Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
File: nSh1M866BkWhSM8QyMJ-qachoJ0.mft (raw, json)
Hash identifier: J9aBCl9WqXEmP/GKiNKPGMiIt4nUB/ApcEAiVYTy9qI=
Subject key identifier: 44:AA:88:A1:79:39:97:09:19:74:7B:4A:4C:8F:70:68:37:2D:E3:4F
Authority key identifier: 9D:28:75:33:CE:BA:06:45:A1:48:CF:10:C8:C2:7E:A9:A7:21:A0:9D
Certificate issuer: /CN=9d287533ceba0645a148cf10c8c27ea9a721a09d
Certificate serial: 0196748C135C75C32C6357B9C48D1E3D2AC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
Manifest number: 150D
Signing time: Sun 27 Apr 2025 00:00:59 +0000
Manifest this update: Sun 27 Apr 2025 00:00:59 +0000
Manifest next update: Mon 28 Apr 2025 00:00:59 +0000
Files and hashes: 1: MEQtA-51-LVqFHEVZDRMjfjnudY.roa (hash: mP68hXGlyjMnNhpMDZaBlI/pFMVdjYCWoJ7Gpxv9o84=)
2: Re1CMq4a8GRTlVAhciRLdjmNzME.roa (hash: e1LlxuTfucQ1ynw/jUhK7unO/vlcuYPu64TBZ3UmBVk=)
3: nSh1M866BkWhSM8QyMJ-qachoJ0.crl (hash: kyfaYBZhAQupJmlXLZlmnr4Y/ajOE6se2Dj/J0rIbgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:8c:13:5c:75:c3:2c:63:57:b9:c4:8d:1e:3d:2a:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d287533ceba0645a148cf10c8c27ea9a721a09d
Validity
Not Before: Apr 27 00:00:59 2025 GMT
Not After : Apr 28 00:00:59 2025 GMT
Subject: CN=44aa88a17939970919747b4a4c8f7068372de34f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a8:a6:8f:a9:e2:b9:d4:5a:cb:ee:a3:14:26:
2e:4b:fc:34:96:42:c2:9c:6f:1f:e3:ab:18:52:cd:
f7:f3:5e:16:85:d2:c3:cd:1a:98:d1:3d:2f:c4:dc:
3d:5b:86:10:df:76:6f:62:53:dd:c3:08:d3:82:0f:
d4:bc:56:5c:cc:39:c8:71:52:c6:bb:41:55:ca:00:
f2:9f:35:de:22:92:c7:08:fd:24:70:06:36:c6:40:
71:83:13:21:e4:a7:56:1e:15:1a:8b:5b:ab:85:57:
ed:69:b2:27:6c:81:0a:ea:fb:7e:25:f0:0c:3f:5c:
10:1f:49:62:23:a8:01:2e:b3:30:2b:6a:1c:fb:e3:
b0:8f:10:ad:09:72:6f:80:c2:d5:48:cc:b4:58:2d:
dd:c9:29:57:f8:c9:be:db:69:c0:be:b2:f9:04:01:
f2:a1:a6:9c:9e:15:2f:c6:65:f2:3d:ff:94:c9:0c:
05:df:26:b2:82:5a:c5:05:79:b4:71:6a:17:02:75:
ae:6c:59:60:80:3a:b5:fc:9b:ea:24:55:0c:00:fa:
03:ce:00:40:47:61:5f:d3:6d:d0:d4:2f:e5:16:0e:
c2:c0:5c:92:5e:2d:11:a7:47:ba:60:4d:44:e5:06:
67:08:3c:b9:50:34:b8:63:3c:ee:6e:f8:0f:74:23:
6c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:AA:88:A1:79:39:97:09:19:74:7B:4A:4C:8F:70:68:37:2D:E3:4F
X509v3 Authority Key Identifier:
keyid:9D:28:75:33:CE:BA:06:45:A1:48:CF:10:C8:C2:7E:A9:A7:21:A0:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:13:1e:2c:ef:45:e7:8a:18:42:8c:5c:19:0a:e1:7b:5f:62:
57:cf:c8:ad:dc:da:82:ad:b8:42:ec:23:77:3f:04:3f:7f:b7:
27:36:85:2a:71:4f:56:d7:56:58:ea:03:9d:66:72:66:f4:db:
42:13:f4:e2:90:be:b3:c4:68:6a:df:e9:61:c5:28:03:83:f7:
cb:03:a0:f6:31:5c:89:ad:95:72:76:25:d3:e6:f8:70:99:4c:
e3:25:04:1c:2c:aa:0c:4c:87:c4:e4:d4:8b:1e:85:88:b9:c4:
2f:42:54:f5:09:bf:9f:a1:75:f9:c6:c7:8b:c9:82:4c:15:20:
e5:80:32:be:cd:ce:62:98:69:c5:ff:f1:27:60:dd:55:75:5c:
49:92:41:e4:73:ff:55:ae:47:9c:16:42:40:56:3b:4f:f9:c7:
c9:32:93:bf:cf:15:8e:8f:c9:10:f9:ba:e7:b0:d3:97:4a:2a:
a0:e9:fd:d4:20:95:02:1f:0a:fa:3e:37:14:b5:54:d6:47:7a:
01:fa:19:73:37:64:85:cc:07:fd:03:ce:98:9e:4d:ee:79:70:
64:31:4c:96:27:27:a6:21:8d:fd:02:0a:d1:12:6a:4d:2f:9c:
54:24:2a:81:c2:77:b7:e2:2d:66:e9:61:86:8b:c6:3e:18:f3:
06:41:5c:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:44:29 2025 by rpki-client