Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft
File: 9Y3yxGnJeIlfhFgCTFBugByPsho.mft (raw, json)
Hash identifier: ncyqi25Y48TQRVvAg/1qAbb3P0EY7appctrNjpIg4bM=
Subject key identifier: 41:11:A6:CD:27:03:2E:EE:30:59:C3:B9:58:87:0D:62:3D:64:CD:2D
Authority key identifier: F5:8D:F2:C4:69:C9:78:89:5F:84:58:02:4C:50:6E:80:1C:8F:B2:1A
Certificate issuer: /CN=f58df2c469c978895f8458024c506e801c8fb21a
Certificate serial: 019511A26672530B80329B215D0E0123F13E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Y3yxGnJeIlfhFgCTFBugByPsho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft
Manifest number: 11DE
Signing time: Mon 17 Feb 2025 02:00:10 +0000
Manifest this update: Mon 17 Feb 2025 02:00:10 +0000
Manifest next update: Tue 18 Feb 2025 02:00:10 +0000
Files and hashes: 1: 9Y3yxGnJeIlfhFgCTFBugByPsho.crl (hash: YNjxplnACl9dJedR5iGhr9FugNjJKB6b7wA1vP+amJM=)
2: uTgF90O7aHLO_G7cSzTbj_nzdao.roa (hash: lwZMpyCYU1xDcN6IVFSHMP6G+054GMvXirawB6lbtsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft
rsync://rpki.ripe.net/repository/DEFAULT/9Y3yxGnJeIlfhFgCTFBugByPsho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:66:72:53:0b:80:32:9b:21:5d:0e:01:23:f1:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f58df2c469c978895f8458024c506e801c8fb21a
Validity
Not Before: Feb 17 02:00:10 2025 GMT
Not After : Feb 18 02:00:10 2025 GMT
Subject: CN=4111a6cd27032eee3059c3b958870d623d64cd2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:0f:4a:10:e7:1f:95:82:a4:cb:95:32:c1:d7:
9a:75:07:e7:c7:c0:b1:f1:3c:3e:f2:4a:db:93:b1:
97:85:46:8b:f6:19:39:f2:db:b5:6e:0a:65:6b:9b:
b9:d3:c0:94:dc:62:dd:c7:0d:6a:09:7d:26:bc:57:
96:38:6d:00:5d:e3:1a:3d:46:ed:e3:14:55:43:94:
c0:90:c7:f6:b0:8d:2f:7b:b9:20:b0:f4:eb:36:a4:
3d:52:7d:2c:04:cd:91:62:7a:49:d9:84:9d:1f:58:
8b:3d:16:79:12:60:5d:ca:c2:68:04:73:2a:76:10:
df:51:be:64:7a:c7:e1:e8:fb:31:b5:e2:7c:a9:76:
f4:a6:53:c8:2f:3c:b7:96:14:9e:5f:f9:7d:3f:41:
8d:86:a7:ff:ef:4e:b6:15:10:96:da:74:b8:96:84:
98:ff:d8:2a:9c:50:24:60:d7:88:36:04:a9:cc:00:
c4:f0:64:d5:26:6e:fa:50:2f:88:2b:f5:13:86:8a:
0e:28:5b:06:44:e9:62:76:20:d3:b3:5e:8a:3e:37:
f0:e8:02:fe:34:87:e7:1c:9a:a4:75:2f:68:1e:71:
2d:1f:84:06:d9:75:ee:01:31:f1:1e:45:e8:e0:95:
3a:25:15:80:0d:60:f7:0d:c4:e9:7d:40:c3:eb:6d:
1a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:11:A6:CD:27:03:2E:EE:30:59:C3:B9:58:87:0D:62:3D:64:CD:2D
X509v3 Authority Key Identifier:
keyid:F5:8D:F2:C4:69:C9:78:89:5F:84:58:02:4C:50:6E:80:1C:8F:B2:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Y3yxGnJeIlfhFgCTFBugByPsho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:3c:2d:c2:bc:84:26:de:75:65:11:bb:13:9c:4d:5c:3e:a6:
4b:98:d8:21:fe:83:3f:fb:96:c8:0d:3e:ee:43:a3:a6:34:75:
20:a8:4c:de:66:60:78:f8:cc:ac:d6:7e:e1:15:bb:ed:ec:80:
9b:17:d3:e6:de:0a:67:64:85:80:b2:89:16:9a:c0:17:05:69:
c2:81:ac:98:07:0a:3b:37:49:cf:dc:1d:c7:59:93:6c:43:2a:
f6:73:97:45:e8:48:08:18:6d:ff:8f:de:d7:69:88:e8:94:b4:
52:75:c1:14:de:6d:87:b3:a1:9a:bb:c3:97:4b:17:40:9b:14:
30:36:59:b2:f3:cf:9a:8f:b3:a1:6e:f2:a5:41:60:c7:b5:98:
6a:66:4f:58:ae:14:a4:3d:ec:fb:ce:e0:dd:c2:5d:fe:f8:b1:
d5:ef:c7:17:1d:c6:86:e2:a0:79:c6:35:5e:4f:ce:80:54:3d:
a1:b5:43:9f:c4:bc:d0:e4:7c:f6:f1:cf:2e:c9:42:9f:90:f8:
79:aa:79:35:6e:2d:a4:c3:de:be:f9:6f:46:ca:74:6f:cc:07:
ee:f9:a4:05:9e:39:35:10:f7:0c:b6:66:5c:2e:c9:bf:9b:1c:
a2:10:2c:09:3f:da:b1:30:59:0d:41:c5:2b:c6:86:c0:e0:61:
07:2b:bd:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:40 2025 by rpki-client