Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
File: egtky28YoRQXQjEFCwF5kxteSG0.mft (raw, json)
Hash identifier: dzn8mx2OgAOKEFEQR0WWEoS2G78001omTCKGHGF1urw=
Subject key identifier: 51:BA:A0:40:2C:E8:D1:26:CD:06:55:40:26:6B:19:B7:4C:43:5A:22
Authority key identifier: 7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D
Certificate issuer: /CN=7a0b64cb6f18a114174231050b0179931b5e486d
Certificate serial: 0195127E39CFDCA30F39627392EBEF55FBE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
Manifest number: 0164
Signing time: Mon 17 Feb 2025 06:00:16 +0000
Manifest this update: Mon 17 Feb 2025 06:00:16 +0000
Manifest next update: Tue 18 Feb 2025 06:00:16 +0000
Files and hashes: 1: cChdW9IKygfKR2rAFYsXhx5RqmU.roa (hash: TyxqseiqVgQ1lk5s+kcYQAHiXGFHWxgFXhhbbIVGfj4=)
2: egtky28YoRQXQjEFCwF5kxteSG0.crl (hash: JWNsUA47TC2EGk2i9n9B9XCzuId+NXZT6oOCZWKHfGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:7e:39:cf:dc:a3:0f:39:62:73:92:eb:ef:55:fb:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a0b64cb6f18a114174231050b0179931b5e486d
Validity
Not Before: Feb 17 06:00:16 2025 GMT
Not After : Feb 18 06:00:16 2025 GMT
Subject: CN=51baa0402ce8d126cd065540266b19b74c435a22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1f:fb:a0:c0:9e:38:6e:9e:f6:8a:fb:27:5a:
23:e4:ad:57:17:72:e5:2f:15:48:e5:f0:73:2b:ad:
5c:9b:90:dd:e5:ec:8c:39:ff:d4:de:05:b7:41:09:
dd:da:40:67:53:da:c5:de:04:18:7b:14:e6:8c:ca:
b3:fd:92:ce:b1:e5:28:61:a7:39:d9:9b:77:0a:84:
77:9b:66:0e:4e:f8:39:dd:20:d1:8d:d4:03:64:e8:
25:a3:e7:de:ab:ef:04:ba:e2:08:34:39:48:9d:e1:
a0:b6:02:15:d6:d7:10:c5:c3:f6:b9:4c:51:94:d6:
46:0c:47:6b:7c:10:9a:22:d0:95:09:71:87:71:3d:
8a:01:e0:b2:f3:b9:f9:cf:26:13:50:82:f5:a7:77:
e9:0f:dc:64:b0:61:91:82:f7:5e:d6:49:ca:e5:ff:
41:d9:cd:6f:5c:b3:a9:5a:55:87:0c:a5:03:c7:de:
4c:92:a2:64:f6:36:1a:c6:2b:ca:27:7f:c3:b8:25:
12:fc:e7:98:56:a7:46:63:42:fc:08:10:f3:0b:28:
9c:f4:c5:d3:40:17:be:a0:e2:3d:72:16:9b:aa:7e:
17:76:4f:42:01:55:8a:4a:f7:83:27:fa:ec:54:1e:
14:79:35:10:5e:5e:35:41:00:ac:a9:19:0b:59:3d:
9a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:BA:A0:40:2C:E8:D1:26:CD:06:55:40:26:6B:19:B7:4C:43:5A:22
X509v3 Authority Key Identifier:
keyid:7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:d5:ab:b6:19:30:c1:0c:15:65:7c:40:f1:8e:6d:59:4a:88:
8b:59:5a:81:a5:d8:bd:bf:79:d7:e2:40:f6:47:86:76:65:18:
f3:09:41:54:ce:7c:ce:bd:bd:2f:70:e3:1b:3a:0a:cf:41:f5:
e6:c9:ac:50:d6:6e:11:7f:ce:16:28:9a:b9:22:32:ae:ed:95:
2f:33:b2:21:39:40:d6:53:85:e6:96:90:c9:90:68:f3:a9:72:
19:1b:f1:76:6b:ef:b7:81:45:56:f4:8b:e3:01:30:2f:25:5f:
29:2a:e4:73:3c:98:25:06:47:30:a3:38:34:5e:0f:d0:10:6a:
2a:f3:d9:3d:33:c2:3c:ab:66:ef:e8:29:9e:87:aa:28:5d:96:
79:11:ba:66:08:fd:ad:d2:23:86:41:4f:20:9a:4d:e9:b5:f8:
28:03:c7:84:3f:e5:4c:55:61:1e:c8:a9:b4:8b:21:af:7c:d2:
16:e3:14:c7:23:eb:48:65:e4:aa:ba:03:72:ed:48:9f:ba:e1:
38:5e:86:44:29:9d:65:3a:92:90:35:7b:9c:7a:6a:02:c9:1d:
5b:6f:4b:a4:79:05:17:5b:41:e3:3f:d0:d0:fc:67:80:b1:c2:
4f:e3:4a:e6:a8:aa:25:04:9a:8a:25:01:d8:3a:fa:68:70:ed:
09:8d:15:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:26 2025 by rpki-client