Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
File: NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft (raw, json)
Hash identifier: L5LMHQbcHbLCFNOKYkUZsUhHfLSBGF+VZq/ijrpVOno=
Subject key identifier: 85:E1:F6:7E:B0:C7:FD:1D:E4:63:CF:83:B7:6F:12:09:97:9F:3A:AC
Authority key identifier: 35:D2:92:9F:16:52:F9:58:81:2D:09:9A:23:3F:33:AD:34:45:BB:FB
Certificate issuer: /CN=35d2929f1652f958812d099a233f33ad3445bbfb
Certificate serial: 01967868B7E4CEC923975C516962752AB758
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdKSnxZS-ViBLQmaIz8zrTRFu_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
Manifest number: 14CF
Signing time: Sun 27 Apr 2025 18:00:50 +0000
Manifest this update: Sun 27 Apr 2025 18:00:50 +0000
Manifest next update: Mon 28 Apr 2025 18:00:50 +0000
Files and hashes: 1: NdKSnxZS-ViBLQmaIz8zrTRFu_s.crl (hash: dxYNdTQdHwXMVJrJ42KQ5r/eaXUmb9REe/nK3NGGgdI=)
2: RvuQkZ_J-wvlyDc9DwQMRfdbRuc.roa (hash: ZwW8RhsC1c6THaCJDOUF+Lquzo4U71ipuOUtISL9Y48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/NdKSnxZS-ViBLQmaIz8zrTRFu_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:68:b7:e4:ce:c9:23:97:5c:51:69:62:75:2a:b7:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35d2929f1652f958812d099a233f33ad3445bbfb
Validity
Not Before: Apr 27 18:00:50 2025 GMT
Not After : Apr 28 18:00:50 2025 GMT
Subject: CN=85e1f67eb0c7fd1de463cf83b76f1209979f3aac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3f:51:69:4e:81:6d:73:7b:8e:d1:5a:cc:d5:
ee:d3:e9:98:ab:33:e2:ab:80:38:8c:6f:ce:35:79:
d6:ea:b9:2a:92:23:bf:bd:4b:22:99:cb:3d:e6:5d:
3f:bd:40:43:c8:a5:ac:a1:59:19:51:e4:e5:83:4b:
cf:19:78:01:49:e0:9a:fb:9d:1f:92:75:c5:49:99:
7f:16:2d:d8:79:e6:1c:95:80:7c:84:c9:42:47:44:
58:67:30:38:9f:9e:5c:5a:a6:33:f7:f5:ee:e5:6d:
7e:0b:87:3f:b4:8c:2b:f6:34:26:1c:b6:34:eb:10:
6d:d6:74:5d:83:e3:47:75:7a:13:18:ff:92:18:44:
8c:17:3d:32:96:08:2f:99:1e:4b:9c:dd:dd:17:00:
c3:16:28:70:df:49:88:e2:b2:28:47:d7:da:8d:60:
94:77:15:ef:a2:66:17:6a:9d:97:b1:01:00:10:7a:
f4:69:4c:a4:95:b1:b8:63:fc:09:fa:91:c9:b7:1c:
2a:d5:32:ef:0a:58:53:04:69:d7:a1:fa:d6:81:95:
67:d2:cb:70:5b:f5:fe:3f:d3:e0:61:ba:d2:c1:3a:
26:3b:43:1e:3c:eb:e8:db:50:d3:8b:3a:b2:d3:9b:
15:77:bf:60:9f:4b:6e:62:b4:fc:08:73:87:8f:72:
2c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:E1:F6:7E:B0:C7:FD:1D:E4:63:CF:83:B7:6F:12:09:97:9F:3A:AC
X509v3 Authority Key Identifier:
keyid:35:D2:92:9F:16:52:F9:58:81:2D:09:9A:23:3F:33:AD:34:45:BB:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdKSnxZS-ViBLQmaIz8zrTRFu_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:ad:85:93:a7:1d:7e:20:89:aa:22:fc:1b:b8:7f:64:78:29:
20:0d:99:7c:75:55:87:16:40:9a:0a:97:c5:86:be:ce:44:ef:
23:11:e2:f3:b5:2e:c6:ee:bb:1f:a7:b4:94:a2:c7:19:22:ad:
9c:7f:a1:80:43:83:dc:f3:6c:9b:52:e0:74:a8:0e:22:68:d4:
77:ef:cc:d4:77:85:40:0d:28:77:0b:0c:f4:0a:6e:c1:11:54:
07:70:c6:1a:94:bb:93:20:be:f4:d4:01:33:af:08:72:54:e4:
ba:77:6f:42:5d:5f:b2:7f:cc:43:df:fc:7c:2f:e3:56:b1:74:
20:c6:31:1a:20:08:5e:d4:d3:c1:f7:3d:cb:a1:e4:73:d7:8c:
74:02:a8:c1:8b:9c:41:93:2a:85:50:0b:70:c4:31:02:1d:6e:
b7:01:fe:22:3a:84:da:49:5e:53:2f:cd:77:66:32:88:f6:22:
ed:44:03:f8:35:d5:35:ce:0d:cf:04:e0:90:5f:8a:8a:88:96:
ec:b8:d4:a0:8d:05:40:85:2a:ea:ea:d8:54:5d:ea:e4:f8:37:
22:a2:14:80:42:f4:cc:20:a1:3a:d1:2b:13:6c:51:39:af:f3:
26:7a:09:e3:b6:f3:f6:09:b7:84:57:71:1d:ef:00:05:6a:ff:
55:cb:68:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 20:58:20 2025 by rpki-client