Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
File: PsfSv8P6eOcQChuJNZBa_3pJa8k.mft (raw, json)
Hash identifier: eIIRpTUJEb8yTQmrwzkjJl/gLYsVvWxdwmwb4x5KRV8=
Subject key identifier: E4:25:9A:BD:FA:B2:F3:FE:3C:75:57:3C:99:AE:41:E1:CE:36:B8:98
Authority key identifier: 3E:C7:D2:BF:C3:FA:78:E7:10:0A:1B:89:35:90:5A:FF:7A:49:6B:C9
Certificate issuer: /CN=3ec7d2bfc3fa78e7100a1b8935905aff7a496bc9
Certificate serial: 0196BD807C8A556C19C01543CEC984356EB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
Manifest number: 0BE1
Signing time: Sun 11 May 2025 04:00:36 +0000
Manifest this update: Sun 11 May 2025 04:00:36 +0000
Manifest next update: Mon 12 May 2025 04:00:36 +0000
Files and hashes: 1: PsfSv8P6eOcQChuJNZBa_3pJa8k.crl (hash: v7O6SH93VJIlYf/bxrCVas3WQvI0MBaUpWsi0m3gAGc=)
2: RPdruY8oCYU-NG_cdmDTyaYXs9w.roa (hash: i9rNw7/5XltvLVBXot4AXkRNS8YKs+TQnC29q/66MR8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:80:7c:8a:55:6c:19:c0:15:43:ce:c9:84:35:6e:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec7d2bfc3fa78e7100a1b8935905aff7a496bc9
Validity
Not Before: May 11 04:00:36 2025 GMT
Not After : May 12 04:00:36 2025 GMT
Subject: CN=e4259abdfab2f3fe3c75573c99ae41e1ce36b898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ba:9d:a6:16:79:ba:12:ce:21:af:db:e3:ad:
70:c9:cb:96:ad:45:ee:f1:65:9d:df:13:a8:86:b4:
c2:04:21:97:df:e3:3e:52:75:9d:0b:50:3e:5e:07:
09:a8:f4:73:2d:25:cc:da:3c:a4:ef:28:d6:fe:59:
46:35:7b:85:19:b0:e0:21:9e:0c:24:24:86:ac:4e:
ee:b2:23:e5:4f:6c:b8:a6:91:49:9f:b9:9d:4d:5c:
c6:db:e9:83:e2:56:c2:27:cd:15:e2:44:82:09:9b:
c0:f5:6f:57:fa:62:dc:cd:27:42:ff:e7:3c:04:3e:
bd:2b:60:02:ad:78:dd:8b:84:43:60:cc:d5:61:28:
64:59:22:6e:05:0e:9d:0b:4a:56:a6:27:de:85:fe:
c7:24:a0:99:14:af:d3:8d:e1:ca:7b:9f:5b:28:0c:
68:a7:07:28:5e:2c:05:50:20:dd:3b:37:25:14:92:
32:6c:39:e8:2f:d5:4e:ee:87:79:49:f2:41:fc:19:
10:64:da:90:b4:46:b8:b2:0c:c8:69:9a:45:bd:f6:
f0:26:cc:8d:43:45:b4:b7:67:73:3a:16:11:1c:a8:
bf:e9:0f:1c:95:b3:f4:d6:45:83:34:1c:02:cd:72:
a7:22:b8:8d:d9:0b:fe:17:25:84:4e:e3:b5:34:ea:
74:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:25:9A:BD:FA:B2:F3:FE:3C:75:57:3C:99:AE:41:E1:CE:36:B8:98
X509v3 Authority Key Identifier:
keyid:3E:C7:D2:BF:C3:FA:78:E7:10:0A:1B:89:35:90:5A:FF:7A:49:6B:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:49:63:2d:0a:10:78:f3:83:5c:42:38:ae:df:c1:bd:bd:9f:
90:1e:fb:dc:10:b2:6e:36:05:4f:0e:7b:0e:61:e4:9f:77:8d:
88:54:6d:b2:66:bb:23:1f:ab:b6:5e:8b:a2:35:91:14:50:ad:
d5:f8:09:e0:1e:03:59:7d:cd:e8:f2:5f:8f:04:e8:ee:97:5a:
f5:ea:86:5b:e4:db:31:5f:14:d1:4c:44:1c:03:2c:1c:85:6d:
d8:00:6d:53:20:9e:13:6f:22:fb:fe:3c:0b:12:df:1b:5e:c0:
c8:c5:a1:40:2e:ef:90:98:9d:46:65:46:41:5b:19:ed:e2:a5:
d1:1f:c8:38:8c:fc:01:20:8b:3e:57:5e:50:56:d6:f0:ef:f9:
8b:5c:cf:1d:24:b3:8f:44:6d:e1:b0:e6:34:ab:b6:ce:09:c2:
86:74:74:b5:f8:a1:c8:bf:af:90:68:56:4d:4b:0c:92:4f:30:
4f:ad:c4:93:f9:35:d7:a8:84:b7:25:ff:24:bd:a9:d1:56:c8:
f7:7a:8b:fc:b3:1f:0f:61:96:a5:4e:ce:c5:f6:97:38:ec:0d:
ba:8d:c2:c7:1a:b8:7d:fd:cd:24:4b:f7:e3:05:bd:56:07:12:
6f:71:16:20:01:96:99:9d:cf:3d:9e:78:cd:4d:f7:4e:56:64:
a0:86:eb:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 07:37:25 2025 by rpki-client