Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.mft
File: N1_CEWNZalFHLA_xhKZJkdyDpsE.mft (raw, json)
Hash identifier: EjDdm0lJNFHdvZMp3DW7D1nUoes5SLVuI852fOO1aLA=
Subject key identifier: 8C:A9:72:C5:44:78:12:D6:72:70:48:E1:F4:7B:58:3A:80:DB:8E:02
Authority key identifier: 37:5F:C2:11:63:59:6A:51:47:2C:0F:F1:84:A6:49:91:DC:83:A6:C1
Certificate issuer: /CN=375fc21163596a51472c0ff184a64991dc83a6c1
Certificate serial: 01967831814C3DBD240D4D776082C589AAA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1_CEWNZalFHLA_xhKZJkdyDpsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.mft
Manifest number: 0CE3
Signing time: Sun 27 Apr 2025 17:00:32 +0000
Manifest this update: Sun 27 Apr 2025 17:00:32 +0000
Manifest next update: Mon 28 Apr 2025 17:00:32 +0000
Files and hashes: 1: H84HwKjNe_aIYRNxZuH7G-Lr_Yg.roa (hash: BInhIf7xKGiyoM8/t65lkgiaRfMv7QEIqjDpHSYHK0c=)
2: N1_CEWNZalFHLA_xhKZJkdyDpsE.crl (hash: SCelKeV2hjKE+tbpOrb5X4L2pbgnEIst0YC85ITWRSg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.mft
rsync://rpki.ripe.net/repository/DEFAULT/N1_CEWNZalFHLA_xhKZJkdyDpsE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:31:81:4c:3d:bd:24:0d:4d:77:60:82:c5:89:aa:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=375fc21163596a51472c0ff184a64991dc83a6c1
Validity
Not Before: Apr 27 17:00:32 2025 GMT
Not After : Apr 28 17:00:32 2025 GMT
Subject: CN=8ca972c5447812d6727048e1f47b583a80db8e02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:20:25:ea:cc:83:0e:88:be:8d:32:6d:36:da:
17:0f:30:06:cb:3f:cf:d5:c0:92:d9:d9:a3:58:e4:
66:94:72:8b:dd:ff:c6:c8:ce:f3:13:1c:de:0f:f3:
6e:21:c0:ba:e5:1d:4b:f9:bf:8e:7e:15:42:d1:4d:
0e:e2:45:d3:36:d8:13:4f:ba:67:f5:b1:78:d1:b7:
a2:20:74:2b:4d:2a:25:af:60:46:78:ea:ee:35:f7:
25:9b:09:b9:8e:38:21:51:63:82:95:9b:fa:47:81:
41:f6:c7:45:79:90:cd:66:d7:14:03:74:be:93:a7:
71:80:17:75:20:8e:9e:c4:4d:61:12:7b:c7:70:ad:
25:22:b0:09:1a:f8:7c:0e:bf:34:55:5f:7a:07:09:
ab:a0:06:ed:65:73:19:48:e7:e2:f9:9c:18:cf:46:
7c:df:61:5a:46:50:0a:55:0e:79:c0:cb:2b:48:e2:
51:6b:93:83:9f:73:50:5b:0b:6d:5b:f5:42:d0:fb:
c8:fe:b2:23:7c:62:80:c7:9e:94:c8:e6:31:2b:3a:
ed:3c:6e:8a:00:ce:9f:70:16:64:3d:a2:69:26:26:
f1:7d:5a:b0:f2:fe:56:92:ff:ec:c5:55:5f:79:e9:
b9:54:18:e8:a5:60:dd:36:1f:70:64:12:de:6a:57:
e9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A9:72:C5:44:78:12:D6:72:70:48:E1:F4:7B:58:3A:80:DB:8E:02
X509v3 Authority Key Identifier:
keyid:37:5F:C2:11:63:59:6A:51:47:2C:0F:F1:84:A6:49:91:DC:83:A6:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1_CEWNZalFHLA_xhKZJkdyDpsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:19:18:bd:28:fc:8c:09:e5:18:ea:2e:cf:3e:51:1f:c4:30:
b6:73:85:fe:68:11:71:14:8d:3f:f2:37:c3:67:bc:3e:86:6f:
68:b7:c4:25:00:48:eb:e7:e6:8b:67:9d:2c:6c:75:d2:b7:38:
3e:eb:fc:ca:78:55:98:ae:a0:2b:3e:8b:ec:67:d9:23:cc:ee:
49:57:e4:cc:71:cb:42:d7:a9:44:19:1d:2d:2e:eb:ff:6a:35:
0d:5b:ff:ae:89:3c:96:60:f3:88:ee:4f:f2:65:ca:99:e6:f4:
3f:c6:21:e8:f2:ab:61:36:a3:8a:c0:76:31:00:bb:04:b4:b0:
16:c6:c3:9c:ee:28:c2:fd:be:6b:c4:e3:e1:72:1d:d5:76:c3:
5b:6a:24:7c:19:ee:22:b0:c3:3d:a3:6f:9d:89:da:9c:6e:fe:
1f:2c:0d:cc:bc:20:38:22:5c:54:89:60:6d:8d:9c:cd:18:08:
7b:4d:80:e7:40:d4:b7:25:5d:a7:1a:d3:f2:c8:de:d9:c1:6e:
93:29:b2:8a:9e:73:87:c3:93:8e:d1:2c:28:c9:71:20:9a:71:
fd:7d:8a:15:8e:ec:90:8f:00:42:7c:f7:bc:f9:c5:94:9c:cf:
10:b1:aa:22:14:59:f3:50:c6:df:cb:b8:ba:0a:b8:1c:f5:0d:
d8:b9:9b:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 20:20:58 2025 by rpki-client