Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
File: ePKehzghWcpegTh9fud-US-tFjY.mft (raw, json)
Hash identifier: 3qbMbRIlIrW37H2DbW1msQs18lTGie7r7o56M4P3psM=
Subject key identifier: 91:30:46:BE:81:DB:60:89:CF:B1:72:A2:77:39:34:EB:8F:24:57:8F
Authority key identifier: 78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
Certificate issuer: /CN=78f29e87382159ca5e81387d7ee77e512fad1636
Certificate serial: 019769CE78B91392D2379C6F7757CA071995
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
Manifest number: 05DF
Signing time: Fri 13 Jun 2025 15:00:28 +0000
Manifest this update: Fri 13 Jun 2025 15:00:28 +0000
Manifest next update: Sat 14 Jun 2025 15:00:28 +0000
Files and hashes: 1: ePKehzghWcpegTh9fud-US-tFjY.crl (hash: 3NUQ/ta3YPaWext3T4FIwHN5n0fb7QWCnroS81H5CUo=)
2: kHqDfv1PMJuMKRJJw_rnInJCqGA.roa (hash: ifzsU0ZI6Yo4/FNYRrTFh+wSVN18GVZcQoTagVp377Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:ce:78:b9:13:92:d2:37:9c:6f:77:57:ca:07:19:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f29e87382159ca5e81387d7ee77e512fad1636
Validity
Not Before: Jun 13 15:00:28 2025 GMT
Not After : Jun 14 15:00:28 2025 GMT
Subject: CN=913046be81db6089cfb172a2773934eb8f24578f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ed:8c:4e:ec:68:99:1d:b3:b7:98:16:f7:b1:
06:b9:42:89:88:b6:5f:0d:76:f5:bb:17:f2:34:71:
fc:87:df:67:77:08:ac:03:33:53:57:c9:a3:d8:3c:
7c:65:b4:aa:17:ec:ba:27:2e:9c:e4:bf:1e:f1:cc:
36:a1:4a:c4:3d:27:37:50:d4:33:af:90:47:5f:22:
15:88:01:bf:f6:6f:06:e7:65:cf:4d:95:8f:e9:19:
04:88:6d:0a:0f:69:35:36:cd:4e:25:e9:43:01:04:
7f:b1:ba:ce:f4:62:7a:53:40:79:d5:88:fa:c7:07:
49:81:87:30:fa:8d:58:25:13:46:87:e6:43:40:ab:
68:67:bd:50:32:da:cd:1a:d5:8b:56:ed:f2:ef:38:
7f:e5:d8:98:9d:c7:9b:b9:38:a3:43:45:96:a8:38:
6c:51:3e:b1:9f:a1:a2:4f:d4:47:65:20:99:60:9e:
cd:ac:a4:18:ff:63:12:d4:13:57:c6:a9:d6:ab:8e:
9a:bd:3c:49:a9:35:5b:d5:63:c7:5a:d0:04:e8:9f:
1e:e4:f1:02:da:da:56:0f:e5:eb:83:b4:cc:dc:d4:
37:a0:f9:fd:bd:5d:a2:e6:3d:31:60:d1:d2:dc:e4:
e4:1b:b6:ef:4a:f8:98:82:da:f3:43:16:76:fb:b7:
e4:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:30:46:BE:81:DB:60:89:CF:B1:72:A2:77:39:34:EB:8F:24:57:8F
X509v3 Authority Key Identifier:
keyid:78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:8f:c6:a0:25:51:a6:ac:cb:db:b3:b0:88:5f:46:5c:87:c7:
93:d9:ff:5c:65:bf:bf:9e:b3:81:11:38:33:fa:8b:3c:9f:96:
03:e6:f2:b3:f6:a3:7e:80:cf:36:37:78:d7:8a:0a:14:25:08:
95:8a:52:7b:97:8f:39:75:32:a5:36:b0:21:36:ce:c5:88:41:
55:63:7a:78:a0:f9:c6:66:88:a3:2c:01:da:59:e4:b0:39:7a:
c0:a1:75:f0:88:1b:12:03:15:0e:76:fb:a1:d0:6b:89:e6:8e:
13:17:4f:57:0a:c2:62:28:db:c4:95:c5:8f:a5:24:1d:41:99:
dd:b8:5d:e3:a4:93:48:0f:69:11:9c:a0:4c:16:c8:ac:12:44:
e0:ed:3f:a2:5f:de:2e:35:5f:13:a3:96:4f:dc:80:3c:85:7b:
88:bd:2f:d3:c8:66:70:fa:ae:58:b7:32:23:31:79:93:60:e4:
76:1b:17:78:b8:1e:e5:ad:9d:f7:39:2e:0d:25:0f:d3:e7:06:
28:ff:11:5f:0e:ec:40:21:aa:7a:0d:6d:2b:da:5e:2f:15:b6:
eb:e2:70:5c:2f:a2:bf:dd:08:ac:f8:10:f6:01:d2:2e:c4:a7:
57:fc:c8:c3:95:66:53:63:2f:37:41:fa:76:fe:6c:e1:f8:9e:
6e:28:ca:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:10:52 2025 by rpki-client