Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft
File: NmTkRiopAqUvgm2uOFZXMe_FvdM.mft (raw, json)
Hash identifier: lSRBiEHjiBoXlpo6qKRuHI+/PjDOsSqBjgDdKvUUPOo=
Subject key identifier: 14:A7:D2:E5:A4:AD:01:0E:44:87:37:1B:64:DD:1A:A0:D8:71:1A:76
Authority key identifier: 36:64:E4:46:2A:29:02:A5:2F:82:6D:AE:38:56:57:31:EF:C5:BD:D3
Certificate issuer: /CN=3664e4462a2902a52f826dae38565731efc5bdd3
Certificate serial: 019658023AC7343B9D581823185AF4928BE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NmTkRiopAqUvgm2uOFZXMe_FvdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft
Manifest number: 144F
Signing time: Mon 21 Apr 2025 11:01:03 +0000
Manifest this update: Mon 21 Apr 2025 11:01:03 +0000
Manifest next update: Tue 22 Apr 2025 11:01:03 +0000
Files and hashes: 1: NmTkRiopAqUvgm2uOFZXMe_FvdM.crl (hash: DSktLK2atm4DOd7TpflQaqwP7BcapHuA/MMvr1Qk1HU=)
2: bRSiH3Ltu0n345442eKdUINyK3s.roa (hash: WObRy2TpZce8N0K21ZTeL8NwUXrbmFADn/Y+S73z7rk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NmTkRiopAqUvgm2uOFZXMe_FvdM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 11:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:02:3a:c7:34:3b:9d:58:18:23:18:5a:f4:92:8b:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3664e4462a2902a52f826dae38565731efc5bdd3
Validity
Not Before: Apr 21 11:01:03 2025 GMT
Not After : Apr 22 11:01:03 2025 GMT
Subject: CN=14a7d2e5a4ad010e4487371b64dd1aa0d8711a76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:41:e8:a5:8f:89:8c:15:2c:49:6f:bc:7a:97:
dc:10:d9:d0:1c:0d:4a:63:52:1d:a9:3c:ef:18:9d:
ee:13:82:29:c3:97:64:99:48:7c:95:5f:8f:03:fc:
3f:03:41:b6:10:ae:1c:cd:8f:33:52:ba:61:1d:28:
5f:ce:60:1b:81:a0:5a:d8:5f:8b:10:9c:a5:1d:c2:
5b:2e:95:b3:69:94:9a:7d:f4:0f:e2:9a:c9:73:95:
cf:c8:d8:00:a7:1e:9a:ea:70:de:d1:95:4e:17:49:
fe:6d:da:f0:c5:9b:d6:f3:5c:00:ec:98:f2:36:e4:
51:00:72:a3:48:7b:d9:8c:41:d3:8f:f9:3f:65:31:
77:53:d4:5d:17:8b:28:4c:17:24:27:5a:c0:dd:bc:
d3:01:ac:d3:53:cc:aa:4a:99:95:30:47:00:bc:21:
8b:d9:81:f8:96:1d:b9:24:d8:77:73:a6:67:ca:cd:
8f:3c:f3:45:c1:48:39:f6:6d:ba:a7:db:17:6e:22:
ab:7f:4f:fd:58:f9:d9:f9:23:57:53:c9:91:36:bc:
36:db:05:5d:fb:07:49:a3:c2:15:b8:7e:29:9a:4e:
81:55:19:6b:49:16:f6:26:66:1f:5c:05:23:ce:7c:
59:31:32:07:c7:cd:6b:8e:c2:a7:87:ad:19:31:87:
8c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A7:D2:E5:A4:AD:01:0E:44:87:37:1B:64:DD:1A:A0:D8:71:1A:76
X509v3 Authority Key Identifier:
keyid:36:64:E4:46:2A:29:02:A5:2F:82:6D:AE:38:56:57:31:EF:C5:BD:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NmTkRiopAqUvgm2uOFZXMe_FvdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:e5:87:bc:16:fe:35:80:72:19:a5:30:87:44:b2:d6:3e:31:
75:45:2e:12:e7:2e:28:c8:a3:1a:87:bc:5d:fe:e5:5c:6c:26:
a4:13:fc:dd:ef:13:6a:b0:a8:c2:64:13:24:14:07:fc:bb:a8:
f2:0b:93:25:35:47:58:52:32:4d:8c:41:10:86:9f:21:6d:32:
ad:70:44:d0:2c:45:1a:89:f9:4b:f5:e1:5a:4d:35:d6:07:82:
d6:4c:c2:57:5c:cc:ac:61:b0:e1:73:c2:64:2d:3f:b5:d3:a4:
1c:9a:06:e5:d1:26:6e:42:42:a6:83:25:cf:66:23:df:2b:40:
af:17:a1:62:7a:ca:32:77:b5:e3:47:4c:92:f4:eb:75:65:2d:
2b:3e:28:19:70:a4:b2:74:c0:d8:70:69:6f:17:42:81:30:78:
0a:03:e6:0f:5b:df:fa:89:c0:f8:4e:af:cb:fd:8d:6c:a4:64:
78:32:03:9e:14:36:8e:6b:5e:e3:c2:ee:68:9f:f1:49:ba:94:
b9:81:9d:be:30:1e:3a:ae:a6:c9:45:b7:32:6c:b4:00:b0:44:
1e:05:81:4a:b5:c4:21:f1:13:77:d6:9e:f4:d7:db:18:ae:bc:
b0:8d:fd:92:5b:c5:71:62:4d:b9:5e:90:bb:aa:98:9d:15:52:
b1:15:0d:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 21:25:01 2025 by rpki-client