Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
File: Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft (raw, json)
Hash identifier: Q7RcuFKjWWEHkxKekpvxDoW+XmcovCxpdzzhyf1Ru2k=
Subject key identifier: D5:91:D1:5D:AD:29:E0:74:85:B6:F6:A4:EE:F4:C0:88:51:48:5B:66
Authority key identifier: 36:4D:48:8B:8C:73:1B:91:D4:A5:A2:B9:0A:66:6C:EE:BC:0E:18:C9
Certificate issuer: /CN=364d488b8c731b91d4a5a2b90a666ceebc0e18c9
Certificate serial: 01965537B7FAD8E383C70EEDEDE41FCBD8FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
Manifest number: 10
Signing time: Sun 20 Apr 2025 22:00:37 +0000
Manifest this update: Sun 20 Apr 2025 22:00:37 +0000
Manifest next update: Mon 21 Apr 2025 22:00:37 +0000
Files and hashes: 1: Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl (hash: zfv+TcBtIzw9i8V2x/UIynxGYa+2RKT4Ndllw/6DuEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:b7:fa:d8:e3:83:c7:0e:ed:ed:e4:1f:cb:d8:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=364d488b8c731b91d4a5a2b90a666ceebc0e18c9
Validity
Not Before: Apr 20 22:00:37 2025 GMT
Not After : Apr 21 22:00:37 2025 GMT
Subject: CN=d591d15dad29e07485b6f6a4eef4c08851485b66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:67:36:6b:8e:f2:de:ac:51:22:72:fe:13:9f:
86:80:ce:8a:21:a1:37:cb:79:45:85:32:7e:99:b4:
39:de:ca:62:6d:b3:ba:88:1f:a7:dd:22:d3:f6:9b:
a3:3c:44:6c:fd:3e:76:7f:b9:af:0b:c4:c0:e6:d5:
f5:59:42:0e:15:f6:67:2f:91:2b:78:fb:1c:d2:47:
5e:e7:e5:95:f3:21:c3:e6:4f:6e:70:d9:37:ac:e6:
bb:74:65:af:97:40:c7:a4:65:8f:63:af:e5:eb:d2:
05:4f:ac:80:54:f4:9a:a7:b8:6e:28:55:8a:d9:6f:
47:d8:0b:ae:03:2b:51:60:0a:7a:dd:52:1d:25:de:
d0:ba:84:7b:93:b9:ab:ee:a7:b3:5d:8a:89:a7:fe:
05:9f:08:48:84:46:97:02:be:16:21:d3:35:6d:e9:
13:af:a9:8f:a3:21:a9:8d:80:e8:1b:7b:6c:0d:b7:
41:d2:70:bd:cd:1f:82:88:bf:4d:07:08:18:98:86:
1e:f4:1a:f3:e6:c6:ba:8a:0f:c0:45:ee:b9:32:95:
69:09:97:0c:50:62:3c:fd:5d:ed:09:0b:21:47:8f:
83:b3:80:0b:f1:24:5d:cb:6a:e9:8b:f0:b2:39:03:
be:bf:5c:ad:54:5f:bf:8f:2a:2a:bf:42:3b:dd:39:
83:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:91:D1:5D:AD:29:E0:74:85:B6:F6:A4:EE:F4:C0:88:51:48:5B:66
X509v3 Authority Key Identifier:
keyid:36:4D:48:8B:8C:73:1B:91:D4:A5:A2:B9:0A:66:6C:EE:BC:0E:18:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:52:3d:e9:a0:3c:7f:09:00:11:95:99:05:66:20:59:24:bb:
98:9c:e9:98:a7:29:5e:70:65:7c:44:88:f3:e4:bf:5b:d5:c9:
cf:ed:6e:da:3a:f1:8e:25:9e:a1:ee:a7:e7:1c:2f:f8:6e:7b:
d3:dd:da:47:5e:b0:36:fb:65:6f:f9:0f:e6:6b:c3:c8:06:45:
18:27:63:eb:b2:3e:e6:8c:95:2c:99:72:ea:00:b0:cb:ee:dc:
80:69:95:70:ed:bb:a2:08:4f:2b:4e:b0:b6:51:20:6a:c6:d8:
08:9c:3b:f4:29:6f:a2:e4:04:ef:8c:a3:3c:41:68:72:a6:20:
20:33:83:61:59:85:f8:5e:fb:a1:23:7f:4f:ea:9d:42:86:00:
b0:38:65:14:5f:b0:e0:63:42:c8:47:cb:60:58:e3:24:2d:86:
75:ec:e5:ab:75:2a:73:dc:11:81:b0:43:22:a6:67:ee:c5:74:
46:f3:00:f8:f6:99:21:2a:9b:05:4c:e9:69:35:f0:8c:21:e7:
a7:5e:b0:9d:70:f5:58:77:83:8b:eb:2c:ba:f7:7c:50:0b:82:
76:9a:7c:55:63:66:f9:79:cb:80:45:0a:cc:96:8b:b3:b6:f6:
11:5d:3e:ab:25:1e:5d:6a:5a:4c:fd:8e:bd:a8:3b:aa:86:d9:
fc:b6:b6:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:34:17 2025 by rpki-client