Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft
File: nSP0y0urXBCAGncGWN-JHPuMaMY.mft (raw, json)
Hash identifier: 8vlpeVS0hEJRM0AN6ACl60mWmDN5DaJyOSiJCdP/mAw=
Subject key identifier: D3:94:D5:AE:31:28:C7:71:DF:78:9F:58:00:C4:F7:BB:A8:13:9B:94
Authority key identifier: 9D:23:F4:CB:4B:AB:5C:10:80:1A:77:06:58:DF:89:1C:FB:8C:68:C6
Certificate issuer: /CN=9d23f4cb4bab5c10801a770658df891cfb8c68c6
Certificate serial: 01967EA1BAD4DA709ED80909D1CF1F5B05D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft
Manifest number: 14F2
Signing time: Mon 28 Apr 2025 23:00:50 +0000
Manifest this update: Mon 28 Apr 2025 23:00:50 +0000
Manifest next update: Tue 29 Apr 2025 23:00:50 +0000
Files and hashes: 1: 7OjUVrWvd7B0o85DaKLfYgEDYYg.roa (hash: ElsP3+WGZy5wELbMJiGSwWwzyGB160S3FayAOyAR3A0=)
2: JUWn6tZ6js3OQBG2kVmBzCYaASs.roa (hash: ZWaMncDoxletMNjHKIW8FwbEakDn9YubUJeGI0AcYdQ=)
3: miGTaFk5Cl8OYVzdHPitg-4uIW0.roa (hash: AGqT78lBpkV9yA91ZQMLyqGPYCLhxFGELYf24q65eEw=)
4: nSP0y0urXBCAGncGWN-JHPuMaMY.crl (hash: HnvBN6yqI6EbMc/pxJ4ZcE3m0+YaPbGzGLNSF6oLSHM=)
5: q06qTUv5-JCRpItbJ_9COQqHH6A.roa (hash: elj4UEL+GeLcIcxtH4+ahp+BuvQR4jhMQkNkTFsz2eM=)
6: zn7RiYTFSuY_H6EW4hkd0ugXhg4.roa (hash: TjPxbEKTKC4G0EExaKEE++vAM3LyoGQfvbpHNfpM9R0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 23:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:a1:ba:d4:da:70:9e:d8:09:09:d1:cf:1f:5b:05:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d23f4cb4bab5c10801a770658df891cfb8c68c6
Validity
Not Before: Apr 28 23:00:50 2025 GMT
Not After : Apr 29 23:00:50 2025 GMT
Subject: CN=d394d5ae3128c771df789f5800c4f7bba8139b94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a9:eb:ab:17:27:bc:c9:cb:e5:63:94:00:1f:
12:ec:6a:11:fc:23:2b:dc:92:cf:b5:f1:45:64:a9:
e1:75:62:69:6d:02:5a:3a:81:e4:54:3e:fe:a8:29:
31:97:2f:14:85:97:77:5f:d1:4c:ec:dc:50:b0:2a:
1e:32:ea:43:4e:81:3e:62:bf:d5:6e:84:f5:1c:03:
d9:22:5d:91:b9:e7:48:1b:83:61:e4:7f:6f:7f:54:
1d:ee:8d:cc:cb:28:fd:19:51:4a:d1:d6:7f:6f:78:
cb:fb:dd:a0:ae:59:12:d7:c1:16:7f:96:a4:f0:d3:
19:4e:14:e2:df:4f:9c:5c:ec:f8:60:2e:ae:5a:56:
15:ae:16:7c:86:e4:83:15:57:b7:e0:ec:72:00:58:
0a:13:8f:3c:c2:af:25:2a:1e:91:8e:2d:1b:81:f4:
fb:90:67:eb:4f:69:ac:65:43:52:c7:72:23:01:a6:
79:44:be:5c:66:cb:2f:16:3f:1f:84:5c:c3:ed:91:
85:18:3b:9d:ff:8e:73:fd:a9:1a:a1:fa:8f:2c:d5:
14:7f:96:47:d8:39:6f:e9:1a:cd:b7:dd:77:b6:0e:
60:d4:5f:72:16:80:ba:12:6f:68:61:85:9b:d0:0e:
a3:14:c1:c8:5a:e8:61:0d:ff:dc:e3:f2:4d:24:59:
02:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:94:D5:AE:31:28:C7:71:DF:78:9F:58:00:C4:F7:BB:A8:13:9B:94
X509v3 Authority Key Identifier:
keyid:9D:23:F4:CB:4B:AB:5C:10:80:1A:77:06:58:DF:89:1C:FB:8C:68:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:ca:3b:b4:36:5f:0a:8e:41:00:25:f2:ae:e5:9a:6b:e0:5a:
64:41:f6:59:a6:18:4b:78:fa:b6:ba:cb:da:9e:d7:a2:16:e0:
5b:82:82:2e:4f:c8:1e:78:98:39:8c:4c:75:d5:91:7d:26:76:
ee:64:e0:2b:f9:f7:d9:0e:02:1d:c0:9a:9d:01:e3:22:75:fa:
cb:1f:cf:cc:1f:aa:d8:a3:0b:a5:df:19:be:31:f0:1f:6d:ce:
ee:5c:37:80:16:45:81:7d:8c:46:98:18:29:a0:00:73:59:cb:
80:52:d7:fb:2e:86:9b:c0:ec:62:fd:6a:48:b9:6e:c1:5c:81:
19:06:11:0a:62:1f:ee:22:4a:6d:31:b9:58:d8:51:b0:27:5f:
b4:d3:ba:57:54:cd:1d:57:fe:20:7f:4a:f3:6d:11:6f:9b:de:
2e:94:e2:87:36:53:7d:2d:51:8f:82:3f:f3:d9:45:d2:6b:df:
74:bd:18:b7:d7:b6:9b:c6:b7:9e:1f:f0:12:81:ff:d2:3e:13:
52:d1:9b:b8:c5:02:9f:f4:78:45:bf:ad:f6:c1:18:8e:c4:38:
a1:18:6e:e6:f1:44:34:b6:d5:b4:04:bc:e5:02:07:a2:1b:e6:
1d:c3:c6:0d:14:78:02:46:3d:e9:bf:da:7f:92:fe:50:b7:0c:
4d:99:18:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:28:11 2025 by rpki-client