Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
File: ndrXzlnL6NGaA0EfocbJug1CAqI.mft (raw, json)
Hash identifier: 3SNWxcxpU4hhlmhpkM3jZ21UkM45jvkah8npLgit4Ng=
Subject key identifier: F1:12:BD:BB:DF:6A:24:B1:AA:8B:AD:AF:22:82:E7:77:A8:67:8F:8F
Authority key identifier: 9D:DA:D7:CE:59:CB:E8:D1:9A:03:41:1F:A1:C6:C9:BA:0D:42:02:A2
Certificate issuer: /CN=9ddad7ce59cbe8d19a03411fa1c6c9ba0d4202a2
Certificate serial: 019679E9BE36B766980E572C427C6FE542D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
Manifest number: 0881
Signing time: Mon 28 Apr 2025 01:01:23 +0000
Manifest this update: Mon 28 Apr 2025 01:01:23 +0000
Manifest next update: Tue 29 Apr 2025 01:01:23 +0000
Files and hashes: 1: ndrXzlnL6NGaA0EfocbJug1CAqI.crl (hash: ISdIgPR559VJ/5L+aV/5ZCrJi6/hDonYKAuhLyZN9qY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:e9:be:36:b7:66:98:0e:57:2c:42:7c:6f:e5:42:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ddad7ce59cbe8d19a03411fa1c6c9ba0d4202a2
Validity
Not Before: Apr 28 01:01:23 2025 GMT
Not After : Apr 29 01:01:23 2025 GMT
Subject: CN=f112bdbbdf6a24b1aa8badaf2282e777a8678f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e2:93:b3:61:27:d1:c4:98:f3:1a:f6:27:f5:
15:0a:9d:ad:50:4a:e9:78:8f:83:77:59:4a:90:76:
97:14:ae:5b:e5:25:a3:a9:ef:b2:02:79:79:7f:0a:
3d:23:7c:0b:f3:6c:52:36:e8:fb:70:35:94:65:4d:
82:87:81:bb:8d:54:e4:01:6d:b4:98:9f:a6:aa:5f:
8d:25:70:1c:45:b0:a8:59:66:6f:9c:d8:bc:af:0e:
07:15:c5:69:9d:2c:35:b9:9c:db:45:65:83:d3:2a:
c6:d6:73:71:e5:44:99:e6:78:42:2f:75:57:ef:27:
b8:26:61:09:74:3b:54:bb:34:7e:77:1c:d6:07:65:
18:9e:47:b7:a2:e9:b2:99:29:34:0a:66:f4:79:b4:
ca:e6:41:08:a0:0e:ff:73:37:e1:ce:71:46:15:b0:
74:03:d9:c5:d7:d0:7c:e3:fd:b5:0b:fe:8b:b4:76:
7b:54:36:ec:bd:4e:36:fb:1f:f4:62:f6:12:ff:08:
b6:f3:5c:aa:e9:93:62:d2:b6:82:42:a0:2f:b5:17:
75:25:08:7a:39:be:30:61:7e:c1:ac:17:f7:cc:c3:
32:aa:72:86:b9:a6:b0:85:9a:84:b1:bb:ad:e1:c7:
98:ab:8f:f1:2b:47:51:63:d0:50:b5:06:74:27:2c:
cc:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:12:BD:BB:DF:6A:24:B1:AA:8B:AD:AF:22:82:E7:77:A8:67:8F:8F
X509v3 Authority Key Identifier:
keyid:9D:DA:D7:CE:59:CB:E8:D1:9A:03:41:1F:A1:C6:C9:BA:0D:42:02:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:2a:53:a7:da:be:21:c2:e4:38:b3:54:c3:0e:a5:11:11:d2:
6f:19:6b:09:86:8f:d4:4a:01:18:e3:bf:92:56:55:7c:3a:3c:
86:c1:68:a9:56:6b:46:33:f4:b7:75:d8:47:1c:3f:f7:18:18:
d7:39:1a:99:f0:91:70:ae:7c:fa:30:74:8e:37:8a:62:ec:61:
6e:b8:31:77:29:16:c4:0e:0c:7a:2b:cb:15:b0:f6:7c:24:40:
38:96:06:59:a9:f5:85:56:7a:92:cc:17:17:97:09:87:17:05:
29:2d:38:d8:fa:99:17:c9:87:f7:2a:7f:ca:66:65:cd:e4:eb:
55:4d:27:2e:43:4c:16:07:52:cd:93:10:a8:1e:65:a5:f5:e7:
09:8b:c2:f0:0f:c3:75:f9:e1:78:0a:e9:9f:dc:d0:7c:a4:54:
db:ca:a7:41:b7:e9:f3:d7:92:58:af:38:13:69:51:67:c5:98:
8c:07:97:c4:a0:e7:65:e5:04:42:99:a1:4a:53:d5:b9:55:70:
80:ad:ae:fd:9c:ac:1b:ae:62:6f:a2:a7:bf:10:9f:af:18:f5:
96:b2:35:5b:bd:1f:27:c8:71:40:41:89:15:d0:d2:db:0b:dd:
c8:2a:cc:e2:4a:df:ce:60:30:8d:b9:27:79:9a:76:a6:b1:88:
54:d5:40:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 04:30:24 2025 by rpki-client