Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
File: EghcVAwRT8iVegJQu0n0hLdDV7k.mft (raw, json)
Hash identifier: 6Ltz9PB/qL3PAn0HCOchtseLZMZhvwkvueFtaGx4Z0w=
Subject key identifier: 3B:A4:4A:98:D7:0A:C5:21:E3:8F:31:67:72:FA:6C:38:87:07:BD:47
Authority key identifier: 12:08:5C:54:0C:11:4F:C8:95:7A:02:50:BB:49:F4:84:B7:43:57:B9
Certificate issuer: /CN=12085c540c114fc8957a0250bb49f484b74357b9
Certificate serial: 01974E20C33B97166C9CB81FBE91351838D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
Manifest number: 0707
Signing time: Sun 08 Jun 2025 06:00:59 +0000
Manifest this update: Sun 08 Jun 2025 06:00:59 +0000
Manifest next update: Mon 09 Jun 2025 06:00:59 +0000
Files and hashes: 1: EghcVAwRT8iVegJQu0n0hLdDV7k.crl (hash: 9R4qECkj16WQmgdqNE9kldaDFU9+MfRMNo6uwjUgK0Q=)
2: s4gZLWdCbjdScQy92lhU1qj4INY.roa (hash: xkF7VCE+qi9EQz5A3LDxMLzmcYX7S6EBBQO/VGtQ7OQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:20:c3:3b:97:16:6c:9c:b8:1f:be:91:35:18:38:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12085c540c114fc8957a0250bb49f484b74357b9
Validity
Not Before: Jun 8 06:00:59 2025 GMT
Not After : Jun 9 06:00:59 2025 GMT
Subject: CN=3ba44a98d70ac521e38f316772fa6c388707bd47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7a:3b:78:b7:04:7b:52:da:17:47:fa:d9:6d:
bb:b9:74:76:48:f8:56:b7:e1:19:78:b4:2c:61:f1:
aa:0a:51:d4:dc:c8:18:7e:1a:81:df:00:ba:15:79:
95:ce:f4:bd:bf:2c:21:6e:a1:83:ee:85:19:36:d5:
0f:da:3e:a6:c0:24:d6:3a:42:4c:da:14:b8:90:f0:
74:8f:51:c1:1d:f9:e8:21:6b:4f:32:ac:cb:86:ea:
b2:c5:3c:6b:fe:ba:18:1a:e0:c2:e2:2f:18:cc:3b:
70:db:20:aa:e6:b5:dc:a8:ee:eb:1d:d4:0c:b0:ae:
bc:14:6b:cd:79:f2:fb:94:cf:fa:d0:08:c7:15:13:
e8:ab:f6:fd:2e:05:4f:dd:0c:db:e9:c6:35:4a:c1:
5d:95:db:45:5d:11:05:1e:1f:e0:bb:26:1f:0d:a7:
56:49:0b:18:8c:bf:b1:a2:62:0d:87:f6:93:12:26:
02:33:2c:eb:21:e0:44:50:92:9f:dd:99:f1:89:19:
71:e6:b2:bd:8b:59:56:7b:19:b9:34:3b:d4:dd:93:
4c:dd:b6:c2:e2:3c:e4:9b:2c:89:13:a4:d3:01:38:
f4:ad:ca:f3:64:70:30:31:c5:27:c1:a8:3b:c4:e9:
a9:d6:49:e2:79:17:f9:be:83:f5:b6:4d:f7:cb:ee:
2e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:A4:4A:98:D7:0A:C5:21:E3:8F:31:67:72:FA:6C:38:87:07:BD:47
X509v3 Authority Key Identifier:
keyid:12:08:5C:54:0C:11:4F:C8:95:7A:02:50:BB:49:F4:84:B7:43:57:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:9e:2d:4a:3e:cd:34:2d:89:a9:33:e1:d0:0a:6e:4b:c4:f0:
b5:37:3d:41:8a:e3:cf:74:5a:f6:a7:08:6c:d5:9f:a1:b8:09:
4e:6c:14:8a:13:2a:80:08:dc:cc:05:47:26:f2:86:11:f4:ae:
b3:c0:39:01:69:9c:4b:87:46:e6:71:f2:57:4f:8e:0b:74:49:
b6:e1:6c:52:aa:52:59:5f:38:84:cb:c6:74:83:0a:90:58:0d:
46:0f:18:e6:e4:be:13:c4:ed:0f:32:ed:84:4f:65:37:6d:ba:
0d:e2:e4:c6:a9:10:f8:0f:0c:72:f2:9c:56:6b:6d:5e:23:88:
6b:b6:91:45:b9:f9:5e:6a:47:9e:91:c7:82:5c:8c:ff:fc:f5:
e8:5e:ef:73:52:17:46:ca:ec:b5:b7:af:3a:3b:34:bc:13:83:
00:ba:2a:22:f8:53:f0:d7:1e:97:34:d9:e3:d3:28:8e:5c:31:
62:25:b5:d1:87:07:9e:ed:db:be:a8:73:d0:d6:07:3f:46:db:
f7:1e:dd:f8:57:68:eb:b3:76:49:8a:9a:59:d7:f0:10:a5:16:
be:cd:82:93:8f:16:df:83:02:a9:40:e0:80:45:6b:e4:93:2c:
89:5f:3e:78:3e:10:ff:e7:19:f6:e2:80:1e:a1:00:f3:67:47:
91:2b:03:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 09:55:55 2025 by rpki-client