Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
File: nB7k05z6obOseZwX94grjOTigSA.mft (raw, json)
Hash identifier: 7dHz8gAf5IGve5aZUv12YIpOJkz6faBoJlJ6ISkf4vk=
Subject key identifier: A3:0D:9F:0C:D2:CA:09:FF:9D:8E:AF:4F:84:F5:41:CA:83:6A:C9:9E
Authority key identifier: 9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
Certificate issuer: /CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Certificate serial: 019687DB546DF50624D1EB4C33342ECDB90C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
Manifest number: 07CB
Signing time: Wed 30 Apr 2025 18:00:20 +0000
Manifest this update: Wed 30 Apr 2025 18:00:20 +0000
Manifest next update: Thu 01 May 2025 18:00:20 +0000
Files and hashes: 1: egM_lo5hkg5KA7_uP-5h7pmD4BM.roa (hash: LWEk9cOjEXdGtew0n3bgwHhe3Zn8McfotK81AHI+3M0=)
2: nB7k05z6obOseZwX94grjOTigSA.crl (hash: v4Uj2VCNSABGrR1fmN4crPmO8Xx+DZtS3pzq89+NU2Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 18:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:87:db:54:6d:f5:06:24:d1:eb:4c:33:34:2e:cd:b9:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Validity
Not Before: Apr 30 18:00:20 2025 GMT
Not After : May 1 18:00:20 2025 GMT
Subject: CN=a30d9f0cd2ca09ff9d8eaf4f84f541ca836ac99e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ba:7e:1e:a2:e8:f3:bf:f5:67:cf:e4:18:67:
c3:12:d9:1b:b8:26:00:05:d8:67:a4:b9:7a:f1:df:
bd:94:c6:23:85:3a:a8:d8:4a:13:0d:2a:f6:cc:27:
fa:b3:5d:e0:f4:75:55:ee:fe:f4:be:69:b2:18:ea:
b3:10:bc:a7:dc:ec:b5:91:56:e9:9f:d5:f7:28:19:
9b:5d:26:80:21:93:ad:99:5f:3c:74:6b:40:a6:1c:
89:84:8b:d1:4b:ca:2c:33:eb:28:a3:72:eb:74:c6:
8a:4e:e2:21:9b:3d:bd:6b:aa:87:7f:69:18:54:44:
ca:4b:6d:9d:07:d5:1d:35:23:c6:7e:17:f0:ec:75:
9f:ba:16:0b:8a:cd:34:75:06:33:1a:4c:06:b6:45:
5d:62:c1:08:3e:56:8f:cc:65:27:62:9c:65:b5:24:
63:70:c9:7e:1e:48:b4:19:57:a6:69:1a:84:50:90:
e6:b6:1f:15:bc:75:25:70:5f:ec:73:ed:38:9d:93:
44:54:7a:03:67:e3:a1:ed:4a:cf:58:17:b0:95:89:
8e:04:78:81:7e:c8:23:a8:d7:59:dd:1c:cd:74:87:
25:40:3c:3e:ca:1d:9c:e1:b9:78:55:08:0e:9d:3c:
b8:61:aa:ff:56:93:85:8d:42:81:4f:3e:21:40:ed:
ad:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:0D:9F:0C:D2:CA:09:FF:9D:8E:AF:4F:84:F5:41:CA:83:6A:C9:9E
X509v3 Authority Key Identifier:
keyid:9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:20:df:10:fb:20:eb:fb:0c:88:3b:a6:01:78:48:4c:9a:19:
67:c3:c7:e1:c5:f6:98:94:60:33:79:b1:14:12:90:36:c3:64:
10:75:94:ba:33:9a:f1:0a:bc:21:08:89:2e:bc:59:05:73:62:
42:44:e5:69:89:af:66:2f:0c:b1:1c:93:bc:cc:07:e7:56:7c:
31:20:c8:94:f2:f6:e1:dc:d9:81:d9:4c:cc:5c:b2:21:e8:ab:
3f:2d:7b:cf:e8:7b:00:1e:e9:d2:d3:65:8c:35:9e:b3:22:90:
63:95:43:e0:29:74:cc:4c:3e:68:25:6a:90:63:cb:d1:6b:ba:
25:d3:30:79:48:53:fc:77:3d:73:4d:b0:b8:bb:23:50:02:7c:
a7:ee:d0:91:62:fd:06:35:8e:9e:48:47:62:c8:ac:77:8e:cf:
ef:70:c8:ab:76:a0:f3:ce:62:c3:b1:14:6c:2c:ea:06:93:8a:
29:06:f3:d2:28:8d:67:03:88:20:86:fe:2f:36:00:1b:20:e6:
c1:56:e1:a2:89:ba:c5:92:f3:cd:95:20:53:ac:8e:c5:fd:a2:
39:d7:92:f0:1d:5a:64:8b:13:a6:3a:6e:46:9e:c8:d3:5f:0e:
6a:2c:1b:d8:43:18:d9:e5:10:f6:b5:09:5a:a9:d2:8c:ae:12:
07:82:c6:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 23:36:18 2025 by rpki-client