Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
File: evGnv3QoXbLoIJH79GOi7vbjpXg.mft (raw, json)
Hash identifier: EWyn1ki59/FraS+CiBj0CJHzw4Xd1/+SO+cSWzf1CYk=
Subject key identifier: 39:DE:03:F5:DD:6A:8D:3F:05:5B:C9:41:7D:CE:0C:56:56:F8:7F:16
Authority key identifier: 7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
Certificate issuer: /CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Certificate serial: 019757C86DF1C7A7D57BE10F547B457F7E06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
Manifest number: 02BF
Signing time: Tue 10 Jun 2025 03:00:42 +0000
Manifest this update: Tue 10 Jun 2025 03:00:42 +0000
Manifest next update: Wed 11 Jun 2025 03:00:42 +0000
Files and hashes: 1: HeJAD4YHm_sJaYZYcU9XbBvO2ZQ.roa (hash: X87UHvfB+nlPvI0ZCTJdcn/R8oWH+T+ddbzxZs7Ye8A=)
2: evGnv3QoXbLoIJH79GOi7vbjpXg.crl (hash: M0/CQYzpFjifNCECfyt7mn6cxg3t/uaI1AsiFD/6/nE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:57:c8:6d:f1:c7:a7:d5:7b:e1:0f:54:7b:45:7f:7e:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Validity
Not Before: Jun 10 03:00:42 2025 GMT
Not After : Jun 11 03:00:42 2025 GMT
Subject: CN=39de03f5dd6a8d3f055bc9417dce0c5656f87f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:86:d0:2b:7b:a9:93:f7:c9:73:75:34:61:f2:
49:0c:5d:11:21:86:08:ca:1e:f6:f4:80:43:95:6d:
f8:cf:87:9e:c2:17:84:c9:84:d6:f1:7f:2b:71:0c:
f0:02:b1:84:e6:09:7d:3f:e2:38:28:7b:cd:cd:65:
b9:56:e0:0e:50:3b:e2:d0:98:97:96:74:74:3b:06:
d6:13:74:78:6d:a0:ae:05:4e:e8:60:3f:64:15:85:
69:8f:00:57:d0:d5:b1:03:4f:ff:81:ca:fc:dc:00:
34:82:30:72:17:c3:91:03:64:ef:be:8b:1b:8c:88:
40:e5:54:92:de:1d:a5:bd:b8:d0:30:56:fe:46:18:
e7:a1:09:ea:01:24:67:44:be:07:d3:91:4b:cc:3e:
91:33:35:f7:46:2c:ac:78:3c:bf:20:ea:81:4b:44:
40:25:55:12:1a:11:c6:e7:04:6b:30:be:7b:d2:d2:
f8:97:9b:d1:93:ec:60:53:4c:88:41:b0:56:84:8d:
1e:af:b6:d4:d6:5a:7f:31:60:38:ac:4a:51:5b:82:
a7:74:e2:95:5f:54:0b:7e:92:ba:12:16:f1:46:ee:
4a:4a:8a:a3:7e:23:f7:fb:35:c4:f5:55:f9:0b:e6:
f0:50:ff:98:b1:22:de:0a:5f:ae:18:88:6f:5b:e7:
fe:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:DE:03:F5:DD:6A:8D:3F:05:5B:C9:41:7D:CE:0C:56:56:F8:7F:16
X509v3 Authority Key Identifier:
keyid:7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:8b:54:59:91:43:b0:fc:2f:40:b9:03:b9:a1:f9:b2:95:52:
3e:f7:d9:d6:81:8b:bf:6a:b4:af:3d:2c:79:8d:56:21:ff:82:
80:8d:b5:5a:3b:59:15:6d:d6:10:49:51:2d:25:24:23:88:c8:
9f:7b:10:91:75:84:0e:43:5e:e4:d3:d6:19:55:1f:5f:54:5e:
fd:a6:82:3c:80:8c:9d:ab:fe:51:8c:d4:09:05:47:7d:ce:92:
7a:ec:13:1a:0f:49:76:b9:4b:3e:f1:dd:80:f8:3a:57:96:93:
b0:e9:74:6b:02:ab:81:54:a3:11:f3:5c:7c:e2:39:e4:73:ea:
a1:17:17:6e:0d:91:93:df:64:e2:db:4d:e3:00:ce:c8:97:b8:
c2:6c:46:4b:be:73:ca:44:ee:ca:03:99:34:84:f5:8c:c8:88:
26:77:1f:c3:ae:d3:59:16:da:45:c5:78:dd:29:92:4a:e6:a9:
54:de:2f:f9:f6:74:19:72:12:a8:f5:75:27:67:03:5d:06:61:
95:e1:b8:12:2b:ce:6b:21:44:13:39:42:81:c2:81:46:9f:2f:
0a:5d:37:81:14:75:10:7e:51:1d:97:d4:32:55:12:6f:fa:0f:
49:f7:ef:c0:8d:83:a2:a1:c1:b9:0b:f8:d0:64:ed:49:cf:c2:
1e:c4:9f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 10:02:32 2025 by rpki-client