Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.mft
File: ePDYlQwP20Hf1XxZSCglIGEcFsM.mft (raw, json)
Hash identifier: ixXB3CnZ4VOJEwqXPTCdiYcSNkP2VF1NjgAEtGvLSts=
Subject key identifier: 86:7E:C6:00:AD:A8:14:5E:0A:FC:DC:ED:81:55:FA:6A:AF:0B:3A:83
Authority key identifier: 78:F0:D8:95:0C:0F:DB:41:DF:D5:7C:59:48:28:25:20:61:1C:16:C3
Certificate issuer: /CN=78f0d8950c0fdb41dfd57c5948282520611c16c3
Certificate serial: 019511A2F14E9ED0D67A2090544063FFEE2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePDYlQwP20Hf1XxZSCglIGEcFsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.mft
Manifest number: 0266
Signing time: Mon 17 Feb 2025 02:00:46 +0000
Manifest this update: Mon 17 Feb 2025 02:00:46 +0000
Manifest next update: Tue 18 Feb 2025 02:00:46 +0000
Files and hashes: 1: ePDYlQwP20Hf1XxZSCglIGEcFsM.crl (hash: gs+3t4HbP26b+LwDtgDZw6mV9fvD/FU2cFDjbnupsxY=)
2: uI19goGgOdv56r27gyNLoOu7fK8.roa (hash: aRMcCZp6MU/f16sSAZBSSpBFMChXSvZTJUWHCtQ3+qI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePDYlQwP20Hf1XxZSCglIGEcFsM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:f1:4e:9e:d0:d6:7a:20:90:54:40:63:ff:ee:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f0d8950c0fdb41dfd57c5948282520611c16c3
Validity
Not Before: Feb 17 02:00:46 2025 GMT
Not After : Feb 18 02:00:46 2025 GMT
Subject: CN=867ec600ada8145e0afcdced8155fa6aaf0b3a83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:77:4d:96:d8:b2:c7:7c:3f:5d:93:74:1d:a0:
0c:67:b3:f9:e2:6c:12:99:f5:98:d7:62:e1:73:66:
78:1d:ea:14:60:77:fb:48:f9:15:14:9f:ca:36:20:
f7:4b:a0:d1:04:d7:a6:5e:52:d3:71:81:0f:37:e6:
fb:35:aa:c7:1f:eb:ce:39:2f:1c:12:86:ce:04:2b:
67:37:92:41:cd:55:d7:39:d9:d0:da:4b:59:cd:37:
b3:ab:76:59:e4:c0:c9:4d:ff:04:bc:be:26:00:5d:
8d:7a:91:e7:39:d6:da:c4:48:52:a0:ab:b1:35:2e:
c9:96:20:4f:aa:5d:20:ec:52:a4:1f:6d:95:03:49:
d4:6e:7d:a9:45:3f:f9:19:dd:24:c0:b2:b4:99:1e:
a8:83:4b:12:a8:0d:42:1b:cf:63:d3:4a:9c:98:5a:
df:12:00:9b:b6:bb:b1:51:87:39:da:eb:ca:79:00:
9e:97:97:13:d3:d8:4d:fd:8e:7d:e7:49:15:15:c8:
c1:be:6e:10:af:fd:25:ab:0b:11:e2:80:92:dc:37:
e9:cf:69:a1:b6:35:7c:b4:98:6b:3a:62:bb:0c:89:
d5:d6:6a:dd:74:18:fd:cf:7d:09:e3:82:75:fd:be:
23:76:39:fa:6c:5c:9d:13:d8:08:85:cb:db:f4:5e:
50:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:7E:C6:00:AD:A8:14:5E:0A:FC:DC:ED:81:55:FA:6A:AF:0B:3A:83
X509v3 Authority Key Identifier:
keyid:78:F0:D8:95:0C:0F:DB:41:DF:D5:7C:59:48:28:25:20:61:1C:16:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePDYlQwP20Hf1XxZSCglIGEcFsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:02:8a:6b:ce:01:5e:e4:14:b0:5d:69:87:3c:93:93:a8:61:
8e:e2:a6:5d:c9:2e:12:7a:3d:e6:5f:ad:16:27:c2:e7:86:79:
b4:34:4e:e7:61:54:6f:cf:25:7c:16:a9:32:8d:f3:e6:e2:7e:
4c:d6:ed:c0:f4:e2:ca:17:e7:52:79:4e:5a:9c:04:4a:d1:43:
a5:25:de:d8:1c:29:70:08:42:d0:f4:c2:49:ff:2b:fc:28:53:
b2:8e:82:0c:31:ab:2c:21:8e:96:e2:0a:c0:65:08:28:2a:4d:
bb:6a:6b:c7:d7:84:e0:33:0b:0f:5e:61:f4:6d:23:56:52:d4:
51:e2:a3:e7:25:5b:8a:c4:87:64:15:02:28:e9:46:25:4a:7b:
91:fe:72:77:ee:4a:e2:c9:67:1f:c5:8e:ee:cc:44:ba:76:e8:
36:dc:e4:5e:44:25:ce:6b:17:44:9e:a6:68:63:70:ed:75:c0:
3d:f9:06:ee:44:0e:2e:39:27:b2:aa:e3:09:c5:22:69:06:5c:
87:39:46:fc:00:b9:39:bc:80:d3:9c:1f:98:2a:d9:4b:16:7c:
06:97:9a:36:47:97:91:b9:7f:92:ff:6f:d1:a4:42:09:ae:cf:
b5:73:71:5c:b6:7a:3a:3c:35:c9:d0:fe:1e:f5:27:68:7e:88:
ab:cf:68:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURovFOntDWeiCQVEBj/+4rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4ZjBkODk1MGMwZmRiNDFkZmQ1N2M1OTQ4MjgyNTIwNjEx
YzE2YzMwHhcNMjUwMjE3MDIwMDQ2WhcNMjUwMjE4MDIwMDQ2WjAzMTEwLwYDVQQD
Eyg4NjdlYzYwMGFkYTgxNDVlMGFmY2RjZWQ4MTU1ZmE2YWFmMGIzYTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA43dNltiyx3w/XZN0HaAMZ7P54mwS
mfWY12Lhc2Z4HeoUYHf7SPkVFJ/KNiD3S6DRBNemXlLTcYEPN+b7NarHH+vOOS8c
EobOBCtnN5JBzVXXOdnQ2ktZzTezq3ZZ5MDJTf8EvL4mAF2NepHnOdbaxEhSoKux
NS7JliBPql0g7FKkH22VA0nUbn2pRT/5Gd0kwLK0mR6og0sSqA1CG89j00qcmFrf
EgCbtruxUYc52uvKeQCel5cT09hN/Y5950kVFcjBvm4Qr/0lqwsR4oCS3Dfpz2mh
tjV8tJhrOmK7DInV1mrddBj9z30J44J1/b4jdjn6bFydE9gIhcvb9F5QMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIZ+xgCtqBReCvzc7YFV+mqvCzqDMB8GA1UdIwQY
MBaAFHjw2JUMD9tB39V8WUgoJSBhHBbDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZVBEWWxRd1AyMEhmMVh4WlNDZ2xJR0VjRnNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9hMjY3ZjAtOWVmYi00NGFmLWEwNmEt
NjFkZGJmMWMzNDliLzEvZVBEWWxRd1AyMEhmMVh4WlNDZ2xJR0VjRnNNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My9hMjY3ZjAtOWVmYi00NGFmLWEwNmEtNjFkZGJmMWMzNDli
LzEvZVBEWWxRd1AyMEhmMVh4WlNDZ2xJR0VjRnNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjgKKa84B
XuQUsF1phzyTk6hhjuKmXckuEno95l+tFifC54Z5tDRO52FUb88lfBapMo3z5uJ+
TNbtwPTiyhfnUnlOWpwEStFDpSXe2BwpcAhC0PTCSf8r/ChTso6CDDGrLCGOluIK
wGUIKCpNu2prx9eE4DMLD15h9G0jVlLUUeKj5yVbisSHZBUCKOlGJUp7kf5yd+5K
4slnH8WO7sxEunboNtzkXkQlzmsXRJ6maGNw7XXAPfkG7kQOLjknsqrjCcUiaQZc
hzlG/AC5ObyA05wfmCrZSxZ8BpeaNkeXkbl/kv9v0aRCCa7PtXNxXLZ6Ojw1ydD+
HvUnaH6Iq89oew==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:28 2025 by rpki-client