Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
File: nlY8Qm0ark7R5_WVNnSQIgiehHk.mft (raw, json)
Hash identifier: wdVxZTXAA1iKcSZJ71GVDmkeUX6x6fZN2671lUyQLHo=
Subject key identifier: 1A:07:57:19:72:02:D9:71:B8:C8:54:68:DD:9D:E5:86:1E:C5:5A:61
Authority key identifier: 9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
Certificate issuer: /CN=9e563c426d1aae4ed1e7f59536749022089e8479
Certificate serial: 019688EE36BF2623998768A006D2DD0DD277
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
Manifest number: 09DA
Signing time: Wed 30 Apr 2025 23:00:35 +0000
Manifest this update: Wed 30 Apr 2025 23:00:35 +0000
Manifest next update: Thu 01 May 2025 23:00:35 +0000
Files and hashes: 1: DLPCyIKM7jz79PsqVnrxNoMgYXE.roa (hash: +QgaTeTZpZ2fDtls8hcOtAF0lYWHQbDmqjy56TBm3AY=)
2: nlY8Qm0ark7R5_WVNnSQIgiehHk.crl (hash: Q24OoRCIDHjGk1D6+UZ8gMx/HtVdbR6qoL4JxEXVO1o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:ee:36:bf:26:23:99:87:68:a0:06:d2:dd:0d:d2:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e563c426d1aae4ed1e7f59536749022089e8479
Validity
Not Before: Apr 30 23:00:35 2025 GMT
Not After : May 1 23:00:35 2025 GMT
Subject: CN=1a0757197202d971b8c85468dd9de5861ec55a61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:83:7d:61:55:df:be:92:0e:b2:ca:c9:b8:cc:
d3:f7:5b:a9:09:a8:0e:dd:3b:3a:58:fb:0c:76:11:
f9:d6:b9:97:a7:a4:79:85:19:6a:48:c7:5d:08:21:
ca:45:0c:55:dc:f1:ff:01:85:ba:e1:01:44:8e:d3:
1a:b2:bc:10:1b:13:83:76:93:c4:74:25:77:dc:61:
1e:eb:1f:d0:73:83:d9:93:f1:01:e5:59:a4:42:9e:
c8:9e:ab:9a:21:9a:0b:82:7f:2e:26:e4:ec:21:d3:
c8:73:f6:9d:c4:dc:22:6d:df:dd:19:21:d2:8b:79:
3c:c5:6d:c6:12:33:1f:b2:0c:7a:60:ef:ea:82:be:
6f:de:6d:50:66:cb:a1:91:ed:6b:fa:f6:d8:65:28:
93:d7:7e:a3:10:c1:dc:b4:8b:0f:80:79:1f:96:9e:
ad:c1:c9:66:f8:e5:51:b2:6b:15:77:38:51:f4:cf:
5e:41:f3:a3:18:25:91:bb:12:ba:be:f1:82:7f:c3:
6e:1f:38:a0:88:e6:4d:e8:12:ee:dd:3b:e0:9e:18:
b0:02:47:72:4d:5d:ae:01:69:44:b6:2d:10:23:51:
9f:fb:aa:2b:af:64:b1:71:41:9f:f6:b1:fd:4a:d2:
29:12:b2:3d:e2:68:a8:8a:0b:fd:40:57:ce:c7:64:
7d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:07:57:19:72:02:D9:71:B8:C8:54:68:DD:9D:E5:86:1E:C5:5A:61
X509v3 Authority Key Identifier:
keyid:9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:38:15:77:77:35:31:f7:91:9f:3b:0f:2c:f0:70:31:ec:94:
d9:4f:ef:22:f7:10:6d:31:b7:72:c7:f7:d6:75:62:3a:5c:cb:
16:e5:8f:dd:70:5e:5e:92:f0:fe:26:65:16:b9:49:2d:96:a9:
a4:92:fc:12:a5:11:1f:6e:20:3e:9e:e8:fe:b5:01:0a:e3:c6:
da:97:93:10:aa:7b:f0:15:85:5a:95:ea:83:76:73:c5:11:10:
f9:35:9e:6e:59:8a:19:db:ab:d3:cb:33:78:e7:43:68:d0:d4:
68:9d:02:34:3d:7e:70:6b:34:59:23:2c:f6:0c:2f:72:bf:e1:
16:2f:fa:3e:2c:d5:60:09:b0:f6:3c:cd:78:81:8c:c7:e6:cb:
37:a3:75:ac:a1:14:a1:d3:bc:7a:d3:8b:2f:b3:5c:da:12:5c:
eb:66:ad:90:89:7e:bb:7a:3f:d2:f3:af:77:00:57:53:4f:3d:
ea:ee:ed:16:90:e6:73:e6:db:42:4f:63:d5:55:58:3f:93:6a:
1f:de:c6:82:1a:0c:f8:cc:39:29:4f:62:a9:b1:b9:51:c7:e4:
5b:ee:d0:86:bf:91:a1:41:8f:25:f8:05:7a:05:21:0a:80:7b:
1b:98:d2:97:5e:af:0c:83:4f:65:f6:12:b9:df:72:90:3b:ce:
b4:54:75:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 05:38:23 2025 by rpki-client