
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
File: evGnv3QoXbLoIJH79GOi7vbjpXg.mft (raw, json)
Hash identifier: IBeJR098cl5s/9EFqDo7kh5gVPejTal82CVSrq2YHVw=
Subject key identifier: 54:4F:C7:01:38:1F:9F:3B:27:9E:2B:E2:A2:C7:BC:CE:2F:3D:9A:01
Authority key identifier: 7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
Certificate issuer: /CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Certificate serial: 01975D9393120839DE18F1C04D9A38F635DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
Manifest number: 02C2
Signing time: Wed 11 Jun 2025 06:00:41 +0000
Manifest this update: Wed 11 Jun 2025 06:00:41 +0000
Manifest next update: Thu 12 Jun 2025 06:00:41 +0000
Files and hashes: 1: HeJAD4YHm_sJaYZYcU9XbBvO2ZQ.roa (hash: X87UHvfB+nlPvI0ZCTJdcn/R8oWH+T+ddbzxZs7Ye8A=)
2: evGnv3QoXbLoIJH79GOi7vbjpXg.crl (hash: 4b8F5qVlkIgAkT7YHrMcuu3rek/snbaMEQEVdc6Ajdw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 06:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5d:93:93:12:08:39:de:18:f1:c0:4d:9a:38:f6:35:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Validity
Not Before: Jun 11 06:00:41 2025 GMT
Not After : Jun 12 06:00:41 2025 GMT
Subject: CN=544fc701381f9f3b279e2be2a2c7bcce2f3d9a01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c4:16:c4:d4:3a:d5:a4:2c:c9:c0:7b:96:c4:
16:a2:df:4e:e0:d5:71:0f:0f:47:40:ed:02:8e:fe:
6c:37:4e:26:8a:92:85:f1:c8:df:32:14:61:54:34:
fe:82:4f:bc:1e:ff:53:e1:b4:96:09:d3:d8:df:34:
e8:c2:0e:bb:3e:09:77:37:d0:27:68:5f:a4:a9:f6:
44:90:bb:97:4e:ee:88:56:96:84:7f:96:22:7e:2a:
47:00:11:15:ba:e8:56:fc:e5:54:b2:0c:a9:68:24:
99:06:b1:74:a2:de:3e:c7:0d:da:98:be:ee:a2:02:
52:4b:0e:d3:21:ab:6a:13:9a:b2:1b:97:64:68:28:
18:c6:b1:5c:57:5b:27:b4:cb:7a:ac:c9:ed:b7:ec:
75:e8:51:07:cc:69:8f:e6:bd:6d:25:2e:d7:96:c6:
0e:e5:1c:aa:cb:db:cc:6e:57:21:b6:3c:8e:68:44:
28:ce:00:12:9c:c2:d5:a1:8b:23:8d:b1:ed:dd:04:
50:8e:df:86:75:db:6d:25:9b:40:5b:37:89:58:cb:
35:77:c1:47:ba:9b:2a:e3:1a:36:c8:3e:f7:68:6d:
64:f2:42:f7:4c:bc:28:10:2c:57:cd:c5:2c:cd:eb:
48:d9:56:e8:ef:d8:4a:ec:6c:fb:1e:61:ba:5b:b6:
3f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:4F:C7:01:38:1F:9F:3B:27:9E:2B:E2:A2:C7:BC:CE:2F:3D:9A:01
X509v3 Authority Key Identifier:
keyid:7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:7c:07:b7:7e:4d:12:bc:3e:2a:92:2e:a9:c0:71:37:77:ae:
25:2a:91:16:5b:5d:f5:00:59:3c:37:30:ac:d4:f0:54:b1:ee:
2e:b6:93:84:05:f8:27:da:2d:c8:d4:6c:dc:fb:5b:87:69:75:
48:c5:1d:eb:e6:03:03:77:24:a5:af:c4:7a:7e:3e:8d:04:0c:
f3:7a:b9:01:b2:aa:83:e8:cb:92:b5:96:2a:33:9b:29:8f:e5:
13:4f:70:93:3a:51:e2:ea:23:15:90:2f:ed:78:a8:a9:5d:5f:
68:b1:0d:aa:31:7f:8d:14:15:ea:50:0e:07:92:23:a6:25:5b:
ec:c2:f3:05:c2:96:a7:23:d1:4c:df:ac:5c:e8:7e:c4:fa:7f:
25:29:db:7e:0d:82:dd:21:67:5a:17:3f:f0:18:13:c3:a5:7c:
eb:d4:13:c6:f4:f9:50:f6:5a:52:2b:b5:26:ca:e1:09:9e:35:
b6:6f:84:0e:35:e1:f3:35:9b:71:8c:b3:25:70:ff:ac:11:61:
26:dc:ed:de:9d:cb:8d:30:e5:de:fd:16:b3:87:7f:8b:aa:3c:
66:01:e9:c5:ca:76:2a:d8:e8:10:03:a1:eb:ae:9e:e5:4c:58:
28:35:79:f7:67:ba:24:fd:72:52:5a:1e:42:78:35:fe:1e:48:
f9:0b:b1:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 11:09:13 2025 by rpki-client