Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
File: NW2albrOGXhcQGR2Y_MdkFYmHC8.mft (raw, json)
Hash identifier: 59QIHaFTuGNvcGOum3l4vomqb0Q/jkHfomc53q+pAIQ=
Subject key identifier: 19:1C:79:13:52:B0:C2:DC:17:BF:B5:5F:79:2F:B5:3A:C5:0A:F8:CA
Authority key identifier: 35:6D:9A:95:BA:CE:19:78:5C:40:64:76:63:F3:1D:90:56:26:1C:2F
Certificate issuer: /CN=356d9a95bace19785c40647663f31d9056261c2f
Certificate serial: 0196760C2C9FEE23E5CBF24DB2B655624268
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
Manifest number: 150D
Signing time: Sun 27 Apr 2025 07:00:31 +0000
Manifest this update: Sun 27 Apr 2025 07:00:31 +0000
Manifest next update: Mon 28 Apr 2025 07:00:31 +0000
Files and hashes: 1: NW2albrOGXhcQGR2Y_MdkFYmHC8.crl (hash: 0r0qVU41tQ4y6U8Nm18Aq26MHHYXdQW2Gm38EyHVt2Q=)
2: VMysSyLNDVGWd0vcTeYPwlMA5rc.roa (hash: 6+DEgCnpiKyTQCIOlcuNMISjTH2qj/1LJFyn3yXus8Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:2c:9f:ee:23:e5:cb:f2:4d:b2:b6:55:62:42:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=356d9a95bace19785c40647663f31d9056261c2f
Validity
Not Before: Apr 27 07:00:31 2025 GMT
Not After : Apr 28 07:00:31 2025 GMT
Subject: CN=191c791352b0c2dc17bfb55f792fb53ac50af8ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:0f:e9:66:a0:0e:8e:a8:93:b8:4d:ea:fb:8b:
2e:1c:b2:4d:21:d6:19:eb:2a:95:56:fd:36:f5:62:
37:46:51:f4:3a:61:1e:ef:6e:dc:93:f0:b7:c5:13:
38:21:1d:fc:82:a7:1e:0e:66:0b:7f:9a:ec:28:14:
7e:81:59:2c:65:74:bb:16:20:c7:22:5e:d7:12:b4:
a6:c0:13:e5:a8:bf:80:02:49:af:03:e4:23:2d:c1:
f9:0d:80:f7:ad:55:32:ef:70:5b:95:ee:81:cf:44:
27:71:12:a4:d5:d3:58:df:66:fe:bc:bd:4e:88:9b:
da:24:a6:74:32:8c:5f:e8:a4:31:a4:61:22:98:80:
c9:d6:44:8d:20:b5:53:84:9f:68:83:95:87:0c:18:
eb:38:99:ae:45:ba:17:22:96:24:95:41:78:63:c7:
3c:8c:e3:90:72:de:4e:b7:26:56:d1:a5:40:d2:08:
2b:7f:bd:f7:5c:ff:06:e3:07:5b:13:d9:a7:f0:2e:
8f:14:e5:ea:c5:6a:40:f9:a5:bd:91:74:6f:08:9f:
21:dc:9c:8e:36:8f:fe:72:86:5c:79:8a:28:15:4f:
55:b5:b2:18:28:74:9f:27:2a:eb:4a:ae:d8:9e:10:
0a:1f:3d:e3:45:eb:b0:10:12:c9:56:5d:12:d3:71:
b5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:1C:79:13:52:B0:C2:DC:17:BF:B5:5F:79:2F:B5:3A:C5:0A:F8:CA
X509v3 Authority Key Identifier:
keyid:35:6D:9A:95:BA:CE:19:78:5C:40:64:76:63:F3:1D:90:56:26:1C:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:39:a2:7f:77:8b:30:89:bb:32:4b:73:8c:33:8d:1d:8e:0f:
42:1c:3d:a5:05:7f:7f:90:1d:b7:98:0e:05:7b:a0:93:ab:4a:
c8:28:2a:67:05:49:63:d6:22:e6:50:cf:7b:8e:c5:33:8c:3d:
7c:b7:32:2f:1a:79:ef:73:24:5a:f2:bb:16:61:33:69:de:c9:
6b:c2:0c:19:47:54:0c:a6:33:c4:13:2c:e9:6f:33:82:46:18:
67:b4:9c:3a:09:0d:eb:2d:0a:8b:2e:0d:5b:c8:47:e0:de:29:
5d:c5:9d:a4:4e:71:dd:99:47:3a:ff:35:74:dd:84:32:6f:7f:
55:7a:0a:62:38:44:4b:8f:34:00:f8:6d:56:74:60:f3:ee:00:
bf:df:15:97:db:e0:68:84:89:46:14:e9:fd:3e:08:f0:58:b0:
7d:ec:46:28:3c:76:64:1b:7f:aa:3c:9d:d5:3f:b8:cb:aa:a2:
59:9a:b9:1d:ac:8e:8b:c4:0f:45:50:74:12:cd:bf:88:14:4d:
d9:3e:10:97:5a:7a:3d:60:6c:03:74:65:a2:8d:39:79:2f:00:
c5:a8:d6:0a:31:49:30:e5:a8:8d:52:c5:5c:ca:30:24:0d:0c:
74:1b:01:93:cf:79:4f:d5:80:da:5c:dd:e0:f1:f5:7f:d8:ab:
c1:03:cc:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:15:01 2025 by rpki-client