Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
File: e20oQEBEI571gkLyEOCxZmfrQNA.mft (raw, json)
Hash identifier: 1QIraVoV+wlrBFV1pe8+MrTh2lATvfHheBwDqqq41Ls=
Subject key identifier: 9B:87:60:7C:37:76:8B:77:BD:A1:A1:09:CD:67:B9:05:07:7F:8A:51
Authority key identifier: 7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0
Certificate issuer: /CN=7b6d28404044239ef58242f210e0b16667eb40d0
Certificate serial: 0196D13E0A6C917A0A3FFD0E7ECE1E9EAEC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
Manifest number: 14CE
Signing time: Thu 15 May 2025 00:00:26 +0000
Manifest this update: Thu 15 May 2025 00:00:26 +0000
Manifest next update: Fri 16 May 2025 00:00:26 +0000
Files and hashes: 1: e20oQEBEI571gkLyEOCxZmfrQNA.crl (hash: vyUz0yrQS9yznKvg+01FxNP4oKSdFS8fRIREK2nAPxE=)
2: hlbCnpGhMRluMY_1waDMmeV9vY4.roa (hash: KZsIHpuRlGx7ybmtLKdiNmONLiSIwlKsEPr24QJ/98Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d1:3e:0a:6c:91:7a:0a:3f:fd:0e:7e:ce:1e:9e:ae:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b6d28404044239ef58242f210e0b16667eb40d0
Validity
Not Before: May 15 00:00:26 2025 GMT
Not After : May 16 00:00:26 2025 GMT
Subject: CN=9b87607c37768b77bda1a109cd67b905077f8a51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:56:64:3d:3f:06:17:a3:c0:bf:5d:9b:ea:15:
9e:79:aa:9a:99:2b:62:3c:22:da:8b:bf:1e:00:13:
7e:87:ca:13:1a:6e:a4:de:cd:4e:ee:d0:80:45:18:
35:65:c9:e0:54:f3:98:fd:0d:ba:77:d8:79:91:54:
57:a8:2b:b0:a6:56:42:28:c3:d2:2d:b3:6e:d0:45:
bc:d9:8c:34:20:bb:aa:32:34:2b:08:78:73:b6:42:
69:33:cc:67:d3:b3:95:38:46:47:4b:25:80:ba:66:
11:89:8b:61:53:4b:34:63:f8:b2:f2:c6:5c:46:7f:
68:25:24:8e:cf:39:43:51:0e:80:85:1e:b5:b1:7f:
c1:fa:52:ff:4b:95:76:54:b8:52:a1:c6:9d:44:4b:
83:69:19:b9:f4:10:aa:e7:9f:ad:6a:f3:58:c6:ec:
06:c1:ed:90:20:29:25:ba:7c:d0:ee:2e:53:77:66:
63:30:52:77:b2:27:8c:7f:c3:4f:8d:d6:8d:fc:ac:
47:a0:dd:e8:1b:be:7d:41:6c:7b:7d:c5:d0:7f:76:
b6:de:fc:c3:ee:ec:b3:22:23:64:b3:8f:f1:96:6b:
8d:6b:d1:c5:80:38:b9:52:1b:3e:ca:2f:0f:72:ee:
23:c2:28:62:24:7a:00:19:4f:c0:ed:f3:af:f8:08:
b7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:87:60:7C:37:76:8B:77:BD:A1:A1:09:CD:67:B9:05:07:7F:8A:51
X509v3 Authority Key Identifier:
keyid:7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:b4:29:4b:5f:0b:3a:0b:ee:e4:ab:ae:50:ce:8e:75:77:a8:
b3:bb:26:33:11:56:36:46:fe:e2:c3:70:70:2f:3c:b8:d0:3f:
f9:8f:d6:ab:be:cd:3e:b5:f7:a6:4d:22:2d:b5:b7:28:22:59:
4e:a9:b8:b0:85:37:e4:2e:a9:81:40:37:e0:49:5b:e6:02:97:
31:55:ff:2c:18:66:0b:81:11:1c:4f:6f:81:f4:58:25:9e:f5:
c0:d1:f2:e1:82:9b:ed:0d:38:28:e2:dd:20:ac:c7:26:b5:72:
0d:13:96:c0:4e:c9:a3:78:78:79:95:f2:63:5b:74:c4:68:0f:
30:a2:8d:f7:c2:03:a9:40:07:24:a9:c3:c2:4f:be:68:f1:08:
e0:66:64:23:cc:19:9e:54:6b:61:28:d9:cc:18:6e:fc:6a:95:
fd:ec:d7:5b:03:7a:42:ba:6f:19:97:7f:94:ae:65:6b:dc:d5:
82:49:5b:06:c2:62:60:54:a5:1a:e4:86:b7:4f:40:07:08:77:
0a:8a:e4:f2:2f:58:02:65:11:de:0f:b2:c4:b1:b8:67:0a:fd:
75:63:93:92:dc:77:1d:1b:c5:f1:50:08:db:9d:ec:c2:4a:dc:
a5:ae:bb:4a:ce:c4:80:e4:2e:77:e5:17:c8:ee:f5:2f:a5:2b:
0e:b9:84:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 08:12:13 2025 by rpki-client