Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft
File: 9Y3yxGnJeIlfhFgCTFBugByPsho.mft (raw, json)
Hash identifier: yeLTUy5eHtqF4tWmwB/BxV/krdpxa2znCdr8nRhO0P0=
Subject key identifier: BF:B7:9C:4A:E0:BF:57:DE:E5:1A:C3:A6:9D:33:95:9B:0B:F8:32:31
Authority key identifier: F5:8D:F2:C4:69:C9:78:89:5F:84:58:02:4C:50:6E:80:1C:8F:B2:1A
Certificate issuer: /CN=f58df2c469c978895f8458024c506e801c8fb21a
Certificate serial: 01974967D6FB9E9491DC18AD54D1DAAC2F3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Y3yxGnJeIlfhFgCTFBugByPsho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft
Manifest number: 1304
Signing time: Sat 07 Jun 2025 08:00:31 +0000
Manifest this update: Sat 07 Jun 2025 08:00:31 +0000
Manifest next update: Sun 08 Jun 2025 08:00:31 +0000
Files and hashes: 1: 9Y3yxGnJeIlfhFgCTFBugByPsho.crl (hash: TlPz1k1eppOGBdDCZr1+b8sSeix+xEZE1wE2brudC8I=)
2: uTgF90O7aHLO_G7cSzTbj_nzdao.roa (hash: lwZMpyCYU1xDcN6IVFSHMP6G+054GMvXirawB6lbtsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft
rsync://rpki.ripe.net/repository/DEFAULT/9Y3yxGnJeIlfhFgCTFBugByPsho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:d6:fb:9e:94:91:dc:18:ad:54:d1:da:ac:2f:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f58df2c469c978895f8458024c506e801c8fb21a
Validity
Not Before: Jun 7 08:00:31 2025 GMT
Not After : Jun 8 08:00:31 2025 GMT
Subject: CN=bfb79c4ae0bf57dee51ac3a69d33959b0bf83231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4f:d7:eb:4f:87:64:3e:a1:d1:c6:2f:dd:c8:
45:78:04:c4:cc:b0:0b:dd:5d:b6:a5:7f:71:bf:5a:
87:e8:0a:88:d8:15:01:b6:5a:af:42:44:e3:16:af:
e3:24:81:fd:a4:8f:dd:da:6d:65:f3:e0:f8:6c:b7:
bb:ac:3c:7d:25:33:05:e8:1a:d5:69:f3:56:80:47:
71:16:b9:e7:e0:c4:d0:71:ea:be:9d:c0:fa:b5:7d:
57:84:8d:67:3e:99:1d:22:0c:23:c2:f5:bc:17:4f:
9b:c5:0c:df:e2:a0:a8:33:d7:16:4f:22:8a:06:22:
3e:fc:e4:b1:d6:fd:df:20:6d:ee:37:4b:c9:22:44:
8f:b4:ab:fa:dd:54:d0:a1:b9:63:99:45:ee:c0:80:
b5:40:2c:0c:26:36:f5:ac:51:af:f8:fa:6a:b3:a7:
0c:e2:73:20:c1:ac:f9:72:85:59:e5:8e:f9:7a:6e:
a1:13:a8:74:df:97:97:ce:39:e6:f6:8e:89:b7:2f:
e4:4a:5a:9e:32:c0:3d:26:84:99:e1:97:2f:67:56:
60:1a:22:c7:78:cd:14:16:37:8a:b1:26:88:82:8a:
a3:36:89:fa:12:41:60:a5:f8:a5:11:8b:e5:f9:26:
60:26:13:f3:c6:71:ea:0c:50:f1:d5:19:55:db:58:
2f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:B7:9C:4A:E0:BF:57:DE:E5:1A:C3:A6:9D:33:95:9B:0B:F8:32:31
X509v3 Authority Key Identifier:
keyid:F5:8D:F2:C4:69:C9:78:89:5F:84:58:02:4C:50:6E:80:1C:8F:B2:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Y3yxGnJeIlfhFgCTFBugByPsho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:16:67:c9:9e:ae:21:a9:ee:f2:58:c7:dc:68:58:e6:ad:91:
4a:48:f3:b6:7f:16:28:2f:c2:c1:61:74:89:10:8e:9c:da:ae:
ee:27:24:f6:a2:98:f6:51:a9:96:2c:26:e7:26:95:a3:eb:5b:
1c:88:bc:12:65:69:61:a1:e3:38:f3:18:af:91:ba:9b:63:79:
ce:49:51:0d:31:4f:4a:32:08:aa:d1:6d:05:94:48:01:4e:40:
39:1a:f5:f6:2e:a2:44:c6:ca:e0:4a:7a:69:4b:3c:27:ba:dc:
5f:cc:39:35:ff:9a:fc:82:ca:d5:d8:6c:a2:40:56:71:db:24:
b3:b9:8c:b5:2a:9b:77:5c:c0:e9:d3:da:2e:e1:c6:c4:61:39:
3e:22:24:d0:a6:82:58:b6:c9:7e:86:ad:41:24:34:f1:23:7b:
30:59:82:7b:9a:c8:ee:c2:c8:8d:ea:09:68:61:be:c5:51:f0:
73:b6:68:00:66:33:7c:76:d5:87:bd:c6:4b:5c:77:96:16:5b:
a3:07:01:0c:df:d9:cf:0e:61:4c:a5:39:7e:26:03:85:eb:c6:
8c:f4:97:09:2f:f2:1e:2a:84:82:72:e8:fb:a7:f2:cb:3d:49:
15:b7:5f:74:9e:52:7f:31:30:4e:67:8c:41:d8:15:8f:32:dc:
03:0c:24:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:49:43 2025 by rpki-client