Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
File: ePKehzghWcpegTh9fud-US-tFjY.mft (raw, json)
Hash identifier: REKl4fzbPB+4/mUvIEd05oIVJ7mVwDaYqi/RS1cP8Y0=
Subject key identifier: C3:5D:88:30:EF:AF:DB:5D:F6:F5:BC:DA:F0:B3:80:97:0A:8A:4D:91
Authority key identifier: 78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
Certificate issuer: /CN=78f29e87382159ca5e81387d7ee77e512fad1636
Certificate serial: 0197B821332DEC3AFAFC3EFAF6D22971D63B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
Manifest number: 0608
Signing time: Sat 28 Jun 2025 20:01:12 +0000
Manifest this update: Sat 28 Jun 2025 20:01:12 +0000
Manifest next update: Sun 29 Jun 2025 20:01:12 +0000
Files and hashes: 1: ePKehzghWcpegTh9fud-US-tFjY.crl (hash: 4TIjNIlJQfF3eRUxMoN8gwScU+CuIamwGjEJZCADbnQ=)
2: fcVvjwRag1hWvR-DlxtRjfvHfxQ.roa (hash: BUMcpqrIqy6kZ9QN60TGmYHXUDk5mCKXlvZBSwSv8eU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:33:2d:ec:3a:fa:fc:3e:fa:f6:d2:29:71:d6:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f29e87382159ca5e81387d7ee77e512fad1636
Validity
Not Before: Jun 28 20:01:12 2025 GMT
Not After : Jun 29 20:01:12 2025 GMT
Subject: CN=c35d8830efafdb5df6f5bcdaf0b380970a8a4d91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:bc:73:d9:83:7f:f0:9f:f1:48:78:6f:89:4b:
9c:9e:05:89:ad:17:9a:7c:7e:71:4e:c8:48:72:8f:
27:0c:ac:b8:19:9d:55:58:1d:f6:4d:79:b5:fc:b8:
f5:6e:73:34:1e:c9:c9:62:27:9f:73:de:13:ef:28:
ca:98:46:88:2a:47:3d:0f:98:0d:ba:73:d4:84:6e:
98:58:8e:d9:64:23:be:4e:89:a5:ed:1c:61:24:0b:
80:e7:eb:59:ac:ce:be:24:bb:35:4f:2f:8d:5b:19:
84:32:d7:21:92:37:08:3b:83:8d:76:52:c8:e0:7b:
21:51:c3:2c:b1:44:c5:a2:39:ef:64:87:5b:0e:c1:
98:9e:af:b9:2a:4e:90:c2:5d:55:11:3d:56:e7:fe:
64:46:26:8d:4d:94:29:b1:37:83:f5:6c:05:7f:76:
e6:88:2b:f2:f2:1f:4a:c5:1f:bc:c2:1c:b2:2b:4b:
71:e2:ea:e5:48:88:2e:89:a5:b4:d2:ed:ea:0a:e7:
d5:1f:4a:ba:f9:84:32:4e:60:34:24:c0:fb:70:e6:
b2:17:ce:3b:1d:83:33:d4:5c:6f:4c:5e:28:e5:f8:
63:a5:0f:88:37:c2:f3:03:e8:9c:bf:05:6c:5d:97:
74:22:0d:b8:69:ab:81:2f:62:c2:b2:3e:ce:57:23:
c0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:5D:88:30:EF:AF:DB:5D:F6:F5:BC:DA:F0:B3:80:97:0A:8A:4D:91
X509v3 Authority Key Identifier:
keyid:78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:43:4d:d5:6c:60:35:2d:ab:c7:32:e2:37:37:e1:e5:3b:6f:
23:3d:3b:d7:37:c1:18:b8:15:85:80:fe:5d:86:41:79:1c:5d:
01:78:24:c6:bd:f9:eb:ed:95:81:6f:eb:7a:f3:d7:b5:98:11:
ac:6e:f7:7b:68:4d:f2:24:16:73:04:5e:75:bd:43:80:06:1b:
3c:54:df:99:b8:05:9d:94:98:08:cf:3e:1b:de:c5:11:57:78:
cc:eb:d2:8a:90:bd:9a:5e:8d:b7:8b:0d:93:2c:26:fb:72:95:
36:68:db:d7:95:71:96:5a:4e:21:3e:72:1c:44:bf:82:b4:24:
0e:7c:79:2a:31:06:79:3b:55:dc:9e:89:59:74:d6:f7:e0:6f:
0c:dc:f4:71:8b:93:29:59:66:5f:33:e5:22:44:2c:98:35:e8:
b0:53:ed:63:b2:e1:45:2e:4b:79:b2:a1:b0:be:85:c2:f0:0f:
1d:c7:08:88:09:1d:11:41:84:a5:89:f4:85:6f:fc:7b:b3:10:
42:06:14:04:6d:a6:56:32:54:7b:c1:d2:5e:43:3e:73:76:2a:
33:b3:d3:5a:fb:35:49:73:69:ec:7a:aa:c9:aa:8c:89:d9:2e:
ae:f5:ea:2d:e6:64:22:86:78:0c:64:24:72:85:05:d8:c4:6e:
44:27:55:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:04:41 2025 by rpki-client