Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
File: egtky28YoRQXQjEFCwF5kxteSG0.mft (raw, json)
Hash identifier: 26rGb+OO0pxdwZgjYjJmR1fLUWwRaxDyvBWS+woKvMg=
Subject key identifier: 7B:93:79:D0:A4:43:D5:99:B5:AE:D5:F6:FE:CC:57:44:82:CD:10:44
Authority key identifier: 7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D
Certificate issuer: /CN=7a0b64cb6f18a114174231050b0179931b5e486d
Certificate serial: 019653124DD4403034A7887D893D79EBAE0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
Manifest number: 020A
Signing time: Sun 20 Apr 2025 12:00:30 +0000
Manifest this update: Sun 20 Apr 2025 12:00:30 +0000
Manifest next update: Mon 21 Apr 2025 12:00:30 +0000
Files and hashes: 1: cChdW9IKygfKR2rAFYsXhx5RqmU.roa (hash: TyxqseiqVgQ1lk5s+kcYQAHiXGFHWxgFXhhbbIVGfj4=)
2: egtky28YoRQXQjEFCwF5kxteSG0.crl (hash: xm+tBA70+8RjpffrPYEUdNr19GE+zyp/yzR2r1LNOa0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 12:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:12:4d:d4:40:30:34:a7:88:7d:89:3d:79:eb:ae:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a0b64cb6f18a114174231050b0179931b5e486d
Validity
Not Before: Apr 20 12:00:30 2025 GMT
Not After : Apr 21 12:00:30 2025 GMT
Subject: CN=7b9379d0a443d599b5aed5f6fecc574482cd1044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ef:3f:47:51:2b:1d:7f:76:fe:f5:4d:f0:90:
ac:96:9e:25:a6:c2:58:4e:f5:ec:79:d5:c1:1f:38:
40:30:0d:44:f8:9b:2f:df:7a:56:0a:6f:13:fe:a3:
60:9a:89:02:a9:97:25:eb:91:74:34:21:1f:73:a4:
17:f4:6b:90:85:d1:f0:5e:8f:52:26:a1:bb:db:de:
b3:92:5d:d5:21:0f:b8:fb:dc:be:83:4e:cb:b4:b3:
04:5e:ba:a2:ec:20:54:e2:13:2b:28:e3:3e:c6:16:
fd:0f:fe:c6:4c:30:79:77:4f:8e:42:2c:1c:14:23:
ec:f3:0e:aa:53:4c:8b:4c:71:5f:5f:70:2e:2c:b0:
fe:dc:06:6a:34:f6:49:33:bc:42:a6:94:e2:58:d9:
dc:38:a5:6a:4d:a4:84:75:da:f0:32:90:f2:1e:d9:
48:f8:30:63:99:1c:22:17:34:62:11:e4:3b:e1:4a:
80:04:59:e6:e2:32:93:93:52:de:07:d3:ba:c6:ee:
e2:56:27:67:5d:9d:66:23:bd:db:9e:8d:97:81:c8:
79:69:fd:a4:e9:c0:40:10:55:34:fb:40:f9:bd:cc:
68:d3:63:dd:37:05:8d:ae:cf:2e:50:ee:69:3a:dd:
2b:10:22:36:d4:cf:7a:90:24:67:f3:05:0a:1f:e0:
2a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:93:79:D0:A4:43:D5:99:B5:AE:D5:F6:FE:CC:57:44:82:CD:10:44
X509v3 Authority Key Identifier:
keyid:7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:ad:47:50:ca:2b:af:0f:e0:3d:ef:05:24:31:d4:03:67:e0:
b7:d6:4e:1a:5f:f6:43:cc:3d:b7:67:a7:73:08:f9:62:95:3c:
8a:d1:28:a9:a1:04:13:f9:84:ef:1e:a8:2d:8f:89:5b:d3:61:
be:8a:ec:45:43:84:1f:1a:ca:83:68:0d:80:7b:18:0a:a9:26:
56:e6:01:7e:89:64:1c:35:16:94:33:4d:48:34:94:15:5d:6a:
8c:e0:f3:93:7a:fa:72:26:d4:42:b0:12:30:f8:6a:73:11:60:
86:30:d7:cb:e3:ce:da:fa:39:56:77:c9:c8:1f:1b:a7:35:99:
26:64:40:1d:00:70:b8:2f:d6:66:ac:da:be:37:57:e0:db:bf:
80:82:82:dd:14:8e:07:c9:40:8d:6e:94:26:6f:14:d9:de:98:
1e:d2:fa:67:f6:8a:7c:77:00:98:24:55:0c:ff:95:ff:85:d6:
f2:72:ff:ca:bd:d5:c2:15:80:e1:04:57:1e:06:54:b4:4b:ca:
78:7c:65:70:d1:91:19:65:38:62:2e:9a:32:a9:c2:47:6e:56:
e9:61:7d:76:64:71:c0:a9:bc:0b:d3:e1:c2:28:66:c3:28:98:
c8:b2:29:ae:b6:76:e0:8b:9b:02:8f:7e:82:fd:51:02:d7:2e:
47:2e:61:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZTEk3UQDA0p4h9iT15664LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhMGI2NGNiNmYxOGExMTQxNzQyMzEwNTBiMDE3OTkzMWI1
ZTQ4NmQwHhcNMjUwNDIwMTIwMDMwWhcNMjUwNDIxMTIwMDMwWjAzMTEwLwYDVQQD
Eyg3YjkzNzlkMGE0NDNkNTk5YjVhZWQ1ZjZmZWNjNTc0NDgyY2QxMDQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+8/R1ErHX92/vVN8JCslp4lpsJY
TvXsedXBHzhAMA1E+Jsv33pWCm8T/qNgmokCqZcl65F0NCEfc6QX9GuQhdHwXo9S
JqG7296zkl3VIQ+4+9y+g07LtLMEXrqi7CBU4hMrKOM+xhb9D/7GTDB5d0+OQiwc
FCPs8w6qU0yLTHFfX3AuLLD+3AZqNPZJM7xCppTiWNncOKVqTaSEddrwMpDyHtlI
+DBjmRwiFzRiEeQ74UqABFnm4jKTk1LeB9O6xu7iVidnXZ1mI73bno2Xgch5af2k
6cBAEFU0+0D5vcxo02PdNwWNrs8uUO5pOt0rECI21M96kCRn8wUKH+AqEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHuTedCkQ9WZta7V9v7MV0SCzRBEMB8GA1UdIwQY
MBaAFHoLZMtvGKEUF0IxBQsBeZMbXkhtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZWd0a3kyOFlvUlFYUWpFRkN3RjVreHRlU0cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS80MDM5ZDktYThiMC00NjU0LWE1YzMt
MjJhZTU0MmViNWRmLzEvZWd0a3kyOFlvUlFYUWpFRkN3RjVreHRlU0cwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS80MDM5ZDktYThiMC00NjU0LWE1YzMtMjJhZTU0MmViNWRm
LzEvZWd0a3kyOFlvUlFYUWpFRkN3RjVreHRlU0cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa61HUMor
rw/gPe8FJDHUA2fgt9ZOGl/2Q8w9t2encwj5YpU8itEoqaEEE/mE7x6oLY+JW9Nh
vorsRUOEHxrKg2gNgHsYCqkmVuYBfolkHDUWlDNNSDSUFV1qjODzk3r6cibUQrAS
MPhqcxFghjDXy+PO2vo5VnfJyB8bpzWZJmRAHQBwuC/WZqzavjdX4Nu/gIKC3RSO
B8lAjW6UJm8U2d6YHtL6Z/aKfHcAmCRVDP+V/4XW8nL/yr3VwhWA4QRXHgZUtEvK
eHxlcNGRGWU4Yi6aMqnCR25W6WF9dmRxwKm8C9PhwihmwyiYyLIprrZ24IubAo9+
gv1RAtcuRy5hcw==
-----END CERTIFICATE-----
Generated at Sun Apr 20 20:22:03 2025 by rpki-client