Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/44846d-55d0-4a20-bd11-dcad08f2f23f/1/NGbkl-i6koMIR7TYtnEDJdI72oU.mft
File: NGbkl-i6koMIR7TYtnEDJdI72oU.mft (raw, json)
Hash identifier: +tY3nvTCTr/2imGJ88Yae8v/bdduFHOSavg5tE2G1To=
Subject key identifier: 8F:85:07:A5:C4:5E:0E:96:D0:6D:CA:E3:08:4B:01:45:01:F8:03:2E
Authority key identifier: 34:66:E4:97:E8:BA:92:83:08:47:B4:D8:B6:71:03:25:D2:3B:DA:85
Certificate issuer: /CN=3466e497e8ba92830847b4d8b6710325d23bda85
Certificate serial: 019674C2586385C93FA492F68AFEAF180943
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NGbkl-i6koMIR7TYtnEDJdI72oU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/44846d-55d0-4a20-bd11-dcad08f2f23f/1/NGbkl-i6koMIR7TYtnEDJdI72oU.mft
Manifest number: 056D
Signing time: Sun 27 Apr 2025 01:00:15 +0000
Manifest this update: Sun 27 Apr 2025 01:00:15 +0000
Manifest next update: Mon 28 Apr 2025 01:00:15 +0000
Files and hashes: 1: NGbkl-i6koMIR7TYtnEDJdI72oU.crl (hash: i3QS8Mbunor3itV/cCPYaMejmVf+GpwqugXOZW13a48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/44846d-55d0-4a20-bd11-dcad08f2f23f/1/NGbkl-i6koMIR7TYtnEDJdI72oU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/44846d-55d0-4a20-bd11-dcad08f2f23f/1/NGbkl-i6koMIR7TYtnEDJdI72oU.mft
rsync://rpki.ripe.net/repository/DEFAULT/NGbkl-i6koMIR7TYtnEDJdI72oU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 01:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:c2:58:63:85:c9:3f:a4:92:f6:8a:fe:af:18:09:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3466e497e8ba92830847b4d8b6710325d23bda85
Validity
Not Before: Apr 27 01:00:15 2025 GMT
Not After : Apr 28 01:00:15 2025 GMT
Subject: CN=8f8507a5c45e0e96d06dcae3084b014501f8032e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ec:01:a7:ce:97:d6:1a:2d:3f:c9:d3:7e:bd:
3f:48:09:07:97:8c:29:35:0a:0e:c9:d0:c2:17:36:
42:0e:fd:50:24:68:20:77:33:1e:d9:9b:23:14:00:
21:6e:2f:97:36:9d:78:c7:c7:03:e0:c7:1b:16:94:
5e:92:d9:93:25:c1:2e:7b:75:d0:40:85:35:d2:9b:
60:61:83:0e:dd:0e:2f:a1:61:85:a6:0d:53:1d:35:
d2:b3:9b:cf:8b:76:f2:e5:0c:9a:e1:cc:7d:f2:d3:
27:a8:ca:68:52:d3:86:eb:da:ca:ac:8b:97:10:de:
08:d1:54:9b:6e:75:5e:bb:b6:a1:b3:77:17:e2:09:
43:16:23:3b:aa:2e:ca:40:c3:91:10:4d:f8:5b:97:
bf:77:22:a4:54:34:5d:d1:92:ea:22:50:0d:19:e6:
96:7a:df:86:c0:34:d5:ee:97:3b:c1:70:32:e7:8a:
5d:80:bb:0b:06:21:fb:46:21:d3:db:61:7c:94:3f:
55:a0:97:73:53:b6:b8:82:3d:f4:47:4e:54:36:4e:
d8:2b:15:85:ff:1e:ed:9e:93:c7:0d:e7:be:9d:9e:
8c:04:92:fe:a5:cf:3f:3a:3a:73:d6:ee:1e:02:e1:
02:20:9e:d0:b8:07:3b:1d:26:16:0b:0c:dc:cf:70:
59:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:85:07:A5:C4:5E:0E:96:D0:6D:CA:E3:08:4B:01:45:01:F8:03:2E
X509v3 Authority Key Identifier:
keyid:34:66:E4:97:E8:BA:92:83:08:47:B4:D8:B6:71:03:25:D2:3B:DA:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NGbkl-i6koMIR7TYtnEDJdI72oU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/44846d-55d0-4a20-bd11-dcad08f2f23f/1/NGbkl-i6koMIR7TYtnEDJdI72oU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/44846d-55d0-4a20-bd11-dcad08f2f23f/1/NGbkl-i6koMIR7TYtnEDJdI72oU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:43:e4:7f:56:e1:c1:0c:b1:9e:0f:36:1f:b3:f0:c9:c5:67:
0f:0f:4d:cf:05:3a:d1:15:42:cc:51:97:f6:89:49:38:64:39:
9f:63:e0:e4:76:93:f5:c4:4b:59:44:61:cf:ce:cc:5c:0d:c3:
b2:55:de:a6:ea:f6:e1:d8:f6:5b:46:09:ec:4d:4b:16:1d:34:
11:db:34:7c:2a:48:56:06:7c:a2:7a:06:82:5b:17:10:d8:78:
e8:e3:38:ff:d4:e0:1e:a5:cc:0e:72:8b:5c:c6:f9:09:7a:ca:
76:1d:9d:2b:97:14:f0:98:bd:6b:99:62:dd:46:ed:e4:64:8c:
5f:c9:6e:69:56:ef:5e:0d:3d:d5:6f:8b:2f:aa:ad:68:86:0e:
f6:77:6e:d8:34:4d:24:4d:10:8a:22:d6:9b:74:d4:46:7b:7a:
30:bc:24:65:64:dd:26:f7:04:95:93:11:ef:5c:a1:a0:25:ca:
62:16:68:23:4a:37:cb:7d:81:16:ca:5b:ed:d5:19:dd:41:9e:
c3:05:4f:72:13:f0:43:33:b1:c1:c2:c8:f1:e5:1e:17:ea:ab:
71:0c:15:42:ee:c8:f7:e8:9d:19:81:a4:35:b2:9f:92:3e:ad:
16:af:d5:70:de:67:cd:c7:97:0d:d7:cd:87:f2:2d:63:cc:9f:
97:66:f1:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 07:08:30 2025 by rpki-client