Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
File: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft (raw, json)
Hash identifier: qLs58rmXHAou2qds02hpJiKVZOQNfsWy56tp61S10T8=
Subject key identifier: B1:4F:39:FF:C6:19:C3:7C:93:D6:7F:C7:81:46:DA:94:C8:AB:FB:C0
Authority key identifier: B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
Certificate issuer: /CN=b043e621fe1009701f6366843c0abc41e180c144
Certificate serial: 019776E53AFAE5B8935D7178F92A8DB2ACEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
Manifest number: 0C7B
Signing time: Mon 16 Jun 2025 04:00:23 +0000
Manifest this update: Mon 16 Jun 2025 04:00:23 +0000
Manifest next update: Tue 17 Jun 2025 04:00:23 +0000
Files and hashes: 1: HyPwmwNvj6CdMpZdefHGIg4yDzE.roa (hash: OXYxYv21hsNNqtBtEPFKc2/1/qoxMz48zojYmP3J5L8=)
2: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl (hash: VKpdyYT/0v/vxZtXxNL3E2kSwawEm3dtEP++W2NqJuQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 04:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:76:e5:3a:fa:e5:b8:93:5d:71:78:f9:2a:8d:b2:ac:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b043e621fe1009701f6366843c0abc41e180c144
Validity
Not Before: Jun 16 04:00:23 2025 GMT
Not After : Jun 17 04:00:23 2025 GMT
Subject: CN=b14f39ffc619c37c93d67fc78146da94c8abfbc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:47:92:65:5a:3a:2c:8c:6b:0d:18:8d:aa:e5:
0a:a9:50:51:d0:8e:ea:f0:45:d0:2f:01:cb:88:24:
bc:a8:d2:c1:c7:2f:05:11:77:0b:ca:3d:f9:22:ce:
e2:72:3e:23:21:26:f4:57:8e:b9:08:1e:3e:05:2b:
3f:c8:3b:30:4a:1f:4c:19:f3:ce:66:e9:b3:94:a6:
49:af:bd:f2:9a:5f:16:95:cf:a9:49:f4:54:57:e6:
0e:f4:9e:05:b0:e2:79:f2:c8:aa:17:64:d0:8f:54:
33:ae:42:af:4a:65:c8:88:16:0b:26:d4:1f:52:00:
04:0e:e9:28:5b:d5:73:45:ba:ee:02:87:d7:eb:92:
0e:06:3a:fd:09:07:4d:81:af:55:5f:4c:38:d6:a5:
44:63:09:8d:57:88:60:6a:d8:d9:22:ed:35:e2:04:
39:33:a1:a1:91:33:4f:56:93:3b:74:c3:8e:d3:ba:
93:66:32:3d:75:f2:24:2e:df:4c:72:d7:a9:ce:7a:
1d:30:58:c7:52:d3:27:9d:ec:4c:df:17:b8:d6:9d:
b4:36:b0:d9:10:2f:98:3f:b1:bf:51:af:fb:a0:01:
31:d4:6e:b8:fc:34:ff:aa:25:08:3a:30:11:a3:fd:
2c:02:8a:da:2d:8f:1a:97:67:7f:a9:79:93:d8:aa:
97:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:4F:39:FF:C6:19:C3:7C:93:D6:7F:C7:81:46:DA:94:C8:AB:FB:C0
X509v3 Authority Key Identifier:
keyid:B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:84:f0:21:91:bb:44:fa:56:05:ef:17:ed:33:f7:a4:39:e6:
c6:0d:a7:64:2c:c5:a6:92:0a:53:1a:69:e5:21:0d:87:bb:42:
68:1b:00:29:9f:e4:ae:df:24:df:7e:d2:fb:14:85:d9:d7:78:
3f:7e:70:cd:c8:6f:4b:3c:dc:36:97:d9:ae:04:d4:63:f6:bf:
f2:db:63:90:58:01:7b:2d:da:55:c1:7d:bc:35:92:70:e3:68:
ff:e5:c0:7f:60:77:75:64:89:03:81:a6:b8:4b:64:b2:de:bb:
fd:92:24:24:ff:d9:8b:bf:c4:52:a4:af:da:d0:96:0f:aa:a2:
2d:40:0d:8e:83:46:ed:f3:84:36:36:5f:a9:14:8f:04:63:73:
68:2f:78:66:f3:eb:44:25:31:97:e8:8f:28:36:ca:46:43:54:
2d:dc:7f:9e:4b:fe:ee:f4:fc:65:40:91:e1:ef:1e:2f:4e:f7:
12:b6:fa:b2:2d:31:3a:d7:28:ca:7d:50:99:d4:5f:88:38:8b:
07:00:0c:13:5a:00:b6:21:d3:06:d3:75:0a:7b:3d:17:90:59:
3a:a9:0e:f4:31:2d:ae:ad:ca:3b:bb:92:5e:2e:71:72:ba:c0:
d9:a2:ae:c4:b4:bc:9b:fb:d0:ac:12:ac:60:b6:da:ba:b8:a5:
81:a5:fd:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 14:52:50 2025 by rpki-client