Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
File: EghcVAwRT8iVegJQu0n0hLdDV7k.mft (raw, json)
Hash identifier: vK5eYUS/3LV11GsLT9PueD9gArNy+eZ8MCChKwk/0R4=
Subject key identifier: B4:B4:92:A1:DF:10:24:2F:01:09:82:21:1B:1F:62:CA:44:5A:06:F2
Authority key identifier: 12:08:5C:54:0C:11:4F:C8:95:7A:02:50:BB:49:F4:84:B7:43:57:B9
Certificate issuer: /CN=12085c540c114fc8957a0250bb49f484b74357b9
Certificate serial: 0196531234011938D3776310DF7FA721312D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
Manifest number: 0685
Signing time: Sun 20 Apr 2025 12:00:23 +0000
Manifest this update: Sun 20 Apr 2025 12:00:23 +0000
Manifest next update: Mon 21 Apr 2025 12:00:23 +0000
Files and hashes: 1: EghcVAwRT8iVegJQu0n0hLdDV7k.crl (hash: cqkbf6wwufbuE4hkxFH7VLzU/k1VKXVXXpkzfiikT7U=)
2: s4gZLWdCbjdScQy92lhU1qj4INY.roa (hash: xkF7VCE+qi9EQz5A3LDxMLzmcYX7S6EBBQO/VGtQ7OQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 12:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:12:34:01:19:38:d3:77:63:10:df:7f:a7:21:31:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12085c540c114fc8957a0250bb49f484b74357b9
Validity
Not Before: Apr 20 12:00:23 2025 GMT
Not After : Apr 21 12:00:23 2025 GMT
Subject: CN=b4b492a1df10242f010982211b1f62ca445a06f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c5:cc:0b:94:28:42:ea:61:4c:33:24:32:00:
d7:fa:e5:88:61:e6:61:50:fd:a3:89:fa:e5:03:ec:
62:bd:9f:5d:bf:e2:b0:b0:70:3e:d6:f6:9d:69:55:
91:98:1d:95:b3:b8:74:1e:58:4a:46:31:67:9a:dd:
2d:0e:d2:12:d1:c1:2d:5a:d4:56:4f:d4:15:7a:61:
5c:81:33:0f:a5:b1:c4:3f:13:5d:3d:4e:25:af:5f:
79:d9:38:2a:b1:d7:1b:97:db:09:e8:81:85:39:9c:
d8:66:fc:f0:f2:86:1d:6b:72:aa:77:3f:d3:72:99:
c4:3a:87:40:e6:f6:5c:2c:e7:06:d4:2f:f5:87:93:
e8:5c:bb:22:fa:89:b5:1d:f1:ac:5c:a6:6a:2d:26:
be:10:6f:1c:42:87:06:6d:c6:27:4b:c6:d6:e3:ac:
70:ab:6e:2c:50:ea:04:14:5d:7f:bf:c9:60:8b:51:
83:e5:58:5d:22:92:d4:76:68:2b:82:38:60:1c:4a:
78:81:b9:06:a3:23:49:5d:d3:f5:dc:ea:97:7a:f2:
76:dd:8e:c7:8d:b7:4b:af:8d:e8:c6:9b:1c:2e:65:
8c:ce:1e:3f:6a:a0:2c:b4:a9:d0:e3:0d:e5:89:32:
e0:10:cd:f8:49:91:a3:5d:08:2c:cc:87:29:2b:ac:
e8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:B4:92:A1:DF:10:24:2F:01:09:82:21:1B:1F:62:CA:44:5A:06:F2
X509v3 Authority Key Identifier:
keyid:12:08:5C:54:0C:11:4F:C8:95:7A:02:50:BB:49:F4:84:B7:43:57:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:0d:e5:d1:e9:90:2b:5a:23:aa:f6:a8:5a:16:68:37:a7:2e:
5c:9c:57:b2:e0:e3:d6:20:b4:f6:44:a9:49:b1:f0:ed:44:ee:
c1:1d:46:48:e5:87:ed:48:5a:d2:dd:e3:a0:84:02:67:46:b4:
1f:11:de:80:01:17:21:e9:4b:a0:54:d0:bc:f5:f7:44:90:e1:
08:bd:91:14:73:b9:9e:f0:b4:8a:a4:c2:cf:fa:98:50:22:74:
c7:d3:bf:0e:4e:b0:10:51:20:e5:fd:5d:2a:c0:39:d0:36:44:
f5:d9:f0:56:f1:2a:84:37:61:a9:dc:72:73:83:db:0e:01:4a:
77:af:2b:72:c1:a1:0a:04:6f:0f:f7:36:cf:50:7a:f2:cc:bf:
7e:84:2b:7a:70:06:0b:9a:c7:e0:98:fa:05:ea:9c:09:60:29:
42:85:b7:4e:e7:5e:54:b9:73:9a:74:50:a6:89:dd:74:de:d7:
14:be:e1:f2:38:a6:9b:45:93:13:55:69:a3:0d:9e:a6:10:a0:
8c:8e:89:e0:22:a2:e1:03:62:28:df:f2:81:72:6c:40:a8:94:
98:1a:aa:cb:8f:2f:15:d6:98:88:cf:5c:65:3a:46:b1:4a:54:
2b:e3:fa:3a:f9:14:b1:40:75:6f:b1:3b:a7:60:d4:d7:f5:d5:
9a:0c:34:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 19:18:43 2025 by rpki-client