Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
File: ejhiE08UE2XviHkC5gV8KLKCnJ0.mft (raw, json)
Hash identifier: gmKokXN+mIw+2+HN3PXiXRudH5+oPHa45HE8nCmGkN0=
Subject key identifier: 77:A4:59:10:05:DF:51:58:27:2F:41:97:35:00:F5:21:30:CE:19:DA
Authority key identifier: 7A:38:62:13:4F:14:13:65:EF:88:79:02:E6:05:7C:28:B2:82:9C:9D
Certificate issuer: /CN=7a3862134f141365ef887902e6057c28b2829c9d
Certificate serial: 01967643084472EAA17C7D20386B5873A950
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
Manifest number: 0BF0
Signing time: Sun 27 Apr 2025 08:00:26 +0000
Manifest this update: Sun 27 Apr 2025 08:00:26 +0000
Manifest next update: Mon 28 Apr 2025 08:00:26 +0000
Files and hashes: 1: DUeztC_9OSU5_baS7RpA8PIrChA.roa (hash: nC0NIfkO+km6NTJ5hH8jMs/CXJYU2lhmZlogyR2BxZI=)
2: ejhiE08UE2XviHkC5gV8KLKCnJ0.crl (hash: 19RGa6akUIo/n2dEs8bDV/uToBrF8CfBfmreZZ60meo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:43:08:44:72:ea:a1:7c:7d:20:38:6b:58:73:a9:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a3862134f141365ef887902e6057c28b2829c9d
Validity
Not Before: Apr 27 08:00:26 2025 GMT
Not After : Apr 28 08:00:26 2025 GMT
Subject: CN=77a4591005df5158272f41973500f52130ce19da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d1:12:dc:35:01:00:c5:72:77:91:80:14:c0:
08:c6:5a:41:a3:61:c3:8e:12:89:82:84:76:6d:52:
ac:9a:ac:51:22:29:62:65:52:a2:cc:fd:19:44:90:
fe:f9:c0:95:da:dc:68:b6:3e:6e:d9:cd:e0:38:0d:
d2:fb:0a:6f:a4:47:fe:af:13:9d:ba:97:c5:77:de:
2b:27:2e:bb:20:41:d0:2b:1a:aa:96:2f:b2:ef:76:
1a:98:ef:f8:a2:89:f2:41:19:ce:1e:f8:7a:b4:ba:
f1:ee:11:31:ca:a8:4a:ed:4d:26:9d:df:fe:34:b4:
2a:85:55:48:f7:0b:b1:fe:47:39:33:db:89:70:2f:
5a:4b:ff:12:53:24:41:b1:57:63:6c:31:be:04:78:
b4:7c:b9:02:27:b0:34:15:57:67:57:c3:d2:96:50:
24:db:8d:c2:38:67:d9:83:49:e9:90:cf:b1:10:44:
03:f2:07:37:f2:a8:83:07:49:d6:24:66:bf:39:b0:
41:94:6b:49:b5:3d:c1:6f:00:ae:6b:73:02:31:67:
6c:f2:1a:e7:2c:3c:70:b6:8c:40:44:2f:7b:fd:5f:
cb:15:45:ae:4a:dd:c1:6a:d0:5f:a5:c2:82:d0:3d:
61:01:64:b4:9d:ae:1b:c1:7c:ed:e4:4e:7e:63:24:
59:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:A4:59:10:05:DF:51:58:27:2F:41:97:35:00:F5:21:30:CE:19:DA
X509v3 Authority Key Identifier:
keyid:7A:38:62:13:4F:14:13:65:EF:88:79:02:E6:05:7C:28:B2:82:9C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:b6:9e:52:ca:35:00:df:54:6f:a8:4b:ee:68:12:9f:74:cf:
06:96:b7:57:8e:ae:82:29:1a:44:76:ce:36:d7:df:ca:c5:1e:
94:26:36:2a:c8:03:3f:94:8a:8b:b6:3e:19:66:63:de:bd:f3:
36:d2:bd:ca:e1:83:64:3b:07:81:d9:b3:31:12:9a:f2:1f:c0:
ce:5e:ec:6c:bd:25:d6:ae:d8:27:cb:a4:a0:77:5d:05:c5:75:
21:ac:e8:a9:e1:80:ad:22:58:0e:dc:66:50:e8:77:f8:dd:90:
c5:49:ed:2c:6f:ef:32:b6:af:67:7d:3f:77:46:4f:b2:1f:dd:
cc:34:29:67:6f:16:5a:93:68:b8:4d:de:bc:37:38:52:0f:eb:
33:13:3e:3e:93:fd:1e:c5:37:52:a1:2b:a3:56:a8:55:14:93:
13:9a:8d:5a:c3:b6:59:52:61:70:58:ab:bd:71:cf:ad:e6:bf:
93:c3:76:82:07:46:c1:f6:d1:3e:7e:51:1e:f2:a5:4a:55:a4:
95:bf:ac:34:d5:ae:8b:8d:b0:f5:30:5a:8b:dd:6c:9d:3a:4f:
bb:a2:6a:a3:50:a0:c6:ba:a9:7f:e8:72:57:04:29:a6:32:5e:
fb:04:ff:ff:94:65:d0:81:c3:79:2b:89:81:d0:c8:ea:65:1e:
87:ad:e8:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:58:39 2025 by rpki-client