Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/0fc7d8-2a5f-4b38-a230-8396f8c6255a/1/NHi9VqAesq4wdvaW0B1P_NFAGp8.mft
File: NHi9VqAesq4wdvaW0B1P_NFAGp8.mft (raw, json)
Hash identifier: XUI/UOZ1FjFUtC+R6Z+eazFMUB8mOV5G9tGgOPWWTH4=
Subject key identifier: 5E:1E:7F:81:53:3A:62:DB:1C:76:0C:4C:2E:19:89:A7:A4:59:1C:63
Authority key identifier: 34:78:BD:56:A0:1E:B2:AE:30:76:F6:96:D0:1D:4F:FC:D1:40:1A:9F
Certificate issuer: /CN=3478bd56a01eb2ae3076f696d01d4ffcd1401a9f
Certificate serial: 01969CAC0813CC0F4F49B799B96CE2B91142
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHi9VqAesq4wdvaW0B1P_NFAGp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/0fc7d8-2a5f-4b38-a230-8396f8c6255a/1/NHi9VqAesq4wdvaW0B1P_NFAGp8.mft
Manifest number: 1522
Signing time: Sun 04 May 2025 19:00:42 +0000
Manifest this update: Sun 04 May 2025 19:00:42 +0000
Manifest next update: Mon 05 May 2025 19:00:42 +0000
Files and hashes: 1: NHi9VqAesq4wdvaW0B1P_NFAGp8.crl (hash: Gcqy05EU4vYGfwJ61p9i+SQtAQcYBOvtEM+2p2ATAtE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/0fc7d8-2a5f-4b38-a230-8396f8c6255a/1/NHi9VqAesq4wdvaW0B1P_NFAGp8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/0fc7d8-2a5f-4b38-a230-8396f8c6255a/1/NHi9VqAesq4wdvaW0B1P_NFAGp8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NHi9VqAesq4wdvaW0B1P_NFAGp8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9c:ac:08:13:cc:0f:4f:49:b7:99:b9:6c:e2:b9:11:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3478bd56a01eb2ae3076f696d01d4ffcd1401a9f
Validity
Not Before: May 4 19:00:42 2025 GMT
Not After : May 5 19:00:42 2025 GMT
Subject: CN=5e1e7f81533a62db1c760c4c2e1989a7a4591c63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:91:11:1a:7a:0e:ed:c0:7d:f5:08:f6:a1:f2:
cf:c9:54:80:1a:94:4e:a8:30:b9:fc:f9:a5:e0:ad:
7f:e5:88:b0:92:58:78:ae:23:78:bd:11:8a:ac:16:
e5:f7:05:a7:d0:22:6f:35:a2:1b:27:46:f0:ab:72:
b4:15:14:5c:4b:bb:a7:39:ce:00:ad:48:81:21:30:
8b:bc:65:75:e1:fb:63:90:58:7c:05:74:98:c5:13:
20:9d:63:03:27:7b:99:af:0e:18:fd:97:48:78:6d:
cd:5d:29:80:7a:0a:c0:2c:88:38:b9:c7:e1:5d:e3:
9b:13:3a:e5:1c:d4:0a:ed:74:14:80:aa:68:c5:c8:
8f:ff:65:53:96:da:aa:91:29:75:cf:85:2c:74:ee:
8d:b1:dd:81:68:a2:83:19:c8:ac:72:81:a2:4a:1a:
b9:25:fe:4b:45:15:95:e0:81:32:49:3b:07:8d:53:
8c:bc:78:2b:da:0f:5f:ac:27:c3:ed:1b:26:ea:fc:
b3:ca:9c:b0:77:01:5a:99:61:d4:6d:d7:e2:f9:96:
01:0c:34:52:93:75:f3:21:40:63:38:27:8b:c4:64:
01:b3:72:98:b3:9a:7a:80:da:21:14:b2:0c:64:39:
5d:db:0e:4a:85:a0:c1:23:95:c9:34:52:0b:83:05:
ea:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:1E:7F:81:53:3A:62:DB:1C:76:0C:4C:2E:19:89:A7:A4:59:1C:63
X509v3 Authority Key Identifier:
keyid:34:78:BD:56:A0:1E:B2:AE:30:76:F6:96:D0:1D:4F:FC:D1:40:1A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHi9VqAesq4wdvaW0B1P_NFAGp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/0fc7d8-2a5f-4b38-a230-8396f8c6255a/1/NHi9VqAesq4wdvaW0B1P_NFAGp8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/0fc7d8-2a5f-4b38-a230-8396f8c6255a/1/NHi9VqAesq4wdvaW0B1P_NFAGp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:4e:c6:76:43:c2:37:01:32:1b:ba:ca:32:b0:75:e9:2f:c5:
d4:9f:1c:03:66:35:b5:4a:8d:8b:01:c5:69:97:b1:25:fc:97:
da:bf:e4:27:66:9f:39:ee:00:2a:96:98:cb:bd:f5:b2:ba:a4:
00:fe:a4:a6:64:38:2c:a9:73:70:80:ea:5d:49:30:dd:ef:dc:
c5:03:50:6f:93:98:f0:69:ae:42:52:9e:49:78:fd:45:9a:96:
74:65:5a:3d:a4:f3:b6:0a:02:58:43:60:21:1d:b7:3a:04:04:
22:77:fd:5e:58:15:76:3c:1a:32:97:77:d3:58:1c:69:79:e1:
e4:fa:94:11:7a:cf:ce:d3:41:55:9e:91:af:55:ff:e6:bd:0f:
7b:cc:ba:93:cf:cb:c0:3e:c5:3d:72:06:d8:47:51:be:b2:8f:
84:ae:27:89:fa:54:9f:02:a7:e2:3d:06:33:10:96:bd:fd:75:
69:77:b7:fd:78:79:77:5e:d7:e3:7d:63:a5:64:57:01:89:e0:
89:4e:f0:d1:78:72:b5:e5:f7:8f:ba:cf:1f:cf:d1:23:a6:ae:
5f:2b:0f:62:75:09:b0:1c:c3:c7:2b:23:bc:cb:34:6c:14:1f:
81:7f:a1:40:91:64:f3:54:49:94:e2:5f:74:6f:04:fc:e2:4c:
2b:21:9b:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 01:18:23 2025 by rpki-client