Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
File: nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft (raw, json)
Hash identifier: +DNHQoOlzdixbZ0A6TKlUgwe3VUqPoGKD2YBw1kSDrI=
Subject key identifier: 36:79:4C:37:DE:70:DC:2C:35:E5:45:12:19:AB:0E:64:7B:B4:00:35
Authority key identifier: 9D:43:03:A0:A9:99:D8:11:8B:BC:7E:96:AD:38:EF:BB:14:49:6E:A2
Certificate issuer: /CN=9d4303a0a999d8118bbc7e96ad38efbb14496ea2
Certificate serial: 019683FF6FC589D623D6A4B7BB427357CBBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
Manifest number: 06AA
Signing time: Wed 30 Apr 2025 00:01:17 +0000
Manifest this update: Wed 30 Apr 2025 00:01:17 +0000
Manifest next update: Thu 01 May 2025 00:01:17 +0000
Files and hashes: 1: bre9O2wrDggeCO-gClQtVcXHgMs.roa (hash: TZRQyZuvSyRj0lGzf2b/FG9R/6ZAoSht1L/fXzqCZUg=)
2: nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl (hash: TVo9PJvcGhSLx75YnHDL45CABrI/Hoe14/GXsEqpwtg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:ff:6f:c5:89:d6:23:d6:a4:b7:bb:42:73:57:cb:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d4303a0a999d8118bbc7e96ad38efbb14496ea2
Validity
Not Before: Apr 30 00:01:17 2025 GMT
Not After : May 1 00:01:17 2025 GMT
Subject: CN=36794c37de70dc2c35e5451219ab0e647bb40035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:25:2b:1f:70:0a:09:d3:b1:3c:c6:f3:53:5e:
d6:ea:b7:fb:2f:4c:89:01:3c:a6:45:7f:ad:b6:b0:
c9:11:00:4a:e2:d9:fb:dc:c8:5b:78:06:1f:9c:ba:
e6:8d:ff:34:8c:55:57:bf:a8:db:a0:87:4f:2b:d1:
6c:57:77:c4:b1:8c:53:83:b9:bd:92:35:1a:b5:7b:
d5:84:a2:36:16:b4:2b:5a:d4:ea:a1:6b:34:78:1f:
fa:89:7c:29:6d:a9:6b:b7:f7:b5:d2:ec:80:18:00:
9d:04:29:d2:7e:f8:2d:11:45:68:c9:c9:17:96:89:
b5:8c:66:f4:dd:30:cd:59:c6:8b:0a:7c:7d:f5:d7:
e1:58:b2:89:8f:c3:b6:20:02:17:ed:ab:dd:7b:8a:
93:26:e5:30:0d:3a:b9:15:3d:a2:57:9a:03:45:5f:
b2:b4:2f:85:7b:8a:07:98:27:89:84:7a:ec:f5:25:
62:02:e8:a5:39:1b:09:0b:83:dd:a6:ee:6e:0d:8d:
31:98:26:60:8c:81:ed:20:8f:ed:cf:d9:80:0f:4e:
d3:aa:69:2e:1c:f2:e9:90:23:07:cf:b6:66:7a:70:
01:39:95:2d:e3:10:1a:cd:de:7e:f2:b5:3d:b7:83:
f9:8b:11:f4:e8:39:3c:98:6f:4a:53:8c:43:1e:f3:
55:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:79:4C:37:DE:70:DC:2C:35:E5:45:12:19:AB:0E:64:7B:B4:00:35
X509v3 Authority Key Identifier:
keyid:9D:43:03:A0:A9:99:D8:11:8B:BC:7E:96:AD:38:EF:BB:14:49:6E:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:25:77:7e:96:48:eb:9e:53:6e:7c:08:bd:6e:f4:d5:8d:9e:
a9:70:81:37:2a:44:a0:f9:3b:f9:21:96:2c:08:39:1a:06:70:
9c:c2:4a:8f:2b:16:24:30:de:59:f8:bb:d0:6f:9c:b0:63:34:
25:dc:d8:86:fe:c6:03:9d:1e:87:40:89:72:d2:d0:5f:e1:83:
00:39:14:ca:0b:27:21:c5:68:38:c0:28:16:4e:28:c4:69:ef:
ef:32:b7:97:e1:a2:89:a1:2f:c7:8a:1f:d5:96:a8:43:7f:2f:
c5:c5:a9:fb:17:3a:64:7f:73:2b:88:ff:a5:b2:97:d6:2d:c7:
26:48:d3:a3:76:c6:a3:32:ea:ad:18:49:98:e7:71:e3:45:57:
e7:6d:cc:1a:fc:02:09:9d:fe:d9:17:8d:45:9e:5a:3f:41:ba:
53:c5:0c:f3:9a:68:06:af:d9:dc:3f:25:ef:47:d5:b8:a4:30:
52:09:ff:9d:d4:b8:f2:93:61:e8:c1:60:a0:87:8a:df:53:e7:
ef:71:a3:ad:02:c0:54:ff:16:f2:44:5b:ba:69:12:5c:6a:06:
f2:1a:29:6b:d5:ce:b7:62:e1:54:3e:6c:d2:87:e2:8c:8a:1d:
27:60:51:d6:5b:29:91:0c:ee:36:e2:21:90:38:c3:18:22:00:
af:a8:1d:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 05:24:52 2025 by rpki-client