Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/d2233c-a741-4bd9-b6db-7ed998ddb85a/1/nmw2D-XITxlWHHrpu89PnPpHi08.mft
File: nmw2D-XITxlWHHrpu89PnPpHi08.mft (raw, json)
Hash identifier: eUXqI+sKcLGJURXGuHoSYmcLeeTc7fLWEif3y8HIJl4=
Subject key identifier: 86:EF:4B:98:8F:23:30:E0:FE:E5:AC:1A:77:08:B9:22:82:DD:91:77
Authority key identifier: 9E:6C:36:0F:E5:C8:4F:19:56:1C:7A:E9:BB:CF:4F:9C:FA:47:8B:4F
Certificate issuer: /CN=9e6c360fe5c84f19561c7ae9bbcf4f9cfa478b4f
Certificate serial: 01965680F74BA48ECE0A84D051A59F8BB84F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nmw2D-XITxlWHHrpu89PnPpHi08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/d2233c-a741-4bd9-b6db-7ed998ddb85a/1/nmw2D-XITxlWHHrpu89PnPpHi08.mft
Manifest number: 07B6
Signing time: Mon 21 Apr 2025 04:00:14 +0000
Manifest this update: Mon 21 Apr 2025 04:00:14 +0000
Manifest next update: Tue 22 Apr 2025 04:00:14 +0000
Files and hashes: 1: nmw2D-XITxlWHHrpu89PnPpHi08.crl (hash: YT7M51j5KyqYV4xTUwv4zWDOvv7mth1tOtEhiQ5bcBY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/d2233c-a741-4bd9-b6db-7ed998ddb85a/1/nmw2D-XITxlWHHrpu89PnPpHi08.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/d2233c-a741-4bd9-b6db-7ed998ddb85a/1/nmw2D-XITxlWHHrpu89PnPpHi08.mft
rsync://rpki.ripe.net/repository/DEFAULT/nmw2D-XITxlWHHrpu89PnPpHi08.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:80:f7:4b:a4:8e:ce:0a:84:d0:51:a5:9f:8b:b8:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e6c360fe5c84f19561c7ae9bbcf4f9cfa478b4f
Validity
Not Before: Apr 21 04:00:14 2025 GMT
Not After : Apr 22 04:00:14 2025 GMT
Subject: CN=86ef4b988f2330e0fee5ac1a7708b92282dd9177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a0:65:f8:c5:a3:b9:ff:87:5e:4a:e2:0f:98:
a8:9c:81:b4:f5:b8:bd:e1:e8:fb:75:f8:e8:00:c5:
f8:bf:cc:e9:08:ef:88:f2:62:5a:d4:a2:ae:9b:b2:
1b:f0:4c:40:d6:9b:82:47:35:0c:73:2e:29:be:dd:
d3:38:0b:99:a2:fd:8c:13:02:dc:1b:4b:d8:25:2a:
34:04:56:c7:df:6d:38:9c:ac:c6:8d:6f:9b:bf:46:
cc:9b:37:51:be:d5:a4:24:51:be:40:2e:72:27:85:
1b:72:f4:7b:49:7c:1a:ec:f5:05:2a:26:14:59:53:
8d:3a:d0:24:d5:eb:d9:f2:6a:27:a1:8f:7f:89:ac:
69:98:a8:47:05:ed:a3:95:3d:4f:16:55:2b:d9:88:
2e:b0:12:2d:b2:ae:32:c3:04:60:9b:64:b0:16:df:
a5:db:91:75:a9:71:87:28:b8:67:4a:96:c7:ca:fc:
ac:88:3c:5b:f9:24:69:d1:2e:37:c3:bd:d3:4e:39:
59:ec:58:13:68:c5:41:23:db:be:c8:cd:d8:9a:24:
ac:77:62:94:60:74:dd:37:a5:23:38:69:19:e5:f7:
c6:79:c9:95:5b:cc:dc:d9:6e:3b:7f:d6:ab:b0:81:
57:fa:b4:ca:b5:92:91:d3:6d:03:98:e1:3f:05:40:
c6:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:EF:4B:98:8F:23:30:E0:FE:E5:AC:1A:77:08:B9:22:82:DD:91:77
X509v3 Authority Key Identifier:
keyid:9E:6C:36:0F:E5:C8:4F:19:56:1C:7A:E9:BB:CF:4F:9C:FA:47:8B:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nmw2D-XITxlWHHrpu89PnPpHi08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/d2233c-a741-4bd9-b6db-7ed998ddb85a/1/nmw2D-XITxlWHHrpu89PnPpHi08.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/d2233c-a741-4bd9-b6db-7ed998ddb85a/1/nmw2D-XITxlWHHrpu89PnPpHi08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:3f:7f:58:5b:5d:a2:3e:8e:ae:27:fe:b6:83:fd:1d:c5:a5:
1f:86:21:1a:ba:7e:63:93:f6:07:f2:01:14:83:6f:47:42:c2:
4d:62:95:6c:34:42:39:9b:4a:fa:1b:5f:b1:64:34:5b:d0:65:
d6:ad:51:ff:9d:b4:88:b1:a0:43:2c:ab:81:4d:5a:44:74:78:
57:20:4b:f3:3f:54:55:72:ae:74:60:cc:13:2d:f4:b1:7b:1b:
a4:65:41:e8:b6:d0:83:cc:fd:8c:2c:eb:e8:6b:40:2c:84:4b:
9b:25:76:37:5e:04:d4:6d:dc:00:4a:0d:66:2d:f6:ab:2a:cf:
75:da:bf:92:58:9d:49:89:4b:6b:5b:e6:27:b9:66:8e:63:02:
c8:3f:3c:b5:d5:70:bc:01:46:d3:24:21:c3:f5:f3:05:34:bd:
23:29:a2:2e:24:85:e9:ba:36:f1:a0:e8:b5:6f:a3:f7:26:79:
03:66:3e:e5:78:7c:36:66:a5:b8:fa:d1:d7:55:7a:71:dd:f8:
9f:62:9d:c7:a2:37:e9:42:b1:a0:59:e4:52:2e:1d:95:ce:06:
16:1c:0c:ad:16:82:6c:19:c7:19:8d:f8:80:49:55:4a:73:a2:
22:ff:9c:1a:36:08:06:93:c7:10:00:b9:f4:96:5f:36:93:c4:
16:54:fe:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:38:09 2025 by rpki-client