Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2cf926-810e-411e-bd5b-161e513ebdc2/1/PyF3o-hsg5z9GT27Ru2oCH2CFBo.mft
File: PyF3o-hsg5z9GT27Ru2oCH2CFBo.mft (raw, json)
Hash identifier: 29I4w59CQa/zOb+mhBM2TdSBjFT51Z1SbZwtEK2FrYE=
Subject key identifier: 52:33:CB:B1:D6:81:EE:1F:33:0F:DB:2D:99:2E:DA:20:4A:5B:98:AA
Authority key identifier: 3F:21:77:A3:E8:6C:83:9C:FD:19:3D:BB:46:ED:A8:08:7D:82:14:1A
Certificate issuer: /CN=3f2177a3e86c839cfd193dbb46eda8087d82141a
Certificate serial: 01965537B1CB2F6DA8AD1FA3AAC3F44F68DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PyF3o-hsg5z9GT27Ru2oCH2CFBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2cf926-810e-411e-bd5b-161e513ebdc2/1/PyF3o-hsg5z9GT27Ru2oCH2CFBo.mft
Manifest number: 11EC
Signing time: Sun 20 Apr 2025 22:00:35 +0000
Manifest this update: Sun 20 Apr 2025 22:00:35 +0000
Manifest next update: Mon 21 Apr 2025 22:00:35 +0000
Files and hashes: 1: PyF3o-hsg5z9GT27Ru2oCH2CFBo.crl (hash: Mnp4ZHaflo8Lf/kyYG5vPOJA63VL1QVD+zAwrwqPSJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2cf926-810e-411e-bd5b-161e513ebdc2/1/PyF3o-hsg5z9GT27Ru2oCH2CFBo.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/2cf926-810e-411e-bd5b-161e513ebdc2/1/PyF3o-hsg5z9GT27Ru2oCH2CFBo.mft
rsync://rpki.ripe.net/repository/DEFAULT/PyF3o-hsg5z9GT27Ru2oCH2CFBo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:b1:cb:2f:6d:a8:ad:1f:a3:aa:c3:f4:4f:68:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f2177a3e86c839cfd193dbb46eda8087d82141a
Validity
Not Before: Apr 20 22:00:35 2025 GMT
Not After : Apr 21 22:00:35 2025 GMT
Subject: CN=5233cbb1d681ee1f330fdb2d992eda204a5b98aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:55:8f:27:86:93:cf:5e:46:49:62:f7:a8:27:
b2:89:59:48:f3:dc:c5:29:87:53:3f:b4:36:27:92:
55:b3:82:48:5e:50:0b:29:97:38:7d:e1:41:69:28:
64:51:4d:34:ba:04:16:25:d2:45:79:52:71:3a:c3:
9e:af:42:4a:d5:62:46:7b:f6:8e:59:11:16:c3:d7:
76:e1:f2:62:b7:1a:14:ce:de:17:61:5e:54:57:54:
3f:9b:6e:1c:06:0c:d7:d1:8a:d4:eb:58:79:dd:cb:
78:49:1b:76:fc:36:03:ae:01:ed:ab:cf:bd:4b:b8:
18:90:6e:f4:72:73:16:15:2a:f1:61:4d:c3:b1:0e:
ea:74:34:5f:97:00:a2:6e:18:0a:5f:ac:4d:27:c4:
06:e3:f4:a3:18:ac:b2:50:b8:f5:db:55:3c:53:ae:
62:64:2a:5e:72:a1:23:49:0a:a1:25:30:9c:f5:e7:
f9:40:2f:a6:73:26:66:6f:fe:21:d6:bf:c4:9f:26:
99:f9:05:e2:e6:d5:64:64:28:d7:47:2f:14:7e:9a:
c5:33:ec:99:c6:2c:d0:75:89:af:8f:82:70:c0:b0:
c1:a0:1b:65:ae:81:7f:a1:7e:61:0e:24:cf:f7:16:
64:35:89:e1:50:ef:f5:70:2a:6a:9f:ab:9c:45:d6:
d5:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:33:CB:B1:D6:81:EE:1F:33:0F:DB:2D:99:2E:DA:20:4A:5B:98:AA
X509v3 Authority Key Identifier:
keyid:3F:21:77:A3:E8:6C:83:9C:FD:19:3D:BB:46:ED:A8:08:7D:82:14:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PyF3o-hsg5z9GT27Ru2oCH2CFBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2cf926-810e-411e-bd5b-161e513ebdc2/1/PyF3o-hsg5z9GT27Ru2oCH2CFBo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2cf926-810e-411e-bd5b-161e513ebdc2/1/PyF3o-hsg5z9GT27Ru2oCH2CFBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:8b:ab:e3:3b:92:c4:bb:49:47:bd:a7:5c:a0:a3:46:5d:f1:
5c:f7:44:4d:72:cb:92:5a:01:3e:e6:c8:eb:09:be:07:dd:1d:
07:7a:be:d5:ec:bd:b0:d2:84:81:11:2e:cd:a4:5a:f4:ab:e0:
b3:94:76:eb:08:fd:74:9c:1d:88:f1:c5:09:25:e9:e1:4a:a0:
e6:12:00:41:37:0c:02:4e:6a:41:a1:79:3f:03:f2:b6:bb:f5:
61:8f:5e:84:dc:5a:aa:e4:1f:31:24:f6:56:0f:d7:24:97:3f:
0a:4b:40:21:9f:b3:d4:42:75:31:13:9b:4c:17:25:57:db:82:
36:6c:fa:6a:9a:24:23:d9:09:1f:a3:73:00:2c:84:ce:9f:d1:
71:46:2f:63:b8:4e:0e:86:7f:3b:23:e6:b8:91:d0:33:b2:31:
c0:70:3c:74:6a:82:50:a1:75:76:e9:e4:e6:5f:98:ec:f4:f6:
37:a6:8e:c4:06:4f:03:0b:ec:74:3d:1b:26:48:75:66:60:90:
00:89:37:ab:17:da:ec:58:b7:71:f9:1e:ea:53:40:a0:9a:37:
83:a3:c2:59:d4:68:d3:5b:cb:df:59:66:fd:1c:a5:8a:1c:c9:
db:fe:42:d7:ca:cd:a2:8c:7a:38:8a:e3:66:97:4c:c6:80:90:
b5:94:39:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:51:58 2025 by rpki-client