Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
File: 1ehYR8xEuGECJwu9do5MPOuhyYg.mft (raw, json)
Hash identifier: WPyVD/Ofjdt2vhx30Q8TrWMRhAwxtTE+uXxtJGCTvbs=
Subject key identifier: 04:62:8B:A7:0F:DA:74:63:D7:4A:0B:2F:7A:F7:D8:D0:B4:F6:6A:F0
Authority key identifier: D5:E8:58:47:CC:44:B8:61:02:27:0B:BD:76:8E:4C:3C:EB:A1:C9:88
Certificate issuer: /CN=d5e85847cc44b86102270bbd768e4c3ceba1c988
Certificate serial: 01974E209B1C6F3BA881EB7F67E336E8482F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
Manifest number: 0410
Signing time: Sun 08 Jun 2025 06:00:49 +0000
Manifest this update: Sun 08 Jun 2025 06:00:49 +0000
Manifest next update: Mon 09 Jun 2025 06:00:49 +0000
Files and hashes: 1: 1ehYR8xEuGECJwu9do5MPOuhyYg.crl (hash: xnHld7oGkzAMh4vclD8j4suwzwHFFQegMH3maLsXnZo=)
2: HP2XU4ErP340JMFJBkwhXt7RSkM.roa (hash: jqU/k+IA4J2nUGc2ePon/4S6+Kq7gFeDjcwyWdzFAK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 06:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:20:9b:1c:6f:3b:a8:81:eb:7f:67:e3:36:e8:48:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5e85847cc44b86102270bbd768e4c3ceba1c988
Validity
Not Before: Jun 8 06:00:49 2025 GMT
Not After : Jun 9 06:00:49 2025 GMT
Subject: CN=04628ba70fda7463d74a0b2f7af7d8d0b4f66af0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:fc:74:a8:7d:85:7e:14:1e:0e:6c:06:4b:4f:
d6:e8:ac:05:e6:28:4a:12:22:7a:aa:7f:ef:02:8e:
b1:7b:16:c6:f9:d0:87:36:45:2c:34:86:4b:84:dc:
c6:74:4d:17:6b:5a:2c:5d:46:e3:04:3e:a0:68:3a:
a9:f0:29:39:61:58:09:35:95:83:28:fe:3c:c0:a6:
d8:83:8c:b6:db:50:6c:ca:7f:55:40:b6:11:ab:2f:
1f:37:74:6f:20:af:cf:33:90:68:0e:59:8e:c5:80:
e0:2b:a1:04:3e:36:08:53:cb:ed:2f:2e:08:b6:3a:
61:0f:f4:b9:e7:90:bd:1f:c4:32:62:b0:c9:e9:f6:
a3:5c:a7:93:d1:5e:5e:93:4d:08:81:d2:2e:8e:43:
84:f4:0e:70:b4:0b:ec:41:4b:14:9b:32:bb:ac:dd:
21:6a:dc:c8:6f:f5:2f:e4:7e:39:75:80:83:5f:02:
09:0f:ca:a9:c4:d5:11:e4:77:50:76:6a:f7:60:54:
6d:1d:5c:1c:06:d6:6a:22:55:dc:cc:34:4c:39:cb:
d1:99:bb:e7:7a:7b:d6:02:00:62:13:40:45:dc:8e:
fc:18:63:c5:85:76:d2:2d:ab:74:46:38:13:34:33:
16:fa:33:09:ab:d8:51:42:d3:d5:4e:33:77:53:3e:
0e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:62:8B:A7:0F:DA:74:63:D7:4A:0B:2F:7A:F7:D8:D0:B4:F6:6A:F0
X509v3 Authority Key Identifier:
keyid:D5:E8:58:47:CC:44:B8:61:02:27:0B:BD:76:8E:4C:3C:EB:A1:C9:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:b2:95:cb:63:80:ce:29:bd:10:80:90:94:ab:0d:72:97:9f:
17:66:e0:02:6a:0a:18:2c:cd:7d:41:3f:8b:35:14:17:b6:f3:
16:64:8f:a9:fb:53:17:64:20:a4:4a:e7:5b:1f:2c:aa:3f:c5:
cc:11:86:e5:d7:b6:2d:91:b3:15:9e:d6:5b:84:dd:29:64:ed:
ec:17:bc:54:7c:64:3e:3f:6f:79:87:ce:1a:c0:01:8a:ae:fe:
6c:4b:79:bf:e7:d0:15:c4:ba:94:96:67:3a:fd:07:92:52:cd:
ab:f7:01:f3:19:c2:f7:c1:fe:b5:de:f4:f1:3a:ae:54:27:1a:
c1:6f:d5:30:81:06:49:5d:34:3e:b3:26:9d:1c:83:2f:25:ac:
bf:d2:18:bd:fa:f4:7b:e6:84:14:d4:49:60:65:60:76:37:4a:
67:8b:bd:79:44:1c:5f:1a:73:d9:04:4a:05:3d:33:e9:8d:9f:
33:13:36:9d:00:a8:76:f2:e7:0f:3f:d1:1c:f5:d3:b4:aa:67:
15:e9:66:b1:70:dd:a6:f5:7b:e1:31:be:8c:12:3e:1a:29:16:
ad:f7:41:72:39:cf:d9:da:ae:db:e6:24:1a:d1:d6:ac:43:72:
78:6b:c9:ac:2f:1e:cc:15:75:2b:b9:0e:d1:e1:5b:b6:6b:d7:
a7:8b:bc:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 15:25:09 2025 by rpki-client