Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft
File: 9Y3yxGnJeIlfhFgCTFBugByPsho.mft (raw, json)
Hash identifier: ejqsBvYeA6UOCcum9bsGLuPXYESEPHUoxyxZpPw/4aQ=
Subject key identifier: A2:09:DA:FA:82:12:A6:0B:98:7B:5E:2A:00:BB:13:CF:15:7E:EF:3A
Authority key identifier: F5:8D:F2:C4:69:C9:78:89:5F:84:58:02:4C:50:6E:80:1C:8F:B2:1A
Certificate issuer: /CN=f58df2c469c978895f8458024c506e801c8fb21a
Certificate serial: 019642C354B5C0236B4939F9729322EDA53C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Y3yxGnJeIlfhFgCTFBugByPsho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft
Manifest number: 127C
Signing time: Thu 17 Apr 2025 08:00:19 +0000
Manifest this update: Thu 17 Apr 2025 08:00:19 +0000
Manifest next update: Fri 18 Apr 2025 08:00:19 +0000
Files and hashes: 1: 9Y3yxGnJeIlfhFgCTFBugByPsho.crl (hash: KSVyLSKi+A99DBDnEBruTXCZ1BJVCMl4EH+Le11lBBA=)
2: uTgF90O7aHLO_G7cSzTbj_nzdao.roa (hash: lwZMpyCYU1xDcN6IVFSHMP6G+054GMvXirawB6lbtsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft
rsync://rpki.ripe.net/repository/DEFAULT/9Y3yxGnJeIlfhFgCTFBugByPsho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:42:c3:54:b5:c0:23:6b:49:39:f9:72:93:22:ed:a5:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f58df2c469c978895f8458024c506e801c8fb21a
Validity
Not Before: Apr 17 08:00:19 2025 GMT
Not After : Apr 18 08:00:19 2025 GMT
Subject: CN=a209dafa8212a60b987b5e2a00bb13cf157eef3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:4a:5e:c9:5b:6a:40:fe:d1:80:11:13:d2:cf:
9a:f5:b6:61:42:76:87:86:76:d6:ad:7e:02:e3:29:
b3:97:29:45:14:b5:c8:94:7a:08:02:aa:00:3f:83:
62:44:08:7e:c3:43:fd:f7:36:96:81:49:e8:1a:ce:
57:7f:6b:a5:cf:fb:1d:12:34:b8:6e:83:38:96:e1:
fa:fa:96:bd:f9:33:c4:fe:c0:18:3e:55:7e:38:02:
08:bb:1b:a9:b6:69:40:e8:f1:ec:08:54:68:2b:28:
2f:ec:0d:9f:56:f4:2e:2b:e1:88:60:b1:12:6a:d4:
73:47:c7:60:6f:71:6e:d1:f4:c1:37:e4:de:12:ba:
4c:30:12:ee:e0:59:0b:1e:82:96:0f:7f:f1:04:e0:
d0:a6:5e:60:bd:c5:87:5e:2d:de:94:36:dc:f9:d8:
22:c9:9f:41:3a:bf:b5:0c:cd:08:0a:7d:bb:7a:ae:
79:74:fa:ec:62:61:a3:2e:c2:66:57:6d:83:c7:dc:
92:9b:08:01:ed:7c:0f:f1:db:3b:3a:9d:18:46:5b:
1c:4c:b7:68:35:52:22:15:d7:27:2c:8d:64:93:88:
76:19:24:e4:d0:10:11:7f:67:75:e3:ae:08:cb:12:
08:27:bb:5a:3c:7e:92:db:d3:61:23:bc:ec:1f:7f:
54:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:09:DA:FA:82:12:A6:0B:98:7B:5E:2A:00:BB:13:CF:15:7E:EF:3A
X509v3 Authority Key Identifier:
keyid:F5:8D:F2:C4:69:C9:78:89:5F:84:58:02:4C:50:6E:80:1C:8F:B2:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Y3yxGnJeIlfhFgCTFBugByPsho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:6d:4f:d8:7b:54:b5:ac:32:05:c1:7d:54:70:cf:c7:c5:9c:
23:0e:df:fc:4d:50:0c:41:92:20:a6:fc:8f:7b:91:f4:70:31:
5f:71:a9:2f:b6:2d:d2:63:86:5f:05:1c:00:80:04:98:a6:bf:
f6:c6:36:78:2d:dc:45:55:9b:28:b0:98:f5:80:1a:54:67:07:
e5:2c:51:ba:85:35:92:81:32:73:1c:c8:5e:18:a2:eb:54:26:
e8:cb:af:78:4d:27:84:55:b5:89:0c:8d:99:e3:7f:23:c7:6d:
7a:af:48:0d:e5:2d:04:fb:73:d3:ba:89:2d:43:41:6a:89:a6:
a6:b4:ab:e2:d4:70:82:18:36:3d:73:c3:b9:96:37:57:86:30:
57:22:f8:a3:09:b1:36:f9:b2:ae:88:5c:c1:f2:ed:ef:80:b2:
43:a4:69:63:3d:b2:c2:7b:f5:7c:16:46:7a:c4:68:e0:a4:97:
f4:e2:3b:5d:4b:4a:9c:d8:51:a2:b0:c5:20:e5:e9:69:06:31:
dd:f5:95:0b:02:49:bc:b9:44:c3:60:a2:87:dc:50:5a:0b:dc:
18:b6:96:99:5f:80:88:a1:2c:e9:df:58:d4:59:6e:c3:46:cf:
1b:b4:d6:67:96:04:f1:e6:99:5d:ff:d0:58:23:49:9a:db:7e:
41:7f:a6:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 12:20:42 2025 by rpki-client