Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
File: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft (raw, json)
Hash identifier: cG49thqnPHFDA8XBalsFUENSwSVfs7Rgvku71YbWvLY=
Subject key identifier: 5A:8B:C6:7B:67:23:B4:3A:84:57:74:75:24:A5:CB:60:2A:57:00:EB
Authority key identifier: 9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
Certificate issuer: /CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Certificate serial: 01967D20D9C3BBA100BA155C303872C84AF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
Manifest number: 0BE5
Signing time: Mon 28 Apr 2025 16:00:26 +0000
Manifest this update: Mon 28 Apr 2025 16:00:26 +0000
Manifest next update: Tue 29 Apr 2025 16:00:26 +0000
Files and hashes: 1: aRmXLbWgvqCrB_ieixDwg5bWHH4.roa (hash: NkuU0nUuwUULqqtGwJsRiK14f6VjdQm0HvAAtBo3GJQ=)
2: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl (hash: Hk3668fUcB63CCHc8ENApsOejng5jajvX9lQf7Xl1MU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:20:d9:c3:bb:a1:00:ba:15:5c:30:38:72:c8:4a:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Validity
Not Before: Apr 28 16:00:26 2025 GMT
Not After : Apr 29 16:00:26 2025 GMT
Subject: CN=5a8bc67b6723b43a8457747524a5cb602a5700eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:44:df:96:79:ca:35:cb:78:09:a4:74:67:1d:
23:f4:1c:bf:8b:3b:ec:3a:9b:22:53:5b:b3:31:f5:
c7:81:e9:f7:1a:47:e9:e5:26:f7:cf:be:be:2c:1b:
6e:7c:80:fa:95:ba:34:3d:6d:ff:45:7b:d5:28:30:
39:d3:7f:fc:b8:eb:a1:22:4e:8c:77:6c:f0:49:f0:
5e:a4:af:1b:79:b1:79:e8:1d:13:eb:bd:1f:0c:2a:
f3:35:8f:3f:d9:c4:20:4e:bb:52:39:7b:8e:15:90:
f2:f7:e0:ed:7f:dd:2f:cf:d0:5b:db:e1:5c:38:4d:
e5:46:82:f7:9d:21:47:9d:4a:72:53:08:e0:fd:7c:
e0:ec:a9:5c:3f:28:c4:0f:dd:12:28:4c:f7:c2:17:
e1:7f:af:ab:e5:27:63:19:55:2a:18:ea:1e:38:37:
9b:b8:bb:7c:d4:8e:ab:00:d6:8a:ba:e7:34:29:9d:
08:25:95:41:50:6b:c0:99:5e:0c:f0:68:c2:1c:c4:
6c:b0:ad:98:a5:f9:a0:32:03:6f:4b:5c:41:34:93:
da:64:b3:3d:70:7d:dc:52:c7:1f:e9:a1:3f:d2:24:
b6:05:3c:b5:ad:06:a2:6e:bd:96:53:39:b6:e2:f2:
86:2b:01:8e:61:a4:cc:5f:32:a3:25:9a:52:06:35:
b5:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:8B:C6:7B:67:23:B4:3A:84:57:74:75:24:A5:CB:60:2A:57:00:EB
X509v3 Authority Key Identifier:
keyid:9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:6a:3b:0c:72:0b:fb:20:1d:e2:7f:b6:e8:86:2a:72:5a:e7:
15:68:1d:f2:32:64:4f:be:9b:33:9f:c2:34:19:ae:93:58:d8:
18:dc:61:42:3a:89:8f:dc:a7:d6:8d:b6:74:a8:8a:8e:fd:ff:
06:cc:6c:74:05:11:c9:2c:a1:46:9d:45:2f:f6:76:ce:14:e3:
81:b6:7b:aa:60:a6:13:e7:45:05:e9:d0:04:ac:54:ad:cd:6a:
ff:21:24:fb:d9:f6:50:9a:92:48:1e:ee:50:0b:9a:eb:29:a1:
25:26:6f:20:74:45:a1:5e:00:b8:5f:3b:65:7b:82:3f:21:16:
e6:cb:18:50:16:98:dc:85:21:0a:79:87:f7:78:60:64:10:a8:
67:ea:34:9d:b0:6d:6e:16:e9:90:33:15:1c:1d:7f:30:4e:be:
ff:0e:c4:9e:bf:1f:74:cf:c1:6f:41:b8:b3:5f:fc:a4:67:bc:
39:c4:9c:02:10:ab:2b:16:31:01:ec:da:50:38:b5:3e:51:3b:
57:93:88:5b:47:e5:95:1f:3e:5d:da:3d:8a:5d:a5:58:04:a3:
40:53:df:e1:9f:51:11:90:13:a1:3c:97:2f:b2:14:43:8a:9b:
1f:21:a9:fe:15:a9:dc:b4:25:56:99:b6:db:33:03:e1:05:07:
50:fb:ba:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:07:45 2025 by rpki-client