Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
File: nDKfMzH1ND8pDrSkHxbENjooLJA.mft (raw, json)
Hash identifier: IcFcMqdRwB4moOCDQmVC5IEIeYCwN/4fclQ2Mlv9bW0=
Subject key identifier: E3:A6:16:C8:CF:8F:64:30:DE:7F:63:3B:08:1F:C7:6D:F7:4F:8C:11
Authority key identifier: 9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
Certificate issuer: /CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Certificate serial: 01967E3353798CA358138D17A705E6E80475
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
Manifest number: 1514
Signing time: Mon 28 Apr 2025 21:00:14 +0000
Manifest this update: Mon 28 Apr 2025 21:00:14 +0000
Manifest next update: Tue 29 Apr 2025 21:00:14 +0000
Files and hashes: 1: nDKfMzH1ND8pDrSkHxbENjooLJA.crl (hash: a4moUukt6vwkynGQhLa2dDDLuEgCTBO2A4ur++jG4y8=)
2: xXqtZaQE8p1BJ-LrGDHK3ctGl88.roa (hash: 19HlQM5dbXIMn5dc2AbBJAmDmCjDbQENEnPoWF/ZUJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 21:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:33:53:79:8c:a3:58:13:8d:17:a7:05:e6:e8:04:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Validity
Not Before: Apr 28 21:00:14 2025 GMT
Not After : Apr 29 21:00:14 2025 GMT
Subject: CN=e3a616c8cf8f6430de7f633b081fc76df74f8c11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f1:79:2f:53:ac:2b:a8:13:cc:74:56:5d:87:
ab:32:04:26:23:8f:21:db:05:52:35:d9:24:db:b1:
fc:70:1c:52:7d:42:59:d3:f8:2d:57:5a:cb:7e:14:
d2:2b:fa:6f:0b:07:b7:03:69:5c:80:4d:93:d9:a8:
40:42:56:04:3d:d2:a4:58:b0:53:94:91:c0:f2:da:
c6:bf:13:b3:71:48:ee:10:7e:bf:2f:d7:84:b6:57:
6d:f6:a3:db:e7:02:ce:20:ca:99:c3:c0:3d:38:69:
51:9f:99:ed:9f:2f:81:a9:63:18:ff:07:27:cc:be:
76:11:7e:aa:1f:30:3e:eb:0d:e8:38:ad:95:ab:5f:
6a:17:78:c1:c0:a7:39:79:41:a3:e1:db:2d:2f:06:
1f:ec:b1:94:80:29:0f:e5:2b:89:62:17:5a:08:34:
d7:0d:bc:22:29:dd:46:fd:f8:67:9f:cf:42:d0:bf:
de:eb:87:73:d4:7b:e2:27:55:8f:a7:0d:f9:aa:10:
3d:79:55:df:b3:6d:4d:ab:d5:d7:9d:d8:46:41:cf:
7f:9b:66:f4:07:a1:fb:04:e5:b4:b1:7c:47:d5:3b:
f7:aa:fc:22:5d:ac:3c:bc:8c:23:6a:c1:ba:6f:bf:
30:aa:ed:e1:d8:86:f5:db:c3:49:8d:50:70:63:49:
48:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:A6:16:C8:CF:8F:64:30:DE:7F:63:3B:08:1F:C7:6D:F7:4F:8C:11
X509v3 Authority Key Identifier:
keyid:9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:73:33:96:66:aa:bd:28:02:57:cb:05:14:23:d1:67:6c:88:
b0:12:ac:6e:a4:3e:97:41:f2:00:ae:8b:77:ed:30:7e:8c:60:
23:d5:a8:54:af:aa:7a:1e:e8:48:24:bd:54:73:ba:de:64:a6:
aa:e7:42:3f:c1:32:97:ba:21:38:d4:92:0a:2b:b4:e9:d3:40:
9d:51:d8:97:e9:47:45:33:c5:13:52:8c:d7:96:be:2e:5c:ab:
1b:bf:5b:fc:b1:69:ba:75:ba:07:30:b0:99:0e:d7:fe:23:e7:
b6:d9:1c:be:0c:6e:2d:d7:a3:d8:74:74:53:e7:e0:31:2f:e4:
c6:c0:18:d4:c8:35:69:1c:c2:32:79:07:e3:12:e8:0a:ac:cb:
24:92:b0:a4:44:5a:27:8a:f6:3c:3e:ad:c9:f6:c5:34:0e:e6:
8b:53:3e:53:b1:a6:c2:a8:d9:b3:f1:18:a0:f7:67:6d:82:7c:
00:4c:fc:23:8b:aa:e9:1e:e8:f8:6c:5c:83:23:6b:86:c7:8f:
79:10:76:79:a8:61:35:6e:23:61:9f:b6:2b:69:ee:1c:1a:db:
6d:11:a3:3a:8e:21:22:61:42:16:a6:85:e1:49:e5:81:36:94:
ea:ce:76:bb:cd:6d:72:83:8e:7c:09:0e:79:91:e1:8c:77:6e:
09:5e:c4:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 04:09:35 2025 by rpki-client