:94:
04:89:39:3c:e7:21:23:1d:96:8f:ce:87:ac:1f:ad:
33:47:99:e9:75:be:c4:3e:20:34:b4:b5:89:0d:f4:
ce:a9:af:77:66:58:9f:bc:1b:fb:02:a9:ea:16:18:
14:84:8a:b2:68:f0:ac:3f:1c:6d:3b:48:35:a6:89:
68:42:8a:55:98:1d:40:2e:7a:94:b1:50:b9:92:95:
4d:7d:a9:16:fe:30:f7:0f:b7:79:f0:c5:08:e5:98:
b9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:B3:FF:C5:FF:B3:A0:72:94:9E:63:45:38:3A:02:34:8E:90:DF:B6
X509v3 Authority Key Identifier:
keyid:7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:79:50:59:e2:65:87:62:77:e4:e6:9e:61:cd:80:bc:c4:b8:
36:ac:59:0d:99:ea:0a:2a:42:df:82:cd:59:61:e7:f6:a4:54:
c5:7f:0b:e2:be:2b:31:e2:98:e5:df:c9:5e:60:24:5c:37:01:
d5:70:81:9c:dc:06:15:5f:1f:52:82:77:e8:41:15:ac:27:ae:
f7:8f:4c:f7:d0:2b:5c:e8:c9:de:b9:51:78:a8:4e:00:37:86:
9e:f0:6d:de:50:78:c8:2f:3d:d3:3b:7d:c2:9f:5c:c7:dd:e4:
73:19:ba:8f:41:45:ea:d3:d1:be:90:8d:0a:e8:86:a9:73:73:
03:24:64:e6:ed:f3:43:d4:3d:e9:1a:91:54:e1:bd:2b:6d:83:
23:b8:fe:03:90:b8:ea:5f:78:53:1a:5f:9e:21:c1:1f:2b:e0:
e0:0e:73:fc:b7:f7:f8:19:22:77:eb:8a:2d:3d:d7:60:af:d0:
63:e1:8d:74:54:2c:19:6e:13:ff:7e:14:9f:19:9e:c0:ed:7c:
f4:f0:d5:0c:52:5a:e3:ec:c2:4e:4a:a4:1d:6f:96:28:37:b3:
c1:72:19:c3:40:8a:b1:36:33:0b:82:c9:cb:26:6d:65:cc:e9:
3d:31:2d:6c:cc:c0:9e:1e:c8:1a:4f:44:9f:0a:67:cc:d5:c6:
9e:58:93:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKQ+c8r2m8GYmIsKIfBfqeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhMGI2NGNiNmYxOGExMTQxNzQyMzEwNTBiMDE3OTkzMWI1
ZTQ4NmQwHhcNMjUwNjA3MTIwMDUzWhcNMjUwNjA4MTIwMDUzWjAzMTEwLwYDVQQD
EyhhZmIzZmZjNWZmYjNhMDcyOTQ5ZTYzNDUzODNhMDIzNDhlOTBkZmI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwQVKn4WfzGARxzbflzIy4Wj+Swxg
SZHAqBW1C809JdQe7IEWaHBaqwYqr07zU7wYOUsBktm6O4rIBvtV67esOWHAjyH+
bZuzkffkbHRB7FPRkv0NdIwmC8qRnF+amY0Wun8UJzzZyk9Ee7OhSTay5XZF4/mP
4n3nvYIecSCG5vBUt2nCeZBQdMWy4fSLX6PzF/6BcVmGImEpivFINYAawURMDZQE
iTk85yEjHZaPzoesH60zR5npdb7EPiA0tLWJDfTOqa93ZlifvBv7AqnqFhgUhIqy
aPCsPxxtO0g1poloQopVmB1ALnqUsVC5kpVNfakW/jD3D7d58MUI5Zi5RwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK+z/8X/s6BylJ5jRTg6AjSOkN+2MB8GA1UdIwQY
MBaAFHoLZMtvGKEUF0IxBQsBeZMbXkhtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZWd0a3kyOFlvUlFYUWpFRkN3RjVreHRlU0cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS80MDM5ZDktYThiMC00NjU0LWE1YzMt
MjJhZTU0MmViNWRmLzEvZWd0a3kyOFlvUlFYUWpFRkN3RjVreHRlU0cwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS80MDM5ZDktYThiMC00NjU0LWE1YzMtMjJhZTU0MmViNWRm
LzEvZWd0a3kyOFlvUlFYUWpFRkN3RjVreHRlU0cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeXlQWeJl
h2J35OaeYc2AvMS4NqxZDZnqCipC34LNWWHn9qRUxX8L4r4rMeKY5d/JXmAkXDcB
1XCBnNwGFV8fUoJ36EEVrCeu949M99ArXOjJ3rlReKhOADeGnvBt3lB4yC890zt9
wp9cx93kcxm6j0FF6tPRvpCNCuiGqXNzAyRk5u3zQ9Q96RqRVOG9K22DI7j+A5C4
6l94UxpfniHBHyvg4A5z/Lf3+Bkid+uKLT3XYK/QY+GNdFQsGW4T/34UnxmewO18
9PDVDFJa4+zCTkqkHW+WKDezwXIZw0CKsTYzC4LJyyZtZczpPTEtbMzAnh7IGk9E
nwpnzNXGnliTWw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 15:30:27 2025 by rpki-client