Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
File: ePKehzghWcpegTh9fud-US-tFjY.mft (raw, json)
Hash identifier: 8u1pY9KIG0rxwBWGdaLcDJC6R3ICrCBEQIJMEqxxd9I=
Subject key identifier: A3:AD:0A:4B:44:1E:73:3D:A2:BD:7D:F6:D1:47:04:B7:9F:77:DA:7A
Authority key identifier: 78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
Certificate issuer: /CN=78f29e87382159ca5e81387d7ee77e512fad1636
Certificate serial: 0196A2AE01CCBD69A0573662B5688D29757C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
Manifest number: 0577
Signing time: Mon 05 May 2025 23:00:34 +0000
Manifest this update: Mon 05 May 2025 23:00:34 +0000
Manifest next update: Tue 06 May 2025 23:00:34 +0000
Files and hashes: 1: ePKehzghWcpegTh9fud-US-tFjY.crl (hash: Gz5dSgJkq4ecbgGjwp7a5mcky6kHcvQJ/ToQz/MLmB4=)
2: zTW-DDqj_DKyybC8B3Erc_k4_OE.roa (hash: aF2vKf/Dc/OONsqmm+OYYMGFEckKwY/y3uqC3qA2PH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a2:ae:01:cc:bd:69:a0:57:36:62:b5:68:8d:29:75:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f29e87382159ca5e81387d7ee77e512fad1636
Validity
Not Before: May 5 23:00:34 2025 GMT
Not After : May 6 23:00:34 2025 GMT
Subject: CN=a3ad0a4b441e733da2bd7df6d14704b79f77da7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:85:a5:8f:c2:f2:ff:2d:33:a5:95:13:6f:24:
db:25:f5:05:34:33:5e:3b:05:31:91:29:e4:f6:c0:
dc:38:22:25:79:35:6f:62:0e:16:1c:9f:15:f2:e5:
36:9a:3d:d1:de:6e:d6:e7:29:e4:10:c3:74:5b:59:
9d:de:e5:95:e1:ac:ea:97:75:dd:9b:2d:63:1e:09:
50:33:b2:c6:c5:cc:67:44:d0:d7:97:2b:7b:23:b7:
53:bb:25:fd:2a:9d:f0:4f:c1:35:d3:77:78:f7:5e:
1d:fa:d0:81:03:38:6f:96:3f:f5:5d:a4:63:c9:aa:
ee:5f:7d:c7:c6:a5:6a:b7:50:9b:38:24:9f:a2:10:
73:2a:7b:de:35:1e:1e:96:30:f3:17:7d:bd:b7:8b:
ae:e8:92:87:46:9e:74:88:f7:0a:b3:af:c8:14:68:
66:80:58:8b:b5:68:4f:a5:a3:e8:1d:f3:60:52:61:
d2:66:57:00:a0:84:51:f1:64:5d:d4:6d:5e:45:d6:
28:10:04:e4:1a:fc:da:45:ac:f1:11:f5:30:9f:99:
0e:fc:69:a3:e1:c9:7c:55:52:66:e1:c9:cf:6e:02:
ba:68:30:f4:98:86:64:d8:d7:57:8e:51:8d:f3:13:
94:76:3d:21:ec:17:e6:70:85:56:bd:33:3a:54:d6:
e4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:AD:0A:4B:44:1E:73:3D:A2:BD:7D:F6:D1:47:04:B7:9F:77:DA:7A
X509v3 Authority Key Identifier:
keyid:78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:8e:d7:23:ea:0b:fb:28:a7:bc:7c:fa:b4:b1:97:f6:0b:23:
56:c1:bc:a0:dd:37:e4:82:55:22:de:7c:f5:00:ee:94:31:17:
6b:98:5d:2c:e9:3f:f5:a3:cf:48:56:3c:3f:93:a3:54:9e:3a:
5f:6b:9e:c9:d3:46:b7:17:f0:d6:82:83:05:42:ac:d9:e3:fe:
0b:ae:62:e5:0f:fd:1c:32:bd:06:56:90:e2:5f:58:6b:02:1a:
29:de:21:ac:56:1e:ce:2d:94:06:45:77:e9:13:8c:d4:eb:1f:
83:b9:1b:bd:de:58:1b:b0:f1:b3:7a:a8:95:d8:de:10:96:7d:
a3:81:1a:5e:2e:74:9d:99:b4:86:10:ac:0a:e4:76:3b:33:5d:
4e:b8:58:75:c2:89:6a:85:a1:eb:34:11:f2:9a:f4:6a:66:39:
0b:9a:21:75:b2:6a:f3:a3:4a:c8:a0:4c:d3:a1:6d:a6:61:e4:
96:52:8a:0a:d3:fd:52:db:d9:f0:1c:16:d4:48:1a:e0:5a:16:
18:de:e2:5b:b5:cd:8a:bd:f8:21:ed:d3:f3:26:94:19:1e:09:
d0:c2:e5:16:3d:0b:7d:ff:e6:87:d7:ab:60:0e:75:65:71:c4:
c3:25:1d:2e:cb:19:cb:d3:bd:1e:0a:44:a6:f6:49:36:ba:05:
27:ae:fa:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 05:45:37 2025 by rpki-client