Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
File: ePKehzghWcpegTh9fud-US-tFjY.mft (raw, json)
Hash identifier: 4xRwmU7W0NQkwIaCXCeiH9LomDRmGA+ek9ORuTJGG6M=
Subject key identifier: CD:84:0A:E0:D1:1E:69:DD:EB:65:04:84:22:8A:F3:23:B3:84:E5:65
Authority key identifier: 78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
Certificate issuer: /CN=78f29e87382159ca5e81387d7ee77e512fad1636
Certificate serial: 0196745479B40CA62F5E89A022C6882463DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
Manifest number: 055F
Signing time: Sat 26 Apr 2025 23:00:15 +0000
Manifest this update: Sat 26 Apr 2025 23:00:15 +0000
Manifest next update: Sun 27 Apr 2025 23:00:15 +0000
Files and hashes: 1: ePKehzghWcpegTh9fud-US-tFjY.crl (hash: mISc45/Ae/mWyPb4mZoXadkGHIbMEKt+4v9AoBWXqvw=)
2: zTW-DDqj_DKyybC8B3Erc_k4_OE.roa (hash: aF2vKf/Dc/OONsqmm+OYYMGFEckKwY/y3uqC3qA2PH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 23:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:54:79:b4:0c:a6:2f:5e:89:a0:22:c6:88:24:63:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f29e87382159ca5e81387d7ee77e512fad1636
Validity
Not Before: Apr 26 23:00:15 2025 GMT
Not After : Apr 27 23:00:15 2025 GMT
Subject: CN=cd840ae0d11e69ddeb650484228af323b384e565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:aa:87:f7:85:bc:6f:5c:06:9b:50:98:d2:23:
21:21:12:05:1f:42:34:f7:f0:b1:1e:0a:e5:24:c8:
d6:45:5c:77:c6:ae:31:58:80:65:b4:75:cb:0a:34:
f6:f8:24:72:f2:1b:13:7e:3d:47:23:1d:db:2a:61:
43:97:fc:08:5e:6d:f1:ae:d5:7f:6b:77:fa:9f:15:
98:59:85:eb:18:06:a6:1b:ec:e5:31:c6:28:34:f1:
a0:82:d5:60:06:e3:f7:d2:1e:63:84:4b:89:36:c4:
65:d3:66:a6:d5:6b:44:f6:99:32:16:46:bb:72:00:
21:cc:eb:39:b6:ee:0c:b3:64:81:38:32:8a:ac:7c:
c2:6a:da:22:33:d8:0b:4f:44:32:5c:32:16:1a:3b:
a9:73:a8:f0:56:1e:be:7e:14:6d:9b:53:0f:63:1f:
d0:fc:00:64:47:d9:06:ad:0e:8d:a3:f0:85:20:c0:
5f:6f:6f:c1:51:e7:73:c5:5d:4f:1f:8d:17:87:42:
36:c6:d2:53:6c:d0:78:cc:38:da:cf:56:b6:54:14:
23:52:8b:b6:d3:03:05:2a:3f:d8:fe:8e:02:b9:08:
a7:82:27:a7:52:64:25:27:05:46:5f:2c:ab:18:bf:
0c:3a:5c:55:bb:57:b4:96:6e:82:d7:3c:97:6c:b7:
37:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:84:0A:E0:D1:1E:69:DD:EB:65:04:84:22:8A:F3:23:B3:84:E5:65
X509v3 Authority Key Identifier:
keyid:78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:5d:f9:ea:fb:6e:b1:73:f4:b8:1e:cf:f6:22:83:93:19:4e:
43:14:66:89:27:7f:d9:a7:dd:ea:b8:18:a7:35:f5:f6:53:3f:
e3:3b:b1:75:d4:ab:ca:c0:da:95:c3:4d:44:75:cd:77:3e:64:
f1:9b:88:bf:a3:a1:02:61:19:f8:84:19:44:4a:b6:d5:b5:e4:
67:ab:8c:2c:27:dc:18:9a:93:d2:08:ed:a0:3a:5e:57:7b:41:
dd:dd:a9:9f:cd:e2:a7:8f:be:ff:c8:31:05:96:67:9f:9d:19:
ac:6f:6c:8d:c0:65:af:82:db:88:b4:81:78:fb:59:3e:73:13:
f1:59:6d:78:68:dd:94:4a:f4:c7:c1:f8:69:63:d3:14:e3:18:
56:2f:b3:a2:7c:6c:01:6e:9b:8f:0f:c9:07:01:40:00:93:64:
5e:b2:5e:ff:22:cf:71:69:75:88:8d:55:95:4d:a3:d5:30:59:
d8:5d:12:53:fd:7e:73:4b:47:d2:98:6f:da:d0:e5:98:5d:21:
64:76:26:68:63:e9:e9:94:16:03:72:a2:de:ef:45:40:0d:d5:
77:b3:96:ab:ec:d4:ea:97:68:1f:c6:37:65:81:34:95:72:09:
3d:d4:ae:8b:4e:32:46:a1:d2:0b:6c:94:e7:87:d3:10:3f:73:
b8:4f:97:30
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ0VHm0DKYvXomgIsaIJGPcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4ZjI5ZTg3MzgyMTU5Y2E1ZTgxMzg3ZDdlZTc3ZTUxMmZh
ZDE2MzYwHhcNMjUwNDI2MjMwMDE1WhcNMjUwNDI3MjMwMDE1WjAzMTEwLwYDVQQD
EyhjZDg0MGFlMGQxMWU2OWRkZWI2NTA0ODQyMjhhZjMyM2IzODRlNTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2KqH94W8b1wGm1CY0iMhIRIFH0I0
9/CxHgrlJMjWRVx3xq4xWIBltHXLCjT2+CRy8hsTfj1HIx3bKmFDl/wIXm3xrtV/
a3f6nxWYWYXrGAamG+zlMcYoNPGggtVgBuP30h5jhEuJNsRl02am1WtE9pkyFka7
cgAhzOs5tu4Ms2SBODKKrHzCatoiM9gLT0QyXDIWGjupc6jwVh6+fhRtm1MPYx/Q
/ABkR9kGrQ6No/CFIMBfb2/BUedzxV1PH40Xh0I2xtJTbNB4zDjaz1a2VBQjUou2
0wMFKj/Y/o4CuQingienUmQlJwVGXyyrGL8MOlxVu1e0lm6C1zyXbLc37QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM2ECuDRHmnd62UEhCKK8yOzhOVlMB8GA1UdIwQY
MBaAFHjynoc4IVnKXoE4fX7nflEvrRY2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZVBLZWh6Z2hXY3BlZ1RoOWZ1ZC1VUy10RmpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9hNGI0OGItNDYyZS00NWE2LTg2MGQt
ODJmODljYmEyNmQ4LzEvZVBLZWh6Z2hXY3BlZ1RoOWZ1ZC1VUy10RmpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy9hNGI0OGItNDYyZS00NWE2LTg2MGQtODJmODljYmEyNmQ4
LzEvZVBLZWh6Z2hXY3BlZ1RoOWZ1ZC1VUy10RmpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUl356vtu
sXP0uB7P9iKDkxlOQxRmiSd/2afd6rgYpzX19lM/4zuxddSrysDalcNNRHXNdz5k
8ZuIv6OhAmEZ+IQZREq21bXkZ6uMLCfcGJqT0gjtoDpeV3tB3d2pn83ip4++/8gx
BZZnn50ZrG9sjcBlr4LbiLSBePtZPnMT8VlteGjdlEr0x8H4aWPTFOMYVi+zonxs
AW6bjw/JBwFAAJNkXrJe/yLPcWl1iI1VlU2j1TBZ2F0SU/1+c0tH0phv2tDlmF0h
ZHYmaGPp6ZQWA3Ki3u9FQA3Vd7OWq+zU6pdoH8Y3ZYE0lXIJPdSui04yRqHSC2yU
54fTED9zuE+XMA==
-----END CERTIFICATE-----
Generated at Sun Apr 27 09:16:37 2025 by rpki-client