Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft
File: eknuryQ0LDssYyyeSEYxON4twAs.mft (raw, json)
Hash identifier: vmDyPe3mWeM7iPAD4Uy/rTPRiCKj4zZsgbNYkBVKd60=
Subject key identifier: 99:12:7E:D1:3F:4F:1B:A2:B0:7B:01:65:8F:92:7F:03:AF:63:27:68
Authority key identifier: 7A:49:EE:AF:24:34:2C:3B:2C:63:2C:9E:48:46:31:38:DE:2D:C0:0B
Certificate issuer: /CN=7a49eeaf24342c3b2c632c9e48463138de2dc00b
Certificate serial: 01967AC4D7996ACFE4BA315E40CF2D1ACA54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eknuryQ0LDssYyyeSEYxON4twAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft
Manifest number: 1513
Signing time: Mon 28 Apr 2025 05:00:42 +0000
Manifest this update: Mon 28 Apr 2025 05:00:42 +0000
Manifest next update: Tue 29 Apr 2025 05:00:42 +0000
Files and hashes: 1: eknuryQ0LDssYyyeSEYxON4twAs.crl (hash: JMXMYtEp22m7apl3djAJZ5hTj5QaUgcYQ09jzfFiD/g=)
2: kO8QB2zrXRxl2N43GaWd_Repq5M.roa (hash: IUmtRjKzI10q9uvO/9zEmrcKLU0qcJf4Uhid1F3g4yw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/eknuryQ0LDssYyyeSEYxON4twAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:c4:d7:99:6a:cf:e4:ba:31:5e:40:cf:2d:1a:ca:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a49eeaf24342c3b2c632c9e48463138de2dc00b
Validity
Not Before: Apr 28 05:00:42 2025 GMT
Not After : Apr 29 05:00:42 2025 GMT
Subject: CN=99127ed13f4f1ba2b07b01658f927f03af632768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:bd:8a:86:44:f0:9d:3c:c0:a4:e9:27:8b:bc:
77:df:a7:35:99:8d:ee:cd:24:f1:64:46:f2:9c:f2:
b9:ce:55:04:a8:f0:86:22:9d:65:68:04:08:59:fd:
d4:df:98:37:e6:d1:c0:91:76:41:b1:92:c0:5c:27:
c6:ef:91:5b:e4:d5:1b:ae:21:e6:db:35:b7:5b:8f:
00:0d:a5:6f:ed:2c:95:71:dc:db:f3:db:f2:76:ac:
c9:b5:f0:6c:97:5b:41:de:01:29:66:f2:9c:d2:17:
24:d4:e0:b9:cc:21:28:84:8e:62:5f:81:12:2a:45:
b1:b6:5b:eb:56:27:ce:dc:8d:e1:d2:3d:4b:fe:6d:
f6:0a:3a:18:63:c5:d8:f5:a8:e0:5d:4b:9a:95:88:
73:31:8d:ef:ba:9d:e5:c1:65:7c:64:e9:bf:e8:83:
9a:9f:94:60:5f:e6:9e:b3:af:86:d9:71:eb:4a:ac:
6f:50:d0:a3:a7:53:85:f1:fd:7a:8e:6e:6e:39:27:
87:36:54:c9:d4:62:a8:13:50:f0:a7:3c:c0:ce:d1:
82:7e:0c:ac:81:6b:c6:30:15:05:6b:98:be:fa:a0:
79:d8:f8:b6:93:bc:77:12:d4:89:1e:58:6e:bf:b9:
9a:df:ce:1e:0b:87:d7:aa:69:18:58:30:37:9c:dd:
55:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:12:7E:D1:3F:4F:1B:A2:B0:7B:01:65:8F:92:7F:03:AF:63:27:68
X509v3 Authority Key Identifier:
keyid:7A:49:EE:AF:24:34:2C:3B:2C:63:2C:9E:48:46:31:38:DE:2D:C0:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eknuryQ0LDssYyyeSEYxON4twAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:f2:f4:11:2d:9c:16:5b:61:88:c1:c2:c2:e9:f6:55:58:81:
07:ab:1b:a0:bc:6b:f6:2d:a6:ec:c0:8a:12:03:6c:8a:da:07:
13:a3:92:0f:80:b0:3b:59:c3:0b:f7:a3:47:c4:1d:9d:16:74:
e2:23:18:c8:a2:20:73:52:35:e4:ef:79:0a:71:d1:27:8b:c4:
99:71:7f:27:45:30:f9:8e:1d:a5:ed:b2:fd:75:41:bb:56:98:
0b:e3:bc:70:bb:41:db:21:61:56:30:ce:05:db:01:f1:52:8c:
31:dc:dd:eb:7c:b5:42:70:af:b9:57:aa:f7:c0:49:a5:73:79:
df:dc:c4:fa:c5:1f:32:85:2a:af:8d:7b:25:06:9a:bb:46:e6:
09:c5:90:cb:9d:ae:20:9b:79:8d:59:19:a1:7e:e1:7f:c4:f5:
56:c6:9f:e1:37:34:20:a2:3e:c2:00:5a:c2:82:5e:51:57:b5:
70:19:0f:ca:bd:2a:93:28:5c:7a:50:51:2a:0f:ae:1b:79:7f:
d7:e3:8d:7b:09:8f:6e:4d:3c:db:15:81:95:66:c1:3a:c6:9d:
54:a8:bd:c7:c6:51:43:a1:35:02:2f:91:48:8c:b9:f7:2b:e2:
0c:f3:4a:6b:e5:17:55:4d:ad:4b:59:98:d4:56:f4:0b:a0:b9:
cf:23:9e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 09:30:14 2025 by rpki-client