Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
File: ePKehzghWcpegTh9fud-US-tFjY.mft (raw, json)
Hash identifier: /HUNFP1NoaWAF4ppkHUFB90IshFkIS+gFDC/hCH6LHk=
Subject key identifier: B2:CB:24:74:C3:D8:E6:5D:56:AA:1F:BB:A3:3A:59:FA:44:35:03:41
Authority key identifier: 78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
Certificate issuer: /CN=78f29e87382159ca5e81387d7ee77e512fad1636
Certificate serial: 019748FA69E7941CB87B75A65B5798F3F901
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
Manifest number: 05CE
Signing time: Sat 07 Jun 2025 06:00:59 +0000
Manifest this update: Sat 07 Jun 2025 06:00:59 +0000
Manifest next update: Sun 08 Jun 2025 06:00:59 +0000
Files and hashes: 1: ePKehzghWcpegTh9fud-US-tFjY.crl (hash: +gSCRY3e9roorZ1WTHhY0wmeLomrRboVSYEcETAvEd4=)
2: kHqDfv1PMJuMKRJJw_rnInJCqGA.roa (hash: ifzsU0ZI6Yo4/FNYRrTFh+wSVN18GVZcQoTagVp377Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:69:e7:94:1c:b8:7b:75:a6:5b:57:98:f3:f9:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f29e87382159ca5e81387d7ee77e512fad1636
Validity
Not Before: Jun 7 06:00:59 2025 GMT
Not After : Jun 8 06:00:59 2025 GMT
Subject: CN=b2cb2474c3d8e65d56aa1fbba33a59fa44350341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b1:4d:92:ae:4b:ca:e7:9b:2c:86:8f:e4:d7:
96:7b:91:1d:7f:c1:d0:c8:1c:c4:75:bb:07:bb:d3:
85:f2:88:9d:30:12:1c:ee:84:34:50:c5:c2:e7:8e:
87:69:6d:36:f2:fb:53:6e:37:3b:8d:4e:15:0e:f6:
9c:98:8c:39:ab:09:88:5c:88:9c:ea:02:6e:d0:6b:
81:f1:70:4f:33:35:db:0e:23:6a:7f:a2:2a:49:9b:
81:2f:e4:c9:f9:94:fc:19:6d:5c:17:17:c6:e0:39:
a5:6c:b1:f7:b7:6d:7e:7e:7b:02:36:d6:aa:ac:66:
c9:a2:8a:da:f4:23:ce:9b:fb:17:47:91:ab:af:f2:
d0:77:ac:dc:b0:ef:26:a1:0d:f9:af:ef:88:6c:ea:
86:be:7a:a3:76:39:a6:00:30:19:1a:75:8c:8e:e5:
ef:61:f9:0a:05:11:89:b8:25:62:de:7a:2d:32:cc:
45:94:ca:42:09:de:4a:b6:f7:ca:0b:9d:4b:68:6c:
1b:cb:42:d9:f4:1b:2e:c2:eb:68:51:6a:af:95:73:
35:86:d6:ce:df:8f:a7:98:97:c0:5b:73:13:ff:6b:
08:d7:f8:bc:08:04:6d:70:d0:06:85:00:90:32:23:
43:d2:46:a1:f8:32:e3:a5:0e:42:36:de:0c:f2:87:
5c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:CB:24:74:C3:D8:E6:5D:56:AA:1F:BB:A3:3A:59:FA:44:35:03:41
X509v3 Authority Key Identifier:
keyid:78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:86:65:b3:ec:f2:d9:34:14:52:f7:43:69:bb:4c:6b:85:63:
03:ff:4e:35:58:a1:b1:de:95:ce:8e:3f:98:fe:de:23:ac:67:
df:e6:03:df:47:b2:13:84:d6:37:48:1f:15:2a:d4:f3:6d:01:
29:ad:1e:db:a7:a0:2f:3f:a7:f7:a8:16:28:e3:4f:c2:5b:97:
54:66:76:ba:a5:a9:c5:fd:f0:89:fd:04:f4:83:bf:a6:7a:31:
cb:b0:5f:b7:e9:78:c6:e7:ec:df:66:80:45:4c:c7:81:32:99:
68:f9:7b:b5:2b:10:57:bc:ac:6c:c1:2b:c3:b0:6f:dc:2e:25:
32:94:1f:ee:30:1d:b9:09:22:89:07:ea:e2:52:04:70:f9:e6:
7a:6e:82:ca:23:08:65:e3:39:19:9f:03:58:6e:eb:a3:21:88:
14:10:59:d3:7d:2a:aa:4a:ee:7b:ba:c0:44:75:a0:c4:16:57:
c3:c6:28:f9:c4:cb:d2:cc:f5:3b:74:e6:8a:68:3f:85:06:24:
03:8d:86:07:22:e4:4c:30:61:d8:ab:d5:26:50:ee:95:4e:dd:
bc:e0:d6:35:98:ce:a0:47:6b:45:c9:c4:73:01:8c:be:81:46:
08:b6:d5:68:b3:bf:15:82:95:c6:3b:40:f4:1f:04:d3:1a:42:
46:8a:54:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:57:32 2025 by rpki-client