Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
File: erqgtAKPBzwFZKZYtPuIhsvI0-s.mft (raw, json)
Hash identifier: gms2Up5Dsrf6RuYlQw0cm5dlmcW9bpRMUqb6irYY34o=
Subject key identifier: 13:CE:F7:A2:A8:00:0D:27:CE:75:39:99:3B:FA:B3:54:EE:41:1D:BE
Authority key identifier: 7A:BA:A0:B4:02:8F:07:3C:05:64:A6:58:B4:FB:88:86:CB:C8:D3:EB
Certificate issuer: /CN=7abaa0b4028f073c0564a658b4fb8886cbc8d3eb
Certificate serial: 0197D851689597F669483E3929A23B279012
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
Manifest number: 01A4
Signing time: Sat 05 Jul 2025 02:01:42 +0000
Manifest this update: Sat 05 Jul 2025 02:01:42 +0000
Manifest next update: Sun 06 Jul 2025 02:01:42 +0000
Files and hashes: 1: Du7k0B88jmKs_S-_OxfkmUBoQvk.roa (hash: 5Kd2ifwi5TK+F7WlkGpdmlpnXuH9BzmWZvxJszORzQQ=)
2: erqgtAKPBzwFZKZYtPuIhsvI0-s.crl (hash: fnkTpt/ZJumropdrqM0/vLZqc5J3S1dED+iDuTvDVEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Jul 2025 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d8:51:68:95:97:f6:69:48:3e:39:29:a2:3b:27:90:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7abaa0b4028f073c0564a658b4fb8886cbc8d3eb
Validity
Not Before: Jul 5 02:01:42 2025 GMT
Not After : Jul 6 02:01:42 2025 GMT
Subject: CN=13cef7a2a8000d27ce7539993bfab354ee411dbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:61:c4:99:a2:93:19:f9:18:89:ec:0c:4e:0a:
cf:f2:6d:07:54:0b:df:91:26:e3:a2:51:c7:4e:ac:
83:eb:42:b3:f2:0c:46:4b:1e:fc:7e:da:fa:0d:ba:
a1:4a:d5:0c:7c:ee:95:9a:21:ad:68:ea:9b:94:02:
46:ed:e2:a1:e6:af:31:29:34:82:fd:0f:df:59:50:
b1:10:c2:59:2b:43:41:8c:4a:48:84:68:11:01:05:
1f:14:0e:08:2f:fb:cd:b1:a6:9e:c0:cd:cb:cf:78:
51:7d:d6:40:1e:ae:7f:3f:30:a6:9d:3e:b6:6c:17:
e5:fd:66:af:e5:a9:ab:a2:aa:aa:93:4c:a3:4d:32:
26:a3:cc:9e:e7:50:58:6e:db:5b:73:fa:01:9c:33:
2a:35:44:99:bb:17:45:d9:b3:ed:19:5d:1f:b9:38:
69:29:48:a3:29:76:31:ae:d7:dd:f9:57:e9:7b:90:
b8:52:e2:e1:60:34:e2:8a:43:04:76:18:4c:16:f7:
eb:4e:42:7e:01:b5:d2:14:c8:7e:d6:91:31:d1:dd:
36:c9:19:e2:c8:7e:47:f2:d3:d3:42:b0:75:5a:8f:
44:3a:54:ae:60:d3:af:b0:48:a8:48:0b:15:e0:ee:
5f:ab:e2:b2:54:1c:58:3e:31:c4:73:03:25:e3:47:
01:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:CE:F7:A2:A8:00:0D:27:CE:75:39:99:3B:FA:B3:54:EE:41:1D:BE
X509v3 Authority Key Identifier:
keyid:7A:BA:A0:B4:02:8F:07:3C:05:64:A6:58:B4:FB:88:86:CB:C8:D3:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:ef:d8:49:ba:db:ff:0b:68:4e:19:24:97:96:9a:ab:ee:ea:
fa:fb:f1:cf:d5:43:04:ee:a8:58:9a:c6:aa:d9:74:be:34:51:
8f:f4:42:05:4a:df:97:1c:34:13:97:8b:fd:ed:8e:9e:eb:42:
15:a0:f2:00:60:8f:ed:d1:5f:01:22:fe:b4:ef:cc:0c:5c:ef:
bc:11:30:76:46:87:22:d6:f6:33:37:74:00:dc:0d:56:b6:f9:
d1:44:84:04:ff:8e:1b:e5:b4:ff:a8:c4:ea:7d:f3:6f:e5:07:
2d:fa:3c:69:26:cc:a5:84:f9:25:c4:a8:a2:a7:e6:e9:ad:a4:
50:92:70:fd:52:59:ba:13:06:62:aa:05:b1:10:1d:5e:4f:f6:
75:ca:bf:4c:23:c1:3c:43:bb:a0:db:51:1d:67:d9:03:d6:82:
2d:84:fc:9a:64:23:25:ba:cc:04:7b:3b:a8:5f:80:55:07:89:
17:d5:e0:b3:0f:0f:56:89:5e:ca:7c:6f:cd:d3:1e:39:e1:17:
d0:4f:7b:4c:fa:e7:59:39:59:0e:ab:46:7b:79:13:bd:5b:b7:
57:93:3d:df:1a:0f:d9:55:24:57:ca:08:59:2e:86:1f:81:54:
3b:9d:d6:41:ab:75:4c:5c:be:67:77:46:9a:1f:80:a3:6c:80:
11:2d:96:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 5 07:25:02 2025 by rpki-client