Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
File: nzbQijzYpC9Goslt_XLtjO4nlHc.mft (raw, json)
Hash identifier: FRH4f1decK6UqRB01BfPv320qCXKW2FfbbvGVZQ30ck=
Subject key identifier: 58:B4:53:8C:D5:16:F1:A9:47:69:DB:94:AA:C8:B2:22:46:F8:A3:77
Authority key identifier: 9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
Certificate issuer: /CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Certificate serial: 01965E3B2A7397CD387FB809D826723AA772
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
Manifest number: 0B0A
Signing time: Tue 22 Apr 2025 16:00:57 +0000
Manifest this update: Tue 22 Apr 2025 16:00:57 +0000
Manifest next update: Wed 23 Apr 2025 16:00:57 +0000
Files and hashes: 1: nzbQijzYpC9Goslt_XLtjO4nlHc.crl (hash: iaUrHTqg8XWWYKml4vlVCq4RJLfhJEk1IaGqk4YFEwI=)
2: twzQnUgBAT35ET2oNZWOjjEoBE4.roa (hash: HIWNIMTAhxf1Wnub1ymBGmdU28kJ6snFsV9+PWAEB7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:3b:2a:73:97:cd:38:7f:b8:09:d8:26:72:3a:a7:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Validity
Not Before: Apr 22 16:00:57 2025 GMT
Not After : Apr 23 16:00:57 2025 GMT
Subject: CN=58b4538cd516f1a94769db94aac8b22246f8a377
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d1:6d:8d:d1:38:58:fd:42:d5:02:f7:03:a1:
32:57:97:ba:93:d6:dc:7f:19:50:a7:81:b8:af:ac:
df:58:db:73:bc:66:6b:eb:4f:48:0b:ff:76:20:c4:
f4:ce:44:ff:df:a0:4d:bf:43:66:45:fc:cd:49:2a:
2c:08:db:9d:97:c7:26:39:92:e0:4c:9f:63:fc:6e:
9e:f2:9e:bd:6d:7c:b0:6c:3c:ac:01:d3:e3:14:f4:
a9:8e:f3:e2:22:7b:10:86:58:81:68:2d:ca:95:cb:
77:31:ec:c1:16:86:87:63:b1:a7:0d:bd:c8:2f:ea:
d0:7d:f4:0d:e4:19:72:ad:4f:08:78:ae:c7:74:b4:
08:e3:ca:f3:f4:4a:04:fd:4a:58:1a:35:c5:8b:1a:
6d:80:2b:ce:1f:d4:ad:98:17:09:b1:54:ec:1c:9b:
94:40:fd:12:e4:20:44:91:43:06:56:26:7d:dc:ca:
4b:1d:54:59:a9:4a:59:57:96:77:37:9f:21:98:cb:
39:09:8a:8f:62:40:ae:73:3d:bf:92:2b:4f:c3:72:
ce:17:46:21:84:71:e3:8d:e1:cd:92:31:35:87:5e:
1a:95:8c:4c:c4:3b:be:d7:4f:a5:f8:5c:ff:4a:86:
d7:00:b1:30:f9:79:44:6d:43:f2:01:73:8f:9e:fb:
f6:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B4:53:8C:D5:16:F1:A9:47:69:DB:94:AA:C8:B2:22:46:F8:A3:77
X509v3 Authority Key Identifier:
keyid:9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:5e:28:db:d4:5e:14:98:e5:f2:75:4e:0f:26:8b:78:97:20:
7d:6f:f7:b8:c8:e1:aa:57:7b:52:69:72:18:7b:00:91:55:d0:
81:b7:70:20:ac:09:60:68:06:d2:62:7c:06:4d:27:20:1d:5e:
4e:54:6f:8b:87:9f:ea:6d:43:c0:36:de:3e:27:e8:1b:b1:b8:
13:64:19:9b:67:14:a3:1b:49:3a:d9:e0:87:2b:d9:38:a1:6c:
5e:3a:4e:db:6a:76:f6:34:e2:67:88:d1:3e:08:3e:e6:06:e1:
d6:a7:50:87:71:33:ef:73:61:29:f6:12:c8:ca:41:29:99:3d:
90:9c:79:46:09:52:cf:5e:ed:1b:27:8b:7e:45:ed:81:55:b4:
5c:e4:7b:2f:91:14:9b:fb:9f:e3:21:ee:95:f1:a9:13:bc:fe:
b5:36:19:7c:58:02:e3:25:59:e5:3a:c2:6c:46:52:7c:1a:71:
48:a0:df:0c:72:a3:c4:61:45:ea:1f:be:c6:ab:ef:46:32:1f:
42:70:e4:22:07:1e:87:a6:94:1f:40:6e:79:70:0c:49:85:b4:
27:a0:b5:9f:db:56:d3:65:7a:d1:a9:c2:39:7d:02:42:ff:a5:
f1:2a:9e:33:08:07:55:37:77:7c:bd:6d:52:bb:81:cb:5f:07:
29:35:2f:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 19:30:03 2025 by rpki-client