Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
File: nTHCM8vSZtsCYgud65DQjkFpLmc.mft (raw, json)
Hash identifier: 9OXSnIwdL4v18PEtUXceeX/6t16Yfws6hUrgp1wrufk=
Subject key identifier: 9F:5E:F8:C0:60:2A:92:C9:76:3D:48:95:72:85:31:16:36:9F:23:C0
Authority key identifier: 9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
Certificate issuer: /CN=9d31c233cbd266db02620b9deb90d08e41692e67
Certificate serial: 019685487AD97F6A47E4C2A56CCC102017A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
Manifest number: 0BF7
Signing time: Wed 30 Apr 2025 06:00:41 +0000
Manifest this update: Wed 30 Apr 2025 06:00:41 +0000
Manifest next update: Thu 01 May 2025 06:00:41 +0000
Files and hashes: 1: _rMAcV1Zh6HxKo_vwEpVhjFVwy8.roa (hash: r1imevw1h8qWVS0OoTwBJnDWSm49xN9+9T+LLaWUqWk=)
2: nTHCM8vSZtsCYgud65DQjkFpLmc.crl (hash: QEXru/P2dnr0DhRFbZVR2i/66fVg4dW5jSRfcViYBvs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:48:7a:d9:7f:6a:47:e4:c2:a5:6c:cc:10:20:17:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d31c233cbd266db02620b9deb90d08e41692e67
Validity
Not Before: Apr 30 06:00:41 2025 GMT
Not After : May 1 06:00:41 2025 GMT
Subject: CN=9f5ef8c0602a92c9763d489572853116369f23c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:41:7d:c8:fb:d1:0d:42:16:7b:49:e0:6f:10:
12:74:05:bb:79:08:b4:ab:13:ae:16:3c:6e:97:29:
6d:dd:57:54:1e:2f:b5:31:41:07:1b:c6:72:85:f0:
09:ff:be:21:2e:93:e7:d5:ea:91:30:48:2a:b5:09:
49:c6:ef:e3:1d:dc:ae:a5:54:d4:45:a9:64:ca:aa:
91:c5:23:a9:80:e3:04:f7:4f:b9:49:36:cc:ca:d8:
7d:7c:05:5f:77:89:c2:94:1c:b6:19:b4:31:8b:93:
bd:9f:76:7f:1f:66:80:8d:b1:34:83:55:ba:39:b4:
b1:80:a3:91:3b:a5:41:c1:a5:45:21:30:cc:5a:5d:
d1:e7:2a:95:88:2a:16:a9:6c:9d:eb:8a:eb:95:93:
c8:17:53:4e:40:e2:28:ac:99:73:a2:9b:0a:39:c4:
e3:f0:72:d5:f1:e8:27:a5:e9:c7:b4:4e:a3:f6:04:
72:51:e0:0f:15:b1:44:ac:0d:7f:07:97:e2:1a:6d:
45:11:78:1c:35:b8:8b:b7:ec:de:77:90:c2:28:09:
8b:83:a0:c0:c9:5d:9e:b1:a7:d9:92:54:23:e6:f2:
92:5f:97:a4:81:fd:27:98:8a:84:00:db:e0:a5:18:
7f:4d:1d:d9:71:bd:17:65:84:74:32:4f:79:45:18:
47:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:5E:F8:C0:60:2A:92:C9:76:3D:48:95:72:85:31:16:36:9F:23:C0
X509v3 Authority Key Identifier:
keyid:9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:bf:93:b2:99:07:e0:21:f2:96:db:e0:41:61:ff:3b:ce:93:
38:59:9d:95:f2:e3:ab:7e:a9:47:1f:77:c8:4b:06:ec:cf:91:
38:25:b2:6c:44:aa:64:61:d2:0a:95:8f:49:de:b6:5c:e6:6e:
5f:72:f4:6b:11:d3:b3:28:86:04:91:21:04:74:98:81:41:df:
b4:30:fd:ea:f2:d3:79:0e:fe:8d:f8:3a:0c:a8:d2:d3:26:98:
10:26:6d:f6:d3:f3:a4:fd:6a:14:ad:9b:ba:11:32:f9:d2:0d:
98:20:15:29:db:6d:35:25:1b:33:72:00:c3:4b:31:5c:cd:0b:
6e:23:56:dc:f5:4f:9a:ff:08:15:7e:d0:fa:cf:0d:2a:fe:de:
46:8c:1e:5f:be:d2:d3:63:03:60:20:84:e8:4c:73:cb:46:3c:
95:34:0c:c9:f0:e4:95:20:d1:a0:c8:cd:20:9c:a9:94:42:37:
a5:6d:97:eb:4d:a1:88:98:bf:3a:2e:fd:0b:f0:2b:35:07:dd:
ba:b2:2f:25:2f:14:bf:b8:53:1c:34:bc:4d:12:52:49:d9:d7:
ea:fb:97:02:0b:e8:c2:96:81:cf:d4:1a:3e:d9:bd:85:5e:7f:
c8:8d:99:46:6c:cb:ac:e9:02:55:bb:46:2c:46:79:74:1a:8a:
52:cb:c2:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 10:25:58 2025 by rpki-client