Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
File: EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft (raw, json)
Hash identifier: 0+Eykwfx8E8dnUgNXdc9Uj0QZ7Cpja/ydYJC/ag88Ck=
Subject key identifier: EB:60:CA:A3:26:AC:72:7C:CA:B7:E6:AA:1D:63:27:ED:B1:BF:D1:A9
Authority key identifier: 11:70:35:61:35:AD:F4:7E:D9:70:8C:B0:A1:36:80:89:4C:23:39:EA
Certificate issuer: /CN=1170356135adf47ed9708cb0a13680894c2339ea
Certificate serial: 0196B9A3D0000E30F0D261A10E0DBC3A399C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
Manifest number: 14C4
Signing time: Sat 10 May 2025 10:00:42 +0000
Manifest this update: Sat 10 May 2025 10:00:42 +0000
Manifest next update: Sun 11 May 2025 10:00:42 +0000
Files and hashes: 1: 8u57ArQxKO_4JRsiP8ig9E_nJLs.roa (hash: ifzsEyICQHhNmNaBIhgOvnazrnhVrug9jj3mLB5h7cs=)
2: EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl (hash: BVohlvlcCQP2TsEuRCbogaBIZkD8MNjOinA2Wl5mNQw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:a3:d0:00:0e:30:f0:d2:61:a1:0e:0d:bc:3a:39:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1170356135adf47ed9708cb0a13680894c2339ea
Validity
Not Before: May 10 10:00:42 2025 GMT
Not After : May 11 10:00:42 2025 GMT
Subject: CN=eb60caa326ac727ccab7e6aa1d6327edb1bfd1a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9f:e1:77:76:8c:72:9d:80:e4:72:91:5f:81:
14:c5:14:4d:09:02:de:ff:dd:79:21:cb:74:cf:92:
06:1b:c5:b4:e8:5f:ce:18:fb:f6:f8:3b:04:5e:e1:
02:8d:2a:5c:be:2f:69:9d:4e:bf:ba:63:60:25:f1:
ba:27:bc:10:80:be:4f:49:aa:83:51:e2:81:c7:e8:
5b:cc:cb:90:7a:eb:54:06:ae:31:76:4d:65:fa:33:
a9:d8:09:67:cd:7e:5b:bf:11:07:21:d5:b0:1f:3e:
be:57:bb:43:5e:b0:b0:35:65:fd:28:b6:5c:d0:95:
cd:e1:99:c7:c7:48:55:f3:32:35:15:db:f4:67:7b:
71:00:76:43:ce:d7:de:ac:38:00:1f:93:c5:ad:50:
f2:7a:79:2a:4b:6d:c3:34:d7:9f:c1:a4:81:07:e4:
b6:cd:f7:75:7e:ca:34:ff:a3:49:55:11:37:46:13:
c1:46:3a:92:1c:a4:87:6a:cb:36:a3:6c:04:df:ad:
bd:cd:24:6f:be:d6:b7:fd:8f:64:1a:f1:75:1d:24:
4f:9f:85:2f:13:64:3e:8d:f1:33:30:d2:94:8b:42:
f1:e0:9f:12:d4:94:b9:c3:71:6d:0b:53:36:7c:cf:
9e:c1:b0:b5:d0:f7:0e:03:60:f6:99:e3:f3:92:26:
e9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:60:CA:A3:26:AC:72:7C:CA:B7:E6:AA:1D:63:27:ED:B1:BF:D1:A9
X509v3 Authority Key Identifier:
keyid:11:70:35:61:35:AD:F4:7E:D9:70:8C:B0:A1:36:80:89:4C:23:39:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:92:b1:cc:5e:bb:4b:02:d1:1c:38:3a:88:ed:bd:3a:5e:1b:
eb:01:13:ce:4d:bf:42:a2:dd:fa:eb:bd:ef:f2:62:2e:1d:ed:
60:d3:f9:bb:e6:e3:0a:8d:26:08:e9:46:01:d4:a8:7e:77:15:
3f:2c:b1:78:12:ab:92:a9:fc:e5:69:e7:44:44:06:02:a7:2d:
f4:ce:e4:e2:e6:3c:a2:5d:76:b4:cb:97:1f:ad:b9:3f:8e:8c:
51:6f:c1:dc:4f:97:73:c6:84:9d:c6:7b:a3:d5:d6:25:91:42:
d1:de:87:1c:76:25:18:11:f3:55:ac:a9:15:63:7d:a1:c0:43:
20:67:d2:eb:a8:72:30:21:2b:e6:1c:01:99:fb:0d:d2:02:12:
75:1a:61:88:24:2a:d6:6e:8b:7c:e6:22:2f:f0:62:30:d9:7f:
5c:95:c5:be:08:d1:6a:7c:eb:6e:08:42:bb:7b:be:4d:38:20:
2d:c1:59:04:19:6e:fd:82:7f:d9:39:ae:de:74:10:3a:98:ac:
9c:f8:af:d8:3f:31:a7:74:54:83:b5:d7:d7:5d:7a:b9:f6:df:
28:fb:dd:d4:2a:ab:72:65:26:43:ef:d0:90:dd:50:ae:88:11:
ec:3a:70:0c:d4:9f:38:94:ea:b6:b6:65:a9:1c:81:d6:d2:74:
24:fa:02:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 19:38:19 2025 by rpki-client