Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft
File: EsShfSBma32NKx_-GKRoevkmIY8.mft (raw, json)
Hash identifier: 1fG6crGUo7AOwqAyTF34YOFgIorlB6oVd/TUmw/iUlc=
Subject key identifier: 5C:F8:C2:21:07:02:C7:92:80:58:18:8D:21:76:50:5C:33:46:23:88
Authority key identifier: 12:C4:A1:7D:20:66:6B:7D:8D:2B:1F:FE:18:A4:68:7A:F9:26:21:8F
Certificate issuer: /CN=12c4a17d20666b7d8d2b1ffe18a4687af926218f
Certificate serial: 019658A694260314F4909703F3A1B1B63EFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft
Manifest number: 14FF
Signing time: Mon 21 Apr 2025 14:00:33 +0000
Manifest this update: Mon 21 Apr 2025 14:00:33 +0000
Manifest next update: Tue 22 Apr 2025 14:00:33 +0000
Files and hashes: 1: EsShfSBma32NKx_-GKRoevkmIY8.crl (hash: oPxkqEcw3JdKL2CA+0iHT0blqnrKL/KNO/5GWR9wAOk=)
2: nfi8L76Q0CcXdXMuyopjIwMNN1s.roa (hash: yyBzF5vSH0UZ1Eb70mzyyMArzuUjMy9cXtif0oEgNm8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:a6:94:26:03:14:f4:90:97:03:f3:a1:b1:b6:3e:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c4a17d20666b7d8d2b1ffe18a4687af926218f
Validity
Not Before: Apr 21 14:00:33 2025 GMT
Not After : Apr 22 14:00:33 2025 GMT
Subject: CN=5cf8c2210702c7928058188d2176505c33462388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5d:87:23:bf:aa:4c:9e:cf:d9:6d:06:1d:0e:
f8:2c:55:94:49:62:7b:6e:d2:6e:47:10:90:8b:98:
02:05:6d:15:b7:00:9e:2e:97:8e:5a:d1:af:98:c4:
eb:68:6a:a8:35:ff:a9:64:ea:3a:fd:2b:ce:5d:e1:
31:6d:1b:4e:7d:b7:b9:a4:46:00:3e:6a:72:b3:19:
cb:21:f5:c8:6c:bb:94:47:d0:b8:33:68:de:ca:75:
0b:d3:33:be:96:e5:7e:91:90:18:4a:80:ec:33:4d:
27:de:4e:21:7e:8d:18:3a:54:b4:b0:34:6e:94:c6:
e9:3e:30:76:88:ce:d0:2f:df:d9:c4:df:1a:40:2b:
2d:a5:6f:39:7b:b0:5f:64:ce:7d:37:79:6a:e8:f3:
94:61:c8:4f:9e:78:41:fd:ca:48:9a:60:1a:8f:d6:
87:5b:ea:d0:cb:fb:83:a5:8a:21:ee:bf:dd:53:9d:
67:1f:dd:ad:37:53:ec:fc:19:74:12:f8:d5:ec:8f:
6a:b8:77:07:e1:2d:f6:99:96:95:74:13:fb:7c:a8:
9d:b6:d1:b5:3b:96:b7:bf:c5:d2:f0:dc:9b:6d:0d:
ad:1f:7d:93:ff:ed:9a:84:6e:f6:bf:86:43:17:4f:
ff:1c:b5:bd:d5:45:61:99:86:ef:0e:57:a5:92:91:
2b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:F8:C2:21:07:02:C7:92:80:58:18:8D:21:76:50:5C:33:46:23:88
X509v3 Authority Key Identifier:
keyid:12:C4:A1:7D:20:66:6B:7D:8D:2B:1F:FE:18:A4:68:7A:F9:26:21:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:52:c5:2e:d5:c4:a1:3e:82:c2:fc:50:3e:6e:a8:eb:0a:df:
89:66:f2:d9:25:0f:c8:76:b1:26:23:e1:8f:bd:f9:7e:8f:7b:
ee:ca:7a:50:9b:17:e8:91:30:e0:55:8e:ec:1c:68:33:e0:cf:
35:97:32:25:6a:72:b4:b1:11:c5:2b:0c:32:0f:88:c2:56:fc:
0f:3d:bc:47:ae:43:11:18:94:be:eb:8b:8e:dc:cf:24:ab:3e:
0f:96:50:f6:c1:27:fa:21:f9:bf:05:55:3a:b5:b7:ba:01:ca:
4e:85:9d:a9:46:2a:75:f2:4d:de:ef:0a:ba:93:ca:87:95:b1:
92:1a:b6:a5:7f:32:4a:52:7d:15:86:73:6d:ac:ad:77:c3:ea:
69:e5:4c:13:ed:b9:60:06:bf:11:09:b3:66:3f:a5:5a:27:63:
d1:cd:7a:5a:04:6d:e6:92:47:d8:a1:99:a3:d3:9a:8d:65:01:
52:73:57:bd:28:97:4b:fb:3b:b8:08:48:e6:b7:f7:8d:d1:6e:
62:36:32:38:2d:90:87:5d:f3:5f:67:26:7c:b3:d7:e3:ff:8c:
6a:ff:71:18:94:d3:13:44:02:0d:ad:6a:fb:35:08:a0:7c:a3:
d7:74:4d:12:5c:e1:14:b7:8a:85:1e:0d:58:21:1f:55:62:e6:
3b:14:b7:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:19:58 2025 by rpki-client