Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
File: NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft (raw, json)
Hash identifier: TBfASV+1006F0l1HYUTjMB9krxMx/X/WBB7dJVTEQkE=
Subject key identifier: 4C:5B:15:92:7E:D3:A1:0A:B9:9B:20:96:B5:EA:C9:18:8E:E9:EB:88
Authority key identifier: 35:D2:92:9F:16:52:F9:58:81:2D:09:9A:23:3F:33:AD:34:45:BB:FB
Certificate issuer: /CN=35d2929f1652f958812d099a233f33ad3445bbfb
Certificate serial: 01977188904996BA40EBA534025C5A6D8CBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdKSnxZS-ViBLQmaIz8zrTRFu_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
Manifest number: 1550
Signing time: Sun 15 Jun 2025 03:01:04 +0000
Manifest this update: Sun 15 Jun 2025 03:01:04 +0000
Manifest next update: Mon 16 Jun 2025 03:01:04 +0000
Files and hashes: 1: NdKSnxZS-ViBLQmaIz8zrTRFu_s.crl (hash: VLii+x8caVajD2n/X4NXQYoAyqMtBsqMCFUWbnTgQzM=)
2: RvuQkZ_J-wvlyDc9DwQMRfdbRuc.roa (hash: ZwW8RhsC1c6THaCJDOUF+Lquzo4U71ipuOUtISL9Y48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/NdKSnxZS-ViBLQmaIz8zrTRFu_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:88:90:49:96:ba:40:eb:a5:34:02:5c:5a:6d:8c:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35d2929f1652f958812d099a233f33ad3445bbfb
Validity
Not Before: Jun 15 03:01:04 2025 GMT
Not After : Jun 16 03:01:04 2025 GMT
Subject: CN=4c5b15927ed3a10ab99b2096b5eac9188ee9eb88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0f:57:05:50:e0:06:e8:95:b3:14:7f:25:fd:
55:cf:01:fd:dd:8a:7f:d5:57:2d:a2:2e:d3:20:ba:
1f:51:42:a6:8f:31:06:09:39:be:04:59:d8:1b:f6:
8e:d5:38:1e:6b:fa:cc:a0:69:09:a4:ae:d4:4d:64:
a0:8a:11:66:27:d1:87:4a:31:2d:fd:b4:c5:e3:71:
26:d1:e7:76:3e:62:d0:58:4b:25:c9:61:e6:15:c3:
f8:e9:98:0e:09:c4:66:02:e2:d9:20:1d:20:12:f3:
70:b8:12:3a:68:8b:d5:c7:5e:ca:57:af:8d:2a:25:
9d:96:40:fe:38:a9:f0:a7:48:96:68:fe:35:aa:a5:
b1:1e:88:e8:05:e6:5e:43:57:c2:4b:49:41:aa:46:
65:8f:66:d1:29:25:d5:30:a9:eb:4c:ff:77:40:7e:
a6:a1:09:55:09:b0:e4:0c:44:e8:f0:7d:eb:a4:63:
3b:b4:74:d8:f2:19:b3:b4:f6:e0:c9:19:df:69:9f:
bf:ad:c2:98:4e:e2:75:e0:40:21:fc:41:38:75:aa:
6d:a2:1a:bf:d6:49:dd:f4:56:8c:de:75:a2:0f:df:
a1:93:8b:7f:d3:f5:22:6b:6d:c2:a2:d6:2a:f8:d6:
e9:d3:d5:96:f1:40:86:3a:91:78:6d:f0:33:52:9e:
95:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:5B:15:92:7E:D3:A1:0A:B9:9B:20:96:B5:EA:C9:18:8E:E9:EB:88
X509v3 Authority Key Identifier:
keyid:35:D2:92:9F:16:52:F9:58:81:2D:09:9A:23:3F:33:AD:34:45:BB:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdKSnxZS-ViBLQmaIz8zrTRFu_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:7d:f7:81:e1:ca:cd:3d:04:ca:ad:89:80:3b:85:b0:7c:da:
22:4d:71:f9:97:3c:a6:5a:53:50:16:85:b9:10:3c:8f:85:e1:
a9:5d:8d:41:c6:05:96:3b:96:67:08:ae:1c:1a:4f:df:dd:82:
13:68:cf:32:84:c2:a9:95:24:74:2b:3d:38:76:ea:c1:ba:20:
af:77:94:10:81:f5:d9:4d:eb:6a:c2:6a:26:0e:ee:bb:64:42:
d2:1b:ec:87:b4:3d:f4:cc:30:03:57:df:12:92:34:16:e8:50:
e5:87:97:8b:8c:45:b8:7d:96:90:37:da:b5:72:cd:05:78:93:
57:6b:eb:6d:b0:9e:30:b8:bd:0c:d3:6f:03:8f:9e:de:38:c4:
4e:7d:af:f1:ee:28:21:4e:44:5f:a6:81:e6:5f:36:6c:ec:78:
18:19:78:ad:6e:14:0e:a8:20:be:43:83:ba:e7:e2:fc:db:90:
94:66:d1:8e:8e:93:e9:bd:7b:a4:60:64:16:c3:38:80:74:12:
f5:5a:53:22:c2:fc:db:3b:07:f7:fc:2d:56:90:88:6d:19:ba:
d3:47:98:47:a4:41:71:9e:ab:dc:83:32:5c:3d:a2:18:06:2e:
79:31:4a:bb:41:23:12:48:53:64:c0:72:4a:51:e3:23:db:9d:
ee:2d:39:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:32:43 2025 by rpki-client