Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
File: erqgtAKPBzwFZKZYtPuIhsvI0-s.mft (raw, json)
Hash identifier: KyK+FnngoCdMO8SUtpeqXCQCN2OfBWAXaKTA50pL2VE=
Subject key identifier: 52:6A:80:E9:B2:60:F9:07:A0:4E:00:21:58:B0:C8:DE:26:57:A7:90
Authority key identifier: 7A:BA:A0:B4:02:8F:07:3C:05:64:A6:58:B4:FB:88:86:CB:C8:D3:EB
Certificate issuer: /CN=7abaa0b4028f073c0564a658b4fb8886cbc8d3eb
Certificate serial: 019659F02148188719FFACFE7A1F888D0D35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
Manifest number: DE
Signing time: Mon 21 Apr 2025 20:00:31 +0000
Manifest this update: Mon 21 Apr 2025 20:00:31 +0000
Manifest next update: Tue 22 Apr 2025 20:00:31 +0000
Files and hashes: 1: Du7k0B88jmKs_S-_OxfkmUBoQvk.roa (hash: 5Kd2ifwi5TK+F7WlkGpdmlpnXuH9BzmWZvxJszORzQQ=)
2: erqgtAKPBzwFZKZYtPuIhsvI0-s.crl (hash: gXbRoT4S+RCwsBB/dGlge4U/XQwzSI4+8XsTVjKB5Io=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:f0:21:48:18:87:19:ff:ac:fe:7a:1f:88:8d:0d:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7abaa0b4028f073c0564a658b4fb8886cbc8d3eb
Validity
Not Before: Apr 21 20:00:31 2025 GMT
Not After : Apr 22 20:00:31 2025 GMT
Subject: CN=526a80e9b260f907a04e002158b0c8de2657a790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:84:28:86:31:69:3b:20:c1:9f:55:df:84:96:
4a:b2:13:19:d0:9c:51:17:cd:5d:44:c2:a0:5f:95:
33:48:71:76:32:10:b9:33:f1:a3:d5:b8:b8:21:df:
68:69:5a:8a:26:15:22:05:85:29:4e:77:18:65:fb:
9b:35:2c:bd:ad:89:12:c5:93:d2:13:21:ab:96:19:
a3:91:4a:4e:93:5a:1e:ba:13:af:31:19:47:a6:33:
b0:c6:75:b8:b7:29:94:d9:a2:a4:32:b0:ca:11:5a:
ad:57:c2:cd:dc:26:bd:ae:0e:a8:2b:33:d2:53:5f:
0e:bd:3a:2e:d2:79:b8:cb:4b:14:8e:d3:f2:47:fb:
88:6c:8c:89:43:df:72:c8:f5:fd:01:d9:16:e5:e8:
5b:34:c9:61:5e:b1:73:1b:49:80:4a:d2:0d:23:12:
14:aa:ea:cb:2d:79:7d:f3:0a:d3:83:f7:c5:b5:c5:
c9:08:1d:6f:67:a3:e1:74:1e:f5:63:27:f0:21:f9:
04:cf:0b:3c:35:5b:44:65:2d:36:e7:b6:5a:34:0c:
3d:b8:dd:67:f2:e8:2b:2c:64:d4:f1:a7:ac:ad:52:
d2:b7:f3:d0:c0:35:bb:52:a5:01:8f:17:1a:71:15:
5a:6e:25:80:6e:9f:6d:9f:cb:0a:13:70:53:63:58:
71:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:6A:80:E9:B2:60:F9:07:A0:4E:00:21:58:B0:C8:DE:26:57:A7:90
X509v3 Authority Key Identifier:
keyid:7A:BA:A0:B4:02:8F:07:3C:05:64:A6:58:B4:FB:88:86:CB:C8:D3:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:6c:5b:cd:27:ff:35:0e:99:1e:eb:93:83:ad:4f:c4:7c:1e:
de:5a:92:bf:87:37:a7:92:5c:c0:c0:68:5a:d6:9a:03:d6:e5:
61:9e:c5:40:3e:11:71:41:2a:9d:8f:4c:55:fc:75:b5:5d:fc:
86:cd:af:93:8f:8a:47:91:48:97:ba:d0:15:8a:97:2b:7d:d3:
77:66:65:ed:70:1e:89:76:52:35:17:86:a8:25:8a:fa:79:cd:
0d:9d:01:a6:a0:84:e6:dd:c2:be:ba:cc:ad:04:5e:49:7d:aa:
61:b8:84:53:0f:12:2b:13:56:64:02:74:bc:98:d9:a1:50:fe:
a2:f3:a8:08:35:4a:6a:0f:8a:65:ae:e9:ed:12:09:03:21:73:
9f:f6:2f:0e:be:dd:61:0c:71:e2:b7:f0:8a:08:25:c8:fa:ab:
76:2d:73:d0:b4:9b:20:08:df:b9:4c:c9:bd:42:1b:53:2c:ba:
80:8b:ec:75:87:b3:07:7e:b1:4e:e0:53:49:e3:dd:11:86:9c:
0b:61:02:93:84:1d:65:cd:dc:7e:3a:58:67:fc:64:0c:30:91:
b0:dd:89:83:ba:fa:f4:51:50:1d:21:19:d5:8e:50:5e:f8:2b:
05:00:28:bb:54:43:34:19:12:08:f6:28:1b:60:ff:ce:ea:83:
99:cc:0b:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:17:00 2025 by rpki-client