Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
File: NYx3zUAYPEEVsr8NznFuC8XQv9U.mft (raw, json)
Hash identifier: Lfipej1Of+3badscjpbTpAoUQZlimykWZ+TPD2HiJ2M=
Subject key identifier: 57:69:A7:7B:BD:D7:B0:9B:03:35:1B:2E:3D:DD:5A:48:92:9D:E0:EC
Authority key identifier: 35:8C:77:CD:40:18:3C:41:15:B2:BF:0D:CE:71:6E:0B:C5:D0:BF:D5
Certificate issuer: /CN=358c77cd40183c4115b2bf0dce716e0bc5d0bfd5
Certificate serial: 0196771E9EB338A8A61301ED1F1AD49C1DD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
Manifest number: 027A
Signing time: Sun 27 Apr 2025 12:00:17 +0000
Manifest this update: Sun 27 Apr 2025 12:00:17 +0000
Manifest next update: Mon 28 Apr 2025 12:00:17 +0000
Files and hashes: 1: NYx3zUAYPEEVsr8NznFuC8XQv9U.crl (hash: jkgk+aHi6KHIRxreCg5d3LdjTzdoFtehkHi51MX91po=)
2: zdd_itkr61DwlSbiF7xORGma-Mg.roa (hash: s7+y8n33Kdf5OFXebrrUAhH6tASSitV8ofo7STn/T1o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:1e:9e:b3:38:a8:a6:13:01:ed:1f:1a:d4:9c:1d:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=358c77cd40183c4115b2bf0dce716e0bc5d0bfd5
Validity
Not Before: Apr 27 12:00:17 2025 GMT
Not After : Apr 28 12:00:17 2025 GMT
Subject: CN=5769a77bbdd7b09b03351b2e3ddd5a48929de0ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7d:14:2f:19:d8:33:88:fa:d3:be:42:82:b8:
0e:69:66:ef:9b:80:f8:0c:c2:8b:34:9c:7f:3e:78:
e0:44:fb:78:6f:09:5f:ac:ff:57:c8:0e:a0:73:c8:
09:17:c9:5f:d4:5e:72:84:c2:1f:b6:82:38:cb:ff:
02:eb:33:61:34:a5:6c:ce:98:09:53:db:41:2c:92:
9f:d2:12:75:36:a9:b6:6c:b7:f7:13:f2:56:a2:2e:
e8:61:96:fd:99:53:92:1b:1c:aa:ec:e4:45:58:26:
1c:8b:d3:83:9d:00:ec:06:cb:43:0b:7e:02:d0:b0:
1a:97:2c:b0:c2:a8:fe:c8:e4:67:f8:ec:6a:62:63:
62:08:f9:92:1b:e0:99:b3:7a:48:c2:cb:ef:74:0e:
8a:ac:cd:18:34:e0:5f:06:ab:f2:2d:60:f6:7d:0c:
c6:40:2e:f1:16:1e:cf:1f:bc:ca:ca:fc:27:2c:74:
be:14:f0:a9:6a:3f:7d:a8:00:73:04:7c:d6:13:96:
dc:85:fd:41:d1:b1:dc:d8:ce:db:8f:c6:e7:e8:6e:
08:cc:c4:69:fa:87:7c:bc:c4:08:0f:db:22:62:fb:
74:4c:50:9c:c7:01:e0:65:56:21:d9:8b:09:f9:57:
68:c1:2c:5c:8f:f6:ee:1f:33:ac:db:42:d0:47:22:
33:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:69:A7:7B:BD:D7:B0:9B:03:35:1B:2E:3D:DD:5A:48:92:9D:E0:EC
X509v3 Authority Key Identifier:
keyid:35:8C:77:CD:40:18:3C:41:15:B2:BF:0D:CE:71:6E:0B:C5:D0:BF:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:bd:af:c2:f3:6b:bf:3e:53:f3:a5:b0:af:b6:00:a3:d5:b4:
18:e0:8c:8f:9a:7a:8e:a9:7a:c3:f5:a3:49:70:d2:54:28:6d:
b4:d8:18:0b:a2:e6:ca:bb:73:ca:6c:d4:0c:84:72:13:1e:41:
8b:73:3c:be:6a:66:32:a8:0b:17:24:22:a4:8d:63:d4:a9:71:
fe:00:49:ec:ec:7e:33:ac:6f:80:d2:aa:9d:fa:16:03:89:de:
de:04:7b:de:f8:8c:60:6b:de:d5:a8:f2:a6:6a:6f:4b:69:28:
38:8f:55:c9:b5:15:c3:66:9d:3b:0e:ec:9b:29:24:0a:fd:f4:
d1:4e:99:8b:07:e5:c2:90:8a:f0:af:a1:f4:ea:5e:65:db:b0:
9c:db:fe:52:a7:2e:9e:6f:c0:cb:3c:73:93:32:42:ef:44:36:
d5:f7:2a:68:3c:65:b0:e1:b0:f7:b5:57:dd:4a:64:10:7b:86:
66:95:e6:3c:f8:c0:be:0f:bc:95:26:68:b7:9b:2d:89:dc:6d:
66:ea:0d:54:eb:7c:c6:bf:57:b8:47:9a:f8:a9:04:7f:55:e1:
54:b7:6c:c0:2f:87:00:76:93:fc:f7:4e:3e:bd:ae:31:58:99:
d4:4b:7d:58:8d:0d:ad:31:50:8e:56:ae:92:36:bb:f1:df:3d:
08:06:de:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 19:12:17 2025 by rpki-client