Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
File: nSAoCNH5FFVeG9WcFncof_mztZA.mft (raw, json)
Hash identifier: v2EN/nNWgOhfQrIOuMBG2c507X0c8yKgqWmWKBBP06Q=
Subject key identifier: 50:CA:37:93:83:78:AF:A1:1A:27:AB:20:D6:8D:73:57:71:DE:90:D1
Authority key identifier: 9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
Certificate issuer: /CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Certificate serial: 019687A466A59FB75E31BDA0688611CFD0F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
Manifest number: 0F22
Signing time: Wed 30 Apr 2025 17:00:20 +0000
Manifest this update: Wed 30 Apr 2025 17:00:20 +0000
Manifest next update: Thu 01 May 2025 17:00:20 +0000
Files and hashes: 1: nSAoCNH5FFVeG9WcFncof_mztZA.crl (hash: DB9DIbnzRnYTw7tOr2okYmZv7uD9nFEb2HVGcH0NoWA=)
2: qztp8oOkrsOnZQZ-AVesJkd8gBA.roa (hash: w8j5kLnBBDJA6YAxwk7yr2iHlxdseJ2t5FGwhKWuj0I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 17:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:87:a4:66:a5:9f:b7:5e:31:bd:a0:68:86:11:cf:d0:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Validity
Not Before: Apr 30 17:00:20 2025 GMT
Not After : May 1 17:00:20 2025 GMT
Subject: CN=50ca37938378afa11a27ab20d68d735771de90d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:45:f7:fd:03:f2:f5:00:45:ae:4e:48:77:81:
f0:b5:00:ae:bf:18:70:19:68:2c:b3:da:3e:b4:f3:
23:6e:93:b8:9d:2a:0b:a0:13:eb:c8:fd:40:75:97:
64:53:b9:91:97:43:42:52:83:de:04:70:79:0f:07:
ab:34:ce:2c:1b:2c:d8:c5:c2:02:a0:aa:bb:62:a5:
13:0b:66:04:ad:29:80:32:b8:ef:8a:0d:76:24:04:
d7:37:d6:a3:ba:96:b8:03:17:17:a7:62:09:c5:ec:
9d:dd:54:0a:89:6d:f0:17:95:51:27:47:00:22:c1:
05:dd:1e:94:58:b1:e7:23:32:3a:1b:be:5c:c6:26:
5b:11:fc:c7:41:e2:61:6b:07:72:f6:10:ba:8c:16:
fa:56:32:9b:a5:e7:fb:d2:c0:e8:b6:bf:b1:83:84:
a9:a4:fd:0e:24:9b:8a:fb:37:09:a6:62:d7:7e:5b:
a0:08:72:72:65:1b:99:b4:65:9a:81:43:ca:b7:e5:
e5:31:df:f9:21:46:84:3a:ad:a7:5f:2f:04:c0:79:
3e:4f:16:96:34:a6:e1:d8:59:18:77:cb:13:6a:1e:
de:43:0e:57:1f:fb:ce:4a:9f:d1:2c:92:19:6d:f9:
58:ae:dd:49:ad:84:bb:1c:44:6c:53:87:72:d8:1c:
32:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:CA:37:93:83:78:AF:A1:1A:27:AB:20:D6:8D:73:57:71:DE:90:D1
X509v3 Authority Key Identifier:
keyid:9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d9:ac:e5:f7:0e:ba:40:c2:09:52:07:8d:3d:f9:45:0b:69:7b:
f7:d4:2c:7c:aa:f2:12:bb:10:4e:3e:6f:8c:6d:d9:e9:41:53:
6d:24:9b:41:22:a6:6d:5b:5c:f3:bd:16:84:48:f2:fb:b7:b8:
18:b7:3a:d3:41:91:c7:2b:b3:31:05:5f:2c:1c:4b:a1:92:5d:
86:98:15:d4:e0:01:1d:a6:59:6c:34:88:6f:78:ca:34:87:e6:
a9:f5:e4:8f:4f:a6:0c:30:84:be:36:52:3d:87:1a:52:01:8c:
3a:11:9d:8f:5f:dd:fb:c6:f9:20:26:8b:f1:83:7c:08:c1:6e:
c7:ab:47:a3:eb:e7:73:75:4d:ea:ba:e7:7c:9e:8f:a5:2a:11:
4d:3c:99:3a:37:f4:8b:5c:ba:e9:59:62:3c:f0:64:37:6f:ee:
aa:4c:83:5d:a8:3a:ba:5c:7b:f9:a7:e4:3e:0b:36:c6:64:3a:
13:d7:a4:7b:84:d7:05:a3:1f:13:7f:31:ee:43:16:33:75:4f:
cf:ff:ba:50:b6:d2:78:e3:ac:eb:67:55:61:05:7c:d4:42:c5:
81:02:2a:03:35:17:6b:bc:7a:df:2a:ed:42:14:d3:51:a0:fc:
74:14:07:b3:0a:3c:54:1d:b4:05:bc:4e:f2:e0:45:0b:57:56:
97:21:7d:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 00:09:09 2025 by rpki-client