Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
File: 1ehYR8xEuGECJwu9do5MPOuhyYg.mft (raw, json)
Hash identifier: vmvwXBkxGwnePZUwdGRLAVYF/pM/ekGWnCWc9faLq10=
Subject key identifier: CA:DC:E2:C2:F7:5D:5F:14:51:14:86:D9:F3:A2:C6:34:D8:B7:70:87
Authority key identifier: D5:E8:58:47:CC:44:B8:61:02:27:0B:BD:76:8E:4C:3C:EB:A1:C9:88
Certificate issuer: /CN=d5e85847cc44b86102270bbd768e4c3ceba1c988
Certificate serial: 0196816B981600700F8AF1DEA84258E1B32F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
Manifest number: 03A6
Signing time: Tue 29 Apr 2025 12:00:34 +0000
Manifest this update: Tue 29 Apr 2025 12:00:34 +0000
Manifest next update: Wed 30 Apr 2025 12:00:34 +0000
Files and hashes: 1: 1ehYR8xEuGECJwu9do5MPOuhyYg.crl (hash: ux/cgqZZyqIY+zf2Q44XveqDDroi/4wp/xTiTxJAGLc=)
2: HP2XU4ErP340JMFJBkwhXt7RSkM.roa (hash: jqU/k+IA4J2nUGc2ePon/4S6+Kq7gFeDjcwyWdzFAK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 12:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:6b:98:16:00:70:0f:8a:f1:de:a8:42:58:e1:b3:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5e85847cc44b86102270bbd768e4c3ceba1c988
Validity
Not Before: Apr 29 12:00:34 2025 GMT
Not After : Apr 30 12:00:34 2025 GMT
Subject: CN=cadce2c2f75d5f14511486d9f3a2c634d8b77087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:17:da:7e:08:9a:f6:34:55:8d:d1:d4:6d:76:
86:ae:15:91:31:e2:48:17:2c:a3:b8:62:f3:73:45:
c6:4e:e2:f8:84:ae:c5:db:4c:44:d6:5c:95:c5:50:
c3:f8:af:9f:34:51:9d:d2:f0:c4:d0:7e:48:54:bd:
dc:ca:ea:2a:b9:52:85:a4:5d:f1:fd:ec:55:40:7c:
ab:d1:35:89:ed:d2:a8:82:ce:03:73:68:db:be:68:
c0:6c:40:c8:74:c5:f0:56:85:c3:cd:57:43:f5:4d:
03:85:13:d2:20:5c:85:3b:64:13:a8:b6:6f:7a:aa:
c3:03:94:9a:87:22:0a:4b:b2:db:a7:f0:6f:7c:d4:
b1:66:91:c0:9c:25:a2:5e:6d:44:f6:5b:35:00:22:
9f:1b:0b:d6:85:1d:b1:fd:2a:53:68:ee:42:63:ce:
be:27:53:bc:10:ad:00:4f:63:b3:79:d5:b2:f0:66:
fa:ac:5d:af:4e:cf:86:41:8e:a9:d5:66:e2:21:d6:
cc:42:67:30:73:b1:aa:8d:d3:5c:09:b4:b6:96:56:
68:45:fa:e0:87:c8:18:46:eb:18:4c:e0:36:7f:78:
74:a9:a8:5b:d2:e5:bb:6f:08:03:41:19:94:20:e2:
73:41:3d:36:bd:64:59:82:05:0e:07:e1:74:d9:a8:
ea:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:DC:E2:C2:F7:5D:5F:14:51:14:86:D9:F3:A2:C6:34:D8:B7:70:87
X509v3 Authority Key Identifier:
keyid:D5:E8:58:47:CC:44:B8:61:02:27:0B:BD:76:8E:4C:3C:EB:A1:C9:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:cd:bf:7a:82:11:7f:cc:f8:70:c4:2b:30:43:7a:48:a6:28:
03:f5:af:61:d8:45:95:78:df:5a:9b:78:ef:a6:36:6d:3f:6c:
44:c7:4c:7a:92:6a:a3:ce:dc:1b:8e:30:4c:4f:42:e9:d5:27:
33:0a:75:41:57:42:b5:ff:ad:c3:8c:47:8e:b8:55:e5:fa:77:
56:9c:86:dc:3f:16:bf:87:1f:0e:ae:bc:75:ad:01:41:a9:5d:
3c:85:35:4e:e2:1e:36:0c:3e:3c:13:88:3c:bf:ec:e6:0f:20:
07:55:12:41:43:81:ae:2a:ef:7f:1e:ea:aa:f8:54:47:88:f9:
01:2e:19:26:75:9c:6a:18:06:5f:40:98:c9:77:d9:65:e6:7c:
12:95:5d:6c:da:65:c3:03:bf:2b:6f:4d:06:ef:8c:28:38:70:
60:23:bc:b9:39:a3:90:91:54:67:ff:dc:47:f4:c7:9d:71:84:
b8:41:af:33:6a:93:a4:96:e1:b1:61:03:cd:25:23:0b:29:e3:
b9:ac:9d:78:c0:b7:5c:98:23:ec:3e:ac:8e:14:6c:d4:7c:70:
48:c9:5c:72:ef:8a:43:3a:76:8f:1d:79:0c:f5:86:d5:4b:75:
f5:92:9c:b2:81:4a:79:f0:cd:bc:48:20:f4:9d:a8:77:7f:e0:
c0:1e:96:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 16:08:44 2025 by rpki-client