Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
File: egtky28YoRQXQjEFCwF5kxteSG0.mft (raw, json)
Hash identifier: J5mO0Ebkws+dczvbe87eD5kSCr39MDD17KDmJzkUmKc=
Subject key identifier: 3F:C2:A1:30:31:96:B3:56:05:74:42:B9:62:FF:14:B4:E6:53:D3:4C
Authority key identifier: 7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D
Certificate issuer: /CN=7a0b64cb6f18a114174231050b0179931b5e486d
Certificate serial: 0196CACE2D25F5AB9985728D1D42449FB4DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
Manifest number: 0248
Signing time: Tue 13 May 2025 18:00:31 +0000
Manifest this update: Tue 13 May 2025 18:00:31 +0000
Manifest next update: Wed 14 May 2025 18:00:31 +0000
Files and hashes: 1: cChdW9IKygfKR2rAFYsXhx5RqmU.roa (hash: TyxqseiqVgQ1lk5s+kcYQAHiXGFHWxgFXhhbbIVGfj4=)
2: egtky28YoRQXQjEFCwF5kxteSG0.crl (hash: bUfZjcglq7cZ2U2wQf8+cnf64DD1P0SWx6Q57e8hxH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ca:ce:2d:25:f5:ab:99:85:72:8d:1d:42:44:9f:b4:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a0b64cb6f18a114174231050b0179931b5e486d
Validity
Not Before: May 13 18:00:31 2025 GMT
Not After : May 14 18:00:31 2025 GMT
Subject: CN=3fc2a1303196b356057442b962ff14b4e653d34c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:01:ad:84:85:b8:e8:18:99:a9:d9:51:ab:07:
dc:72:f4:4b:4b:d5:ae:25:97:28:df:fa:65:03:86:
1f:35:17:90:c6:c7:f2:c5:60:b7:ec:79:d0:6b:e5:
3e:60:25:f6:6b:81:6c:31:26:4c:31:56:97:c8:f1:
60:88:34:1d:de:94:1d:46:63:09:00:3a:4b:72:f6:
91:9b:90:b4:e5:67:fd:8e:41:a1:c7:b0:87:30:9a:
62:90:29:3b:1a:13:53:53:e6:dc:3d:fe:4f:ef:77:
c3:52:15:3d:70:d8:d6:e6:7c:2a:bc:26:36:1e:06:
3d:81:fb:8b:a0:6b:22:63:a9:b0:82:66:60:fd:76:
dc:a5:46:a0:98:b1:45:4e:99:bd:97:00:43:e5:3e:
51:1c:49:a8:3a:f8:b2:d7:53:92:58:3e:29:9e:9e:
a3:55:99:53:45:b5:d4:be:29:0e:df:71:d4:79:af:
a2:9f:a4:7e:53:91:08:3a:c1:15:de:af:33:10:6f:
62:32:9a:59:75:7e:c9:05:19:f0:1e:67:5f:9a:66:
90:c6:73:8d:d3:e0:c2:ad:82:65:8b:9f:27:2b:5a:
cc:af:da:09:78:c4:9f:91:53:6e:26:6d:01:75:ae:
c9:9e:ed:16:23:ee:3c:40:45:8b:5b:1d:df:9c:82:
26:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:C2:A1:30:31:96:B3:56:05:74:42:B9:62:FF:14:B4:E6:53:D3:4C
X509v3 Authority Key Identifier:
keyid:7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:cc:61:ae:8e:72:4b:f8:28:06:8d:19:82:96:a6:4a:39:cb:
21:f8:45:3a:c0:b0:5c:4f:93:41:c1:28:7a:a2:41:92:24:bd:
c6:63:50:2e:80:5a:e8:b6:b5:7c:24:27:5c:ae:b9:80:6b:03:
61:46:5e:a4:14:01:f6:0a:41:5e:67:a4:26:9f:f5:85:84:d0:
0c:a3:a9:e8:b7:43:0d:9b:a4:ba:97:f1:b7:14:0d:a7:04:3a:
72:42:36:9e:0c:1d:1b:e7:04:09:24:05:16:04:7d:ef:5d:12:
9e:c7:1d:16:2f:dc:b6:25:e7:9c:0c:49:9a:86:f9:a7:4a:9b:
8b:2b:6e:62:bf:f9:8a:e7:0e:82:73:b3:b5:46:4f:0e:aa:8f:
19:56:e1:c0:8d:a5:62:c6:6c:dd:4d:07:74:81:e1:65:b2:9a:
cf:cc:3e:11:0e:f6:08:6a:bb:c5:78:69:c4:f5:d9:7d:97:6a:
df:e2:46:ee:3a:ca:8b:ae:4c:d0:76:20:d4:b1:71:05:26:7a:
82:2e:7c:e4:16:b3:5d:85:a1:ab:cc:3b:15:36:0a:d7:eb:de:
29:0c:d2:ba:6a:88:77:f1:98:b7:6e:e5:62:15:7a:f6:20:02:
dd:a8:f6:da:06:cc:c8:7f:54:a9:b3:70:3d:53:7b:54:ef:6b:
8d:3d:a7:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 00:03:25 2025 by rpki-client