Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft
File: nGCyJ8t1doofV4Vuw1M8loSCYZw.mft (raw, json)
Hash identifier: 522h+cEkEvbaLM6HZE/wHv2k3EgAE794byf03Rh3WxI=
Subject key identifier: AA:FE:D1:4A:C6:5E:47:60:47:17:2F:6F:CA:50:F5:53:3D:F7:A6:6D
Authority key identifier: 9C:60:B2:27:CB:75:76:8A:1F:57:85:6E:C3:53:3C:96:84:82:61:9C
Certificate issuer: /CN=9c60b227cb75768a1f57856ec3533c968482619c
Certificate serial: 01965982211B52994386325F666882EC426D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGCyJ8t1doofV4Vuw1M8loSCYZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft
Manifest number: 13B2
Signing time: Mon 21 Apr 2025 18:00:22 +0000
Manifest this update: Mon 21 Apr 2025 18:00:22 +0000
Manifest next update: Tue 22 Apr 2025 18:00:22 +0000
Files and hashes: 1: nGCyJ8t1doofV4Vuw1M8loSCYZw.crl (hash: LuxVI74wwqQHmQ3IZ+thwWkY8Tjap8k0VZa1tiElpZM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nGCyJ8t1doofV4Vuw1M8loSCYZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 18:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:82:21:1b:52:99:43:86:32:5f:66:68:82:ec:42:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c60b227cb75768a1f57856ec3533c968482619c
Validity
Not Before: Apr 21 18:00:22 2025 GMT
Not After : Apr 22 18:00:22 2025 GMT
Subject: CN=aafed14ac65e476047172f6fca50f5533df7a66d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:dc:b0:a2:c9:0f:b3:07:c0:d7:a9:fe:65:a1:
ee:32:75:22:21:bd:9f:12:ff:c2:31:6c:78:35:99:
47:cb:8e:89:66:31:cb:b3:8c:32:37:9e:b8:ee:42:
f4:50:5f:72:f1:8c:1b:ef:fe:55:24:9c:49:7c:74:
b2:6f:e5:56:ab:4d:26:ce:04:84:c4:c0:90:b2:cc:
5a:11:fc:33:c0:c9:8d:32:e4:61:fb:d4:d1:8d:07:
7e:82:d1:2a:37:9e:88:9f:7e:5a:5c:2b:86:88:77:
33:4a:98:d0:da:43:c9:40:b7:97:8e:55:78:c1:c1:
24:7c:6d:3c:6d:73:93:df:53:33:dc:d8:c3:3d:4d:
cc:7e:9a:5d:d6:02:63:8a:ea:ee:7f:f0:b6:33:c1:
57:34:2a:d6:1e:af:41:e3:90:5b:ea:17:12:06:12:
1c:7f:e4:3e:11:49:01:90:33:a6:10:8a:e0:5f:f0:
39:be:30:7f:74:5a:21:d5:e9:dd:47:96:00:21:a8:
c1:18:ab:e9:5b:fe:dd:7e:0f:c4:23:5a:a2:6e:d6:
2a:0f:3e:d0:c4:8b:86:70:8f:f4:5c:5f:f5:53:01:
d8:42:4f:50:d2:66:9e:89:64:ec:cb:4f:88:1e:35:
1f:c3:1b:75:d6:69:89:ea:6c:eb:dd:af:13:70:72:
46:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:FE:D1:4A:C6:5E:47:60:47:17:2F:6F:CA:50:F5:53:3D:F7:A6:6D
X509v3 Authority Key Identifier:
keyid:9C:60:B2:27:CB:75:76:8A:1F:57:85:6E:C3:53:3C:96:84:82:61:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGCyJ8t1doofV4Vuw1M8loSCYZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:a9:96:b0:6d:e6:c1:02:28:e3:d4:10:ad:d7:82:02:67:6d:
d9:14:22:ef:5a:68:13:06:ea:0c:f2:6c:7e:79:26:30:1b:33:
ba:6d:2e:0f:6a:7a:dc:89:5b:03:79:c3:8d:b4:e4:97:36:74:
3f:0b:c9:87:05:3b:cb:00:ae:ca:eb:a9:48:ce:01:b5:aa:c4:
e9:06:f5:c1:a4:d4:79:99:05:64:6e:05:8c:5d:8d:45:b1:7e:
23:09:f9:6c:d5:c8:76:e2:c9:11:74:8a:b5:8d:ee:b2:af:d5:
14:37:07:ac:37:2c:c0:02:24:7a:0a:9e:8b:1b:4e:8e:f4:28:
57:b3:8e:e4:a3:6a:be:b8:e6:a5:25:60:30:eb:d2:47:e7:85:
00:95:f5:3c:2e:d1:d8:9c:c5:ef:c4:01:dd:31:41:05:cb:dd:
ec:9d:a2:62:15:88:02:55:5b:3a:84:54:86:8c:84:86:f4:60:
a6:70:69:2e:68:d3:92:07:ff:b3:42:e8:4f:3c:59:63:a5:78:
8b:49:ea:61:dc:5a:cb:e9:a1:03:33:ba:0f:6b:dc:c6:f7:95:
cd:0c:93:15:31:6b:e7:30:4f:4b:b4:d9:66:4b:7e:bf:be:4b:
b1:ab:bd:36:5b:93:25:be:6a:97:df:07:a0:fc:77:12:7d:85:
91:f6:ac:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:32:18 2025 by rpki-client