Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
File: 1ehYR8xEuGECJwu9do5MPOuhyYg.mft (raw, json)
Hash identifier: yHITAkq2SYQnzuesX00peNYuhYLdHtnNe5brxkAh278=
Subject key identifier: 4B:C2:6A:1E:36:CA:6B:5C:45:FA:56:2B:72:20:73:0E:8C:B6:81:E1
Authority key identifier: D5:E8:58:47:CC:44:B8:61:02:27:0B:BD:76:8E:4C:3C:EB:A1:C9:88
Certificate issuer: /CN=d5e85847cc44b86102270bbd768e4c3ceba1c988
Certificate serial: 019653125560D3C00FD56B562D975CA966E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
Manifest number: 038E
Signing time: Sun 20 Apr 2025 12:00:32 +0000
Manifest this update: Sun 20 Apr 2025 12:00:32 +0000
Manifest next update: Mon 21 Apr 2025 12:00:32 +0000
Files and hashes: 1: 1ehYR8xEuGECJwu9do5MPOuhyYg.crl (hash: PAqp1zOAXtTYGtTXhm42vgxpKGb/J7APjP0KU+V0hV0=)
2: HP2XU4ErP340JMFJBkwhXt7RSkM.roa (hash: jqU/k+IA4J2nUGc2ePon/4S6+Kq7gFeDjcwyWdzFAK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:12:55:60:d3:c0:0f:d5:6b:56:2d:97:5c:a9:66:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5e85847cc44b86102270bbd768e4c3ceba1c988
Validity
Not Before: Apr 20 12:00:32 2025 GMT
Not After : Apr 21 12:00:32 2025 GMT
Subject: CN=4bc26a1e36ca6b5c45fa562b7220730e8cb681e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5c:c3:0d:3b:2a:78:49:ae:9b:70:e6:02:61:
d8:24:74:c1:f6:30:3a:01:f5:62:5b:9c:6a:ee:9e:
d0:ce:15:47:5d:fb:b1:39:dc:cd:34:08:10:f9:ab:
0d:80:b4:c7:f0:d8:92:3f:80:bf:d3:a6:c3:0a:ec:
08:c2:68:de:5d:6b:06:d2:0b:7c:7f:ae:64:eb:29:
e1:e9:02:06:1f:20:c4:37:29:72:c7:0a:34:71:cd:
e8:09:9c:f2:e6:45:e3:fd:6b:b7:e6:09:07:0d:46:
87:7d:d5:8a:90:29:10:a9:4c:d1:ba:77:ca:cf:9b:
ce:ea:90:c8:16:b6:63:ee:48:eb:5b:e1:46:54:54:
33:eb:3b:aa:23:ce:0e:89:19:28:ef:dc:b0:fe:45:
82:0f:ad:65:66:f2:87:4f:65:47:42:3c:5d:88:6e:
30:ae:99:3c:b8:ec:1e:5e:ea:36:3c:6c:da:5c:b2:
ab:5e:fa:c0:a3:6d:55:63:f8:b6:01:8e:31:de:31:
a6:d8:04:6f:1f:ab:9e:00:7a:7b:de:16:3b:eb:69:
04:83:da:09:eb:4c:37:24:08:23:9f:ca:ad:b2:22:
5d:26:e9:52:54:07:86:86:a3:c5:9c:62:d6:4b:eb:
93:3d:5d:5d:6f:b0:6c:db:6d:65:b6:38:e7:8e:47:
4d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:C2:6A:1E:36:CA:6B:5C:45:FA:56:2B:72:20:73:0E:8C:B6:81:E1
X509v3 Authority Key Identifier:
keyid:D5:E8:58:47:CC:44:B8:61:02:27:0B:BD:76:8E:4C:3C:EB:A1:C9:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:89:a5:c7:19:46:bb:15:a0:57:7e:b1:93:95:19:87:e8:09:
b8:03:1f:e9:e0:7b:a3:04:26:8f:27:04:f9:c4:41:63:ea:46:
93:7c:f6:c1:42:8e:95:aa:83:56:6b:1e:4e:c2:61:f7:4a:33:
bf:43:02:ee:78:76:cd:12:fe:04:05:78:61:f3:1f:7c:b7:48:
0b:41:15:bc:34:24:3d:14:b5:8f:c3:b3:33:08:1e:f4:27:22:
fa:56:9a:2b:ab:84:38:fe:23:ed:7d:73:0a:c4:e0:87:92:1a:
f8:94:46:cb:0b:90:5c:8e:39:7a:91:19:1d:42:a1:25:37:32:
75:2e:12:76:5a:6a:73:a2:98:6d:11:30:7f:19:7f:e2:aa:14:
44:6c:4d:fe:a6:5a:45:f4:bc:55:3b:1a:82:02:89:8c:9c:39:
4e:a1:9a:3d:a0:c5:2b:0c:70:67:40:13:00:ee:78:92:4f:70:
3f:98:7b:96:6d:62:f0:52:91:c7:77:a0:88:1c:f1:64:e0:ed:
f3:2a:7c:99:76:1c:96:99:db:3c:1a:58:79:0a:29:3d:2c:68:
1b:56:9b:61:b5:de:70:d5:66:18:10:cc:78:b5:ff:66:f9:cc:
8c:28:9c:0a:cd:f8:9c:12:03:d7:92:4e:5a:1c:4f:2c:b8:cc:
88:a2:1a:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 15:26:02 2025 by rpki-client