Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
File: 1ehYR8xEuGECJwu9do5MPOuhyYg.mft (raw, json)
Hash identifier: aqM1ccqUDn5DPSM+vDwC86nzEGekWWeKL7OmC7nPAOA=
Subject key identifier: 38:11:74:B5:79:28:8F:81:EF:12:7D:A1:EB:DB:84:43:87:8D:2E:03
Authority key identifier: D5:E8:58:47:CC:44:B8:61:02:27:0B:BD:76:8E:4C:3C:EB:A1:C9:88
Certificate issuer: /CN=d5e85847cc44b86102270bbd768e4c3ceba1c988
Certificate serial: 0197B6A05DB2789FFF10AC21D8CCF982E402
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
Manifest number: 0446
Signing time: Sat 28 Jun 2025 13:00:52 +0000
Manifest this update: Sat 28 Jun 2025 13:00:52 +0000
Manifest next update: Sun 29 Jun 2025 13:00:52 +0000
Files and hashes: 1: 1ehYR8xEuGECJwu9do5MPOuhyYg.crl (hash: vMK9bQDXDFZegmUcA0eNerI0YL2CoBAl/75OQi7HMuc=)
2: HP2XU4ErP340JMFJBkwhXt7RSkM.roa (hash: jqU/k+IA4J2nUGc2ePon/4S6+Kq7gFeDjcwyWdzFAK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:5d:b2:78:9f:ff:10:ac:21:d8:cc:f9:82:e4:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5e85847cc44b86102270bbd768e4c3ceba1c988
Validity
Not Before: Jun 28 13:00:52 2025 GMT
Not After : Jun 29 13:00:52 2025 GMT
Subject: CN=381174b579288f81ef127da1ebdb8443878d2e03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:08:52:10:48:6f:7f:ed:e7:d0:71:59:29:ef:
94:4f:e8:16:df:35:ff:4e:7c:f7:d4:57:8f:47:f9:
13:e3:f7:85:7c:50:10:e7:04:34:80:f9:90:9a:20:
96:44:e2:d0:aa:22:c9:e2:f9:e6:dd:c3:05:1a:bc:
1e:8f:e4:73:a8:f2:f8:37:5a:c5:13:40:0c:57:49:
9a:ad:70:5c:ad:e8:09:41:36:b3:f3:d2:0e:a1:0a:
9b:cb:a1:2f:14:9d:ba:27:8a:f7:df:8b:82:ae:87:
bc:d1:60:2b:44:71:65:02:be:93:57:71:80:59:e7:
0b:8d:52:56:77:26:70:e7:ad:b0:73:2f:2a:b1:b1:
95:1c:f2:ee:a5:73:a7:5a:65:2b:5e:0f:da:8d:ab:
e5:f4:1c:3c:ea:35:97:03:16:fc:36:98:0a:71:ad:
b9:0b:63:5c:dd:1e:c3:1b:ba:65:5a:de:df:be:72:
b1:d8:b9:38:80:ae:7c:fd:a7:81:52:42:e4:40:8e:
b2:44:cb:ef:a9:cf:d1:d0:68:f2:b3:00:0a:99:f5:
40:55:07:35:a3:48:d7:d9:d9:12:e4:84:32:00:d9:
31:fe:50:2b:dd:35:37:1d:80:6d:5e:e6:f4:fb:aa:
39:56:db:3d:12:59:d9:7a:59:a2:81:1c:50:ee:34:
f0:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:11:74:B5:79:28:8F:81:EF:12:7D:A1:EB:DB:84:43:87:8D:2E:03
X509v3 Authority Key Identifier:
keyid:D5:E8:58:47:CC:44:B8:61:02:27:0B:BD:76:8E:4C:3C:EB:A1:C9:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:0c:e1:c3:3b:13:9f:11:6f:93:8a:fc:e0:d1:b1:24:23:3d:
bd:45:66:98:ea:ce:2c:3c:87:e0:8b:f6:37:4d:e4:62:08:29:
8f:c0:a3:b8:5f:94:0e:b9:00:40:78:52:b6:a8:d1:93:7d:fc:
04:b3:9a:40:a7:e7:03:a8:88:f6:11:ef:7a:3f:d1:70:2e:28:
29:e0:5b:3c:e8:89:53:07:9b:ef:15:93:d7:b2:1f:8e:60:c0:
6f:65:a6:3c:b0:27:78:e9:4e:8c:94:78:30:7f:7d:28:10:6f:
bd:30:db:3e:86:8a:d7:22:82:bd:55:01:bd:61:a9:3e:8a:49:
e4:ba:d6:5d:2e:12:fe:18:85:88:a4:63:68:28:50:89:b3:21:
02:be:7b:2a:3a:78:16:29:b1:41:21:0e:ab:5f:f9:24:99:e8:
81:92:6b:4f:ab:97:e2:ca:df:36:4c:d5:ef:53:85:2a:06:45:
84:b7:4b:a5:c4:f3:bb:b8:10:80:a4:e4:23:c6:ab:3f:57:70:
a0:7a:a8:5f:03:db:34:6b:b8:7c:dd:87:af:fe:1c:62:b1:ee:
ab:9c:eb:fb:db:7e:01:69:20:41:94:e1:66:10:8a:2c:c3:29:
a9:04:6b:80:48:f4:0b:c8:7f:89:33:1b:03:5c:33:34:c2:2f:
00:5f:42:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:55:49 2025 by rpki-client