Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft
File: EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft (raw, json)
Hash identifier: bOv2k6WixuL7V+KUUpQuBt5OCf1RqrcA7m3dH8iUpPk=
Subject key identifier: EB:12:F3:4A:7B:21:12:4B:53:88:6B:FC:8E:E2:B7:7D:7C:AE:D9:2E
Authority key identifier: 13:32:3E:AC:D7:7E:5C:A5:95:2D:D6:7C:28:F4:FD:90:D3:2A:FA:DF
Certificate issuer: /CN=13323eacd77e5ca5952dd67c28f4fd90d32afadf
Certificate serial: 0197B745B2B2187183EAECC16F02175BED9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft
Manifest number: 15AF
Signing time: Sat 28 Jun 2025 16:01:27 +0000
Manifest this update: Sat 28 Jun 2025 16:01:27 +0000
Manifest next update: Sun 29 Jun 2025 16:01:27 +0000
Files and hashes: 1: EzI-rNd-XKWVLdZ8KPT9kNMq-t8.crl (hash: e06Jj227Ls6Q1mAgesW0vAS7QJ1UZQEGtqNBmisF8fA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft
rsync://rpki.ripe.net/repository/DEFAULT/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:b2:b2:18:71:83:ea:ec:c1:6f:02:17:5b:ed:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13323eacd77e5ca5952dd67c28f4fd90d32afadf
Validity
Not Before: Jun 28 16:01:27 2025 GMT
Not After : Jun 29 16:01:27 2025 GMT
Subject: CN=eb12f34a7b21124b53886bfc8ee2b77d7caed92e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:19:67:27:3e:70:fe:bb:d2:49:f2:fe:01:d7:
1b:b9:37:c9:78:c2:7e:df:6f:f9:21:40:12:ed:fd:
2e:75:f5:12:1c:a9:ba:b2:1a:7f:e1:23:1c:9c:fe:
4f:ca:f1:31:19:5c:29:a2:5a:e8:41:e9:45:39:26:
2b:33:f1:e9:ac:70:d7:7a:73:12:38:56:6f:1b:1d:
b0:54:b5:f2:3f:c7:6d:d3:26:ac:24:ba:31:a6:6a:
86:83:90:1b:ff:b5:fe:cd:01:8f:4b:30:3d:61:3e:
73:ef:78:a6:9d:13:92:9c:1b:ce:79:9a:47:fb:52:
68:2f:88:db:6f:d9:85:c6:f7:1a:8b:6f:05:72:09:
e6:4b:94:a4:86:5d:65:68:fb:bf:52:6a:fa:60:96:
69:e7:0a:16:b1:a3:b7:84:61:89:71:1b:d3:b4:cf:
a0:08:6e:1f:f6:9b:68:f5:df:a4:61:31:15:d6:3a:
76:ab:a5:b0:d6:19:3f:80:6a:ad:cb:cc:47:2f:80:
a0:fb:3c:1f:fb:b0:68:ec:1d:c7:43:fc:46:61:9b:
f9:de:bc:59:7f:9c:3e:34:d4:7c:6d:16:c9:11:4f:
2c:eb:95:84:5f:c8:71:3a:08:9e:d0:8b:2f:be:8a:
6a:be:38:4e:d8:60:7a:cf:5c:8b:87:85:b7:68:88:
dc:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:12:F3:4A:7B:21:12:4B:53:88:6B:FC:8E:E2:B7:7D:7C:AE:D9:2E
X509v3 Authority Key Identifier:
keyid:13:32:3E:AC:D7:7E:5C:A5:95:2D:D6:7C:28:F4:FD:90:D3:2A:FA:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:4d:5d:44:89:95:83:b2:4f:90:d2:ba:50:08:4f:88:53:5c:
a2:64:e5:28:07:cb:51:a5:7b:0d:b9:56:0b:0d:ae:26:ea:64:
c8:98:ac:4a:27:a3:27:72:38:27:c8:4d:15:d8:83:32:8f:1e:
9c:c7:b6:15:c0:aa:2e:13:9c:17:8e:c1:36:35:85:69:64:dc:
75:a3:a2:56:7c:e3:7a:06:10:8e:74:3f:b2:fd:a2:06:cd:47:
c1:d5:97:58:db:ac:47:cf:37:4f:35:e6:44:06:00:90:69:a8:
e8:f2:ed:61:97:fe:7b:28:0d:30:3f:6f:e0:ee:8e:ff:8b:98:
7f:1a:f1:13:3a:01:8b:6e:0d:72:61:f5:84:d1:8e:47:47:73:
50:80:68:67:d9:c0:ad:5b:e3:63:35:5b:e0:f4:44:8f:b7:df:
a7:5f:b7:32:63:2b:e1:34:1c:fa:93:95:ef:6b:fe:29:c6:ec:
8d:f5:06:19:08:b8:94:0f:3e:e3:d4:26:50:48:89:ba:8d:81:
0e:00:42:ba:0d:16:1b:27:d2:2f:1a:ed:93:00:57:b2:6b:03:
1b:c4:ea:97:b1:8a:f2:35:5e:3b:08:85:d1:83:22:75:92:21:
02:e7:c0:61:a7:d5:e3:21:aa:9b:9b:ff:97:c4:c7:0e:0e:a8:
8e:89:44:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:38:18 2025 by rpki-client