Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
File: NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft (raw, json)
Hash identifier: xoZS0QwL4Jzei/K2TtoO6N3cQ6kJn51Y5XcHpoN8fp4=
Subject key identifier: 6D:6C:D9:D2:EC:FE:62:29:ED:B2:EC:8F:80:61:49:E0:5D:F2:02:05
Authority key identifier: 35:D7:DB:AA:75:EF:34:20:D8:D9:45:91:30:ED:01:DC:53:51:36:FB
Certificate issuer: /CN=35d7dbaa75ef3420d8d9459130ed01dc535136fb
Certificate serial: 0196AD9F75E7EDAD54274F17AC33C1E34B5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
Manifest number: 02FD
Signing time: Thu 08 May 2025 02:00:30 +0000
Manifest this update: Thu 08 May 2025 02:00:30 +0000
Manifest next update: Fri 09 May 2025 02:00:30 +0000
Files and hashes: 1: NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl (hash: 7G+bSql8sURTF+VrR7cgQYfOK+zlOn9YGlulgL+rIEI=)
2: okivhnQi7w6GWYPlNEAmkXkmxpY.roa (hash: k4R8rWTOlMy3O5fk1lka5CmGZaX0JQEHHbZQX1i51u4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 20:38:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ad:9f:75:e7:ed:ad:54:27:4f:17:ac:33:c1:e3:4b:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35d7dbaa75ef3420d8d9459130ed01dc535136fb
Validity
Not Before: May 8 02:00:30 2025 GMT
Not After : May 9 02:00:30 2025 GMT
Subject: CN=6d6cd9d2ecfe6229edb2ec8f806149e05df20205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ba:db:7e:36:e7:4c:f9:e7:55:e8:ec:03:e9:
dd:d0:56:c2:1e:dd:fd:53:0c:bf:87:c1:e5:67:7b:
89:07:eb:86:ae:8f:2d:ce:15:09:53:bb:88:93:70:
1f:64:5b:27:d2:15:65:b3:fb:e6:ab:f6:38:cd:13:
a4:ca:55:23:6c:0d:41:5e:22:1e:b8:92:29:74:1c:
e8:cc:4d:3c:33:6e:a6:26:72:3c:fa:50:0d:43:5a:
ee:5b:d9:36:24:cd:7d:76:77:7d:6f:8a:a2:3e:10:
a1:a4:9e:6a:33:cf:0c:c6:f6:81:74:24:6f:c6:c7:
a9:a4:2c:12:6b:7d:04:72:a0:5b:ab:b3:58:c5:72:
91:9b:d9:23:b1:ef:04:05:b8:23:26:09:de:fd:08:
c5:bd:b1:d6:a5:66:c7:05:35:fa:9c:4b:e4:b8:06:
d4:7c:36:ee:ae:8a:00:f8:ae:38:b8:d0:5c:f4:f2:
b5:7e:67:fb:ac:19:4c:79:c0:58:1f:f9:5a:c3:84:
92:fc:d3:bb:bb:16:5e:2c:91:95:84:8d:e1:e8:f5:
f4:62:3f:1a:0c:43:1c:51:df:c3:12:8b:4d:58:7b:
07:b8:f8:1a:72:33:0f:b5:16:a3:df:38:35:95:fd:
d2:0f:75:cc:3c:66:b9:cb:90:2c:a5:3d:8c:b2:28:
04:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:6C:D9:D2:EC:FE:62:29:ED:B2:EC:8F:80:61:49:E0:5D:F2:02:05
X509v3 Authority Key Identifier:
keyid:35:D7:DB:AA:75:EF:34:20:D8:D9:45:91:30:ED:01:DC:53:51:36:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:86:42:73:36:f7:be:e0:21:0d:9f:a2:6d:a7:44:95:e6:65:
33:65:a2:d5:1e:d7:55:26:32:6e:90:d0:e5:73:10:7d:e3:08:
25:3a:c4:1f:5c:03:6c:91:64:5b:b0:f6:da:2c:ef:70:15:5f:
c1:03:6f:24:43:2a:2c:e4:b8:29:67:1c:2d:fc:b3:b4:b4:c2:
22:64:71:ed:a7:b2:d9:5e:3b:88:76:7f:00:b8:e7:70:76:d6:
ae:b4:13:69:d9:f9:ce:50:d7:8f:d0:b0:a9:6d:43:06:2c:8e:
8d:1d:76:ee:53:6c:f3:c9:fd:6d:06:37:60:60:fb:98:84:5e:
20:f3:f2:03:ff:08:e3:bc:f3:b3:ed:25:f2:ec:1d:b6:0a:cc:
ee:ea:6b:55:20:c4:09:9a:49:b3:4f:b3:61:cc:40:6c:06:30:
81:10:c3:27:ec:05:f5:04:fc:de:a2:93:ac:8c:91:ac:45:30:
93:00:74:8d:3a:6d:c6:3f:83:18:19:1e:04:02:8e:ef:47:70:
68:b3:c9:80:dc:3d:0f:ae:0d:a7:51:16:7c:78:3f:a6:21:fa:
6b:e0:07:15:18:9c:a2:9c:79:da:6f:91:a2:07:a5:25:5e:61:
73:28:8a:3a:03:d5:b0:28:59:64:5f:79:f7:d2:83:6a:f0:b8:
51:c4:e0:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 04:41:24 2025 by rpki-client