Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
File: e20oQEBEI571gkLyEOCxZmfrQNA.mft (raw, json)
Hash identifier: q5ite3p/ByvKS+Zx7sDlm3/chzaQjNYxCvJoKCLwf/I=
Subject key identifier: 8F:22:C0:A4:00:9D:43:44:83:36:01:D9:2F:A1:81:A4:3B:15:85:34
Authority key identifier: 7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0
Certificate issuer: /CN=7b6d28404044239ef58242f210e0b16667eb40d0
Certificate serial: 0197C681DB2F02CA7551A5145FF210369289
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
Manifest number: 154D
Signing time: Tue 01 Jul 2025 15:01:28 +0000
Manifest this update: Tue 01 Jul 2025 15:01:28 +0000
Manifest next update: Wed 02 Jul 2025 15:01:28 +0000
Files and hashes: 1: e20oQEBEI571gkLyEOCxZmfrQNA.crl (hash: AKA7Z0BaHG3D4lCcu2P0ey1fnh9ny81JLdgBVlRjHvc=)
2: hlbCnpGhMRluMY_1waDMmeV9vY4.roa (hash: KZsIHpuRlGx7ybmtLKdiNmONLiSIwlKsEPr24QJ/98Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 15:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:81:db:2f:02:ca:75:51:a5:14:5f:f2:10:36:92:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b6d28404044239ef58242f210e0b16667eb40d0
Validity
Not Before: Jul 1 15:01:28 2025 GMT
Not After : Jul 2 15:01:28 2025 GMT
Subject: CN=8f22c0a4009d4344833601d92fa181a43b158534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:1d:a9:bf:c9:5f:d0:8d:f4:b0:a7:4b:7a:1e:
84:57:37:a4:98:f8:78:46:c1:57:02:be:d0:8a:70:
b6:71:70:01:b6:c3:1c:05:f5:00:7b:70:51:66:bb:
8a:ba:19:07:47:3c:63:7b:93:7a:1a:27:26:e1:a0:
56:1e:86:ea:de:07:ac:4c:30:6f:99:b4:7d:f4:9a:
7d:f5:4d:ec:b4:02:02:c0:ca:f0:3a:b3:4e:18:ff:
89:cd:20:55:52:57:c3:50:75:df:24:35:fb:f2:92:
15:2a:54:54:7d:79:bb:b3:6b:b9:e8:bb:51:1e:97:
8d:d0:52:8f:f1:52:4e:96:84:8f:8d:4c:bc:35:2b:
0a:9d:5a:51:35:f6:ee:08:a8:f2:cc:0f:bb:b9:7d:
f2:e9:2b:ab:86:75:1e:cb:8d:f0:a2:c1:c0:4d:01:
52:eb:09:9e:8d:89:5a:b8:71:23:95:06:ed:a3:9d:
92:51:6f:3f:5c:ff:b3:e7:bf:59:16:0f:97:e1:8c:
f8:0f:cd:1a:36:55:df:c2:77:57:e8:e8:fc:2d:27:
9a:78:68:07:6e:2f:7c:c9:de:40:1e:fe:95:4d:e1:
5d:8a:55:d0:a6:c1:7f:a2:e8:5d:d3:ee:f9:24:3b:
60:3c:1a:8d:75:9b:b9:3f:d5:1a:18:56:a3:ba:2d:
7c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:22:C0:A4:00:9D:43:44:83:36:01:D9:2F:A1:81:A4:3B:15:85:34
X509v3 Authority Key Identifier:
keyid:7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:4f:06:72:6b:46:bd:8a:86:2c:cb:d1:78:11:f1:03:dd:9a:
b0:34:09:16:85:7d:e1:51:16:c4:aa:9f:bc:82:d2:c4:f7:86:
79:b4:19:e7:01:f3:13:0f:73:00:87:5d:25:46:10:80:5e:15:
84:25:8f:22:35:1a:69:20:01:52:77:aa:37:6b:28:94:dc:91:
e1:5e:03:00:14:a4:5e:11:15:94:bb:df:5d:72:0a:26:d7:1a:
b8:a5:6e:12:7b:7e:4d:ad:8b:31:22:02:e2:31:85:7b:0c:04:
83:8d:c9:bc:6d:be:23:ca:1b:d6:51:fb:b7:55:5b:96:55:a6:
4d:dc:d2:ff:99:ff:09:34:29:00:6b:ae:0c:e6:72:84:58:81:
5c:13:4d:0a:88:7c:c4:2b:15:c7:07:76:57:f3:51:40:56:5b:
f6:a5:61:ea:58:22:8f:2c:37:92:53:16:85:af:aa:4f:47:db:
97:53:0f:b1:1c:d8:06:8e:27:39:02:c1:e2:f4:6c:53:71:6f:
ed:10:10:f5:36:4d:e5:0d:e2:c2:06:e7:07:a0:a5:b0:f9:d4:
4d:1c:76:c4:eb:1d:9b:ab:59:40:da:b1:33:cd:f3:cc:de:f1:
4e:20:44:59:24:82:b8:8d:d1:1c:98:fe:54:63:f3:9d:b4:7f:
56:ca:0d:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 20:48:13 2025 by rpki-client