Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
File: ejhiE08UE2XviHkC5gV8KLKCnJ0.mft (raw, json)
Hash identifier: 2IytIi9GKKq08hyZ0TYnhkpdyN35ixQwEDec3LsbZvo=
Subject key identifier: 1D:23:FC:8F:57:FD:11:77:8E:19:23:FE:8E:05:E0:14:D2:F8:68:5D
Authority key identifier: 7A:38:62:13:4F:14:13:65:EF:88:79:02:E6:05:7C:28:B2:82:9C:9D
Certificate issuer: /CN=7a3862134f141365ef887902e6057c28b2829c9d
Certificate serial: 01963C53B44F06F121198726BB2CDD6CD979
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
Manifest number: 0BD2
Signing time: Wed 16 Apr 2025 02:00:40 +0000
Manifest this update: Wed 16 Apr 2025 02:00:40 +0000
Manifest next update: Thu 17 Apr 2025 02:00:40 +0000
Files and hashes: 1: DUeztC_9OSU5_baS7RpA8PIrChA.roa (hash: nC0NIfkO+km6NTJ5hH8jMs/CXJYU2lhmZlogyR2BxZI=)
2: ejhiE08UE2XviHkC5gV8KLKCnJ0.crl (hash: 1YBvQTkxd3Tcd4TgkwyVpbs/cqKfCqhjG/DypTl0Ltw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3c:53:b4:4f:06:f1:21:19:87:26:bb:2c:dd:6c:d9:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a3862134f141365ef887902e6057c28b2829c9d
Validity
Not Before: Apr 16 02:00:40 2025 GMT
Not After : Apr 17 02:00:40 2025 GMT
Subject: CN=1d23fc8f57fd11778e1923fe8e05e014d2f8685d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:76:42:4a:30:51:f2:23:a3:f3:df:68:a7:8f:
48:7a:93:72:68:e5:08:c6:d1:4b:44:7b:fa:c8:f1:
96:66:61:f2:7e:d7:6a:cc:98:ac:1b:74:46:60:4a:
78:18:aa:89:6e:9c:a3:bc:ca:86:f6:ad:98:28:30:
eb:9f:14:12:e4:13:bb:97:be:8e:52:2d:8c:7e:54:
79:0f:c9:02:2c:01:db:ac:fc:eb:61:38:2a:c0:f9:
f7:f3:bd:c1:6f:96:ba:b7:71:22:41:a6:54:a6:f9:
9a:6e:a5:2f:73:5d:58:61:61:ba:ae:6b:cf:b7:b3:
f7:84:35:fb:e5:5b:48:5e:70:fe:71:6b:8a:f8:f4:
fb:ce:9f:c8:d0:46:79:96:93:4b:de:17:c7:76:ca:
e7:2c:a6:97:5f:56:c6:8f:f0:c3:a0:46:52:85:ad:
a5:fc:69:0b:00:fc:09:95:d7:d0:23:de:54:70:0c:
0b:35:1e:0a:ad:4c:00:21:0d:a8:44:fb:28:99:5c:
51:30:c9:ad:f1:e3:76:a3:b3:38:88:63:af:c2:3f:
54:0c:95:9b:12:a7:09:43:92:e7:08:0c:98:44:d3:
0b:8a:c9:37:a6:a1:21:0b:67:2a:67:d2:75:3c:aa:
bc:df:e1:e6:cb:58:7c:db:b2:af:d1:0b:9b:3d:b5:
19:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:23:FC:8F:57:FD:11:77:8E:19:23:FE:8E:05:E0:14:D2:F8:68:5D
X509v3 Authority Key Identifier:
keyid:7A:38:62:13:4F:14:13:65:EF:88:79:02:E6:05:7C:28:B2:82:9C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:e6:86:7e:45:88:61:68:2d:35:6e:61:4f:95:d7:3d:02:5a:
66:8b:b0:6a:4f:ba:36:18:53:6b:88:75:ef:d1:b6:2c:f2:c0:
4c:d3:85:91:c8:fc:d8:fb:c8:eb:32:57:7b:ea:aa:81:da:5e:
6f:2e:e3:71:a3:b5:3f:f2:e0:8e:22:60:1c:e2:10:04:ed:b6:
78:e2:e8:ad:c7:f5:22:58:d4:a3:2b:ca:3e:f4:28:d1:07:e7:
cc:b6:eb:b5:f7:27:15:53:3f:d9:40:f8:40:74:ed:39:2d:60:
0f:b5:2a:b7:ca:76:e8:00:eb:e5:bb:79:bd:48:64:16:c8:2c:
59:f7:7c:2e:f3:ea:72:17:81:10:dc:71:c8:1e:b3:bd:38:7e:
38:81:f8:ea:c0:f6:2e:48:f9:ca:e6:68:a3:6b:6d:63:10:26:
05:25:97:ec:fa:4b:16:8d:ca:15:18:17:6e:a7:67:14:d5:9a:
b7:fe:8d:29:c2:ee:1a:73:3c:fb:22:72:e3:51:75:cb:e7:0c:
1a:89:47:15:a6:3a:e1:a9:67:58:b1:59:f0:02:9a:de:88:1a:
1e:84:04:21:77:99:39:41:63:b6:1f:05:53:3b:d3:b2:a3:b4:
d3:29:d6:d6:3a:77:80:94:15:9a:76:a7:d5:28:2e:d9:f8:2b:
73:71:2a:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 04:54:25 2025 by rpki-client