Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
File: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft (raw, json)
Hash identifier: W4oDZ2MILub5BxGwHIQNw43Ygwj+Yu1g6m7e2rnd1+I=
Subject key identifier: 79:52:C2:62:1E:E7:2B:29:1B:D2:EA:C2:49:85:28:98:35:1C:E4:58
Authority key identifier: B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
Certificate issuer: /CN=b043e621fe1009701f6366843c0abc41e180c144
Certificate serial: 0196741E971912263AF64631CA5D7BFC4DD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
Manifest number: 0BF5
Signing time: Sat 26 Apr 2025 22:01:23 +0000
Manifest this update: Sat 26 Apr 2025 22:01:23 +0000
Manifest next update: Sun 27 Apr 2025 22:01:23 +0000
Files and hashes: 1: HyPwmwNvj6CdMpZdefHGIg4yDzE.roa (hash: OXYxYv21hsNNqtBtEPFKc2/1/qoxMz48zojYmP3J5L8=)
2: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl (hash: 0bcBBfOEGBQjgQ/ZR/EwJaS40tIdueccQWW2HJehFso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:1e:97:19:12:26:3a:f6:46:31:ca:5d:7b:fc:4d:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b043e621fe1009701f6366843c0abc41e180c144
Validity
Not Before: Apr 26 22:01:23 2025 GMT
Not After : Apr 27 22:01:23 2025 GMT
Subject: CN=7952c2621ee72b291bd2eac249852898351ce458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:80:15:56:92:32:28:86:90:83:8a:13:83:bf:
a5:af:53:8f:7b:e5:0a:35:f5:8a:14:27:9c:1d:c4:
f1:6e:04:07:92:17:16:07:00:8f:b5:c1:d4:8c:72:
56:f1:4d:79:89:91:79:35:db:28:27:ac:00:d4:fa:
dc:c4:f7:ca:55:75:8a:c0:29:7b:5a:47:80:00:d7:
12:07:fd:8d:42:a6:56:45:8a:8f:82:50:23:63:e3:
5a:27:97:05:d4:d3:55:07:32:69:6b:3f:8a:ec:c1:
7b:ee:a3:f0:f9:da:44:da:a7:10:21:04:23:64:7c:
e9:bf:5b:72:1a:bf:26:88:8f:54:b1:66:6a:d4:cd:
6e:99:f6:8f:61:23:36:90:a7:98:14:64:7a:89:8e:
36:ca:43:05:ac:17:09:47:8d:8c:b7:36:07:9d:3e:
37:27:7a:ba:d3:7b:fb:13:61:a9:78:6b:b4:ec:b0:
1a:d7:01:be:13:2f:ff:11:e5:38:93:d2:f9:73:97:
65:24:06:a8:b9:26:86:da:c5:a1:cf:51:86:88:6a:
d1:d8:a8:f8:fa:06:90:8a:fc:19:53:1f:24:c9:82:
ba:64:01:72:b2:01:09:8c:e3:71:92:4f:8a:2b:f8:
fe:35:2f:73:21:82:05:9f:10:a7:27:31:07:0b:80:
37:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:52:C2:62:1E:E7:2B:29:1B:D2:EA:C2:49:85:28:98:35:1C:E4:58
X509v3 Authority Key Identifier:
keyid:B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:2e:3b:8b:90:47:e9:ab:64:74:cb:24:b3:ee:6e:58:3c:67:
ec:62:6e:9e:54:02:ad:35:34:1d:e8:45:ad:e1:34:6f:03:5f:
68:15:e7:50:52:f4:3b:83:e8:84:4c:10:7b:89:c9:41:43:45:
c2:1a:bf:d8:63:4b:87:57:91:1d:2f:73:0d:17:72:4c:46:97:
12:4b:c8:ad:61:4e:2c:00:3a:42:66:91:bf:9c:da:66:7a:39:
f3:1e:ff:31:45:d2:4f:c4:61:c0:4e:78:00:c0:01:0a:4b:f8:
d4:5b:d4:e4:4f:0d:94:82:de:84:c3:82:e1:2a:91:5d:d3:16:
0d:db:1b:d3:67:70:fd:2d:fe:c8:71:83:c8:58:0a:44:9c:24:
b0:78:47:84:35:ca:ec:ac:49:8b:9b:7b:2d:a9:44:04:6e:f4:
67:46:00:97:2d:83:38:0b:9a:08:20:0a:8d:b3:9f:72:16:fc:
2a:78:db:2e:b3:05:ea:54:2a:41:4f:23:10:11:db:54:bf:0a:
a6:04:c2:6f:b4:da:d9:ac:34:76:5e:05:b8:77:ac:19:e4:ac:
60:8d:a6:e2:60:76:a6:b5:b5:bd:35:b0:a9:92:73:71:8d:3e:
66:9d:3c:d5:1b:6f:ce:bb:44:d3:59:ca:df:67:c5:47:78:ed:
7a:dd:d0:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 03:57:45 2025 by rpki-client