Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/0c71e8-6c09-4850-a6c5-be203f01304d/1/NbdnbT6rzEXogFTIuEBH7ocyvHM.mft
File: NbdnbT6rzEXogFTIuEBH7ocyvHM.mft (raw, json)
Hash identifier: irORoMSvjFi5njvYCsPVe6VnhUpCHuBvdWwKlUarFDQ=
Subject key identifier: EE:88:47:E2:50:E5:3E:AC:E2:15:A7:C4:79:C3:51:46:B4:B6:35:05
Authority key identifier: 35:B7:67:6D:3E:AB:CC:45:E8:80:54:C8:B8:40:47:EE:87:32:BC:73
Certificate issuer: /CN=35b7676d3eabcc45e88054c8b84047ee8732bc73
Certificate serial: 01958F60F968D894CAB74CE9C90BDB3DF925
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NbdnbT6rzEXogFTIuEBH7ocyvHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/0c71e8-6c09-4850-a6c5-be203f01304d/1/NbdnbT6rzEXogFTIuEBH7ocyvHM.mft
Manifest number: 018B
Signing time: Thu 13 Mar 2025 12:00:51 +0000
Manifest this update: Thu 13 Mar 2025 12:00:51 +0000
Manifest next update: Fri 14 Mar 2025 12:00:51 +0000
Files and hashes: 1: NbdnbT6rzEXogFTIuEBH7ocyvHM.crl (hash: xZSaLkU1oIVW04hwRK5xW/89Zpp3WCz28B/zZcNbmc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/0c71e8-6c09-4850-a6c5-be203f01304d/1/NbdnbT6rzEXogFTIuEBH7ocyvHM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/0c71e8-6c09-4850-a6c5-be203f01304d/1/NbdnbT6rzEXogFTIuEBH7ocyvHM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NbdnbT6rzEXogFTIuEBH7ocyvHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:60:f9:68:d8:94:ca:b7:4c:e9:c9:0b:db:3d:f9:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35b7676d3eabcc45e88054c8b84047ee8732bc73
Validity
Not Before: Mar 13 12:00:51 2025 GMT
Not After : Mar 14 12:00:51 2025 GMT
Subject: CN=ee8847e250e53eace215a7c479c35146b4b63505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:58:c4:cc:ff:97:d5:46:8d:cc:82:bb:f9:d9:
48:4b:31:3b:99:78:41:43:ed:bf:d1:5d:6c:6a:fb:
05:af:50:97:e6:b8:f8:03:f1:3e:e9:82:2a:53:df:
cf:db:9c:d0:6f:97:9c:51:a6:4e:e2:4b:db:ba:14:
b4:ea:65:9d:24:1c:f5:40:ae:c0:b9:b5:cc:15:b2:
cc:63:21:77:2b:b2:be:64:c3:d4:4f:f0:0e:60:85:
4a:1b:75:3f:61:f6:38:20:30:0a:52:4c:6a:48:12:
e1:20:b8:b0:94:78:26:a8:64:50:38:34:d4:ba:99:
f7:d0:aa:c1:ce:03:ca:54:83:64:e2:01:30:21:e9:
89:b5:ab:4e:a5:07:be:0b:70:11:5f:a6:32:0e:85:
c5:a0:8a:8d:fd:5f:28:66:7f:c0:07:b1:ad:9f:88:
70:04:d8:47:65:79:dd:94:65:3c:f9:d8:8a:7e:00:
5d:10:9a:5b:4a:7f:a3:67:5e:b2:c2:5b:7e:8e:11:
a9:38:bc:fc:29:b9:bb:05:e0:92:55:5d:50:8b:d4:
d6:44:40:d0:5a:4b:49:92:9f:cc:6b:31:2a:bf:9a:
50:63:39:43:4b:db:23:24:bf:72:5e:48:9c:e7:af:
df:1d:83:07:0f:90:33:ec:fd:ba:af:c5:c7:88:7b:
31:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:88:47:E2:50:E5:3E:AC:E2:15:A7:C4:79:C3:51:46:B4:B6:35:05
X509v3 Authority Key Identifier:
keyid:35:B7:67:6D:3E:AB:CC:45:E8:80:54:C8:B8:40:47:EE:87:32:BC:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NbdnbT6rzEXogFTIuEBH7ocyvHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0c71e8-6c09-4850-a6c5-be203f01304d/1/NbdnbT6rzEXogFTIuEBH7ocyvHM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0c71e8-6c09-4850-a6c5-be203f01304d/1/NbdnbT6rzEXogFTIuEBH7ocyvHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:5e:81:72:51:8f:48:71:18:af:6f:dc:d0:e3:4f:bc:05:2c:
04:6d:45:20:42:aa:b1:28:28:ff:a8:3b:00:1f:ac:a2:c2:95:
0f:97:e6:74:a9:48:b2:b9:e7:af:dc:0a:50:48:8b:9f:71:0d:
33:df:a8:d3:74:bf:4a:9f:61:bc:0c:78:c9:2a:6c:26:9c:a4:
f7:f7:03:8e:fa:d6:ea:a7:d8:a5:87:62:d7:e1:04:aa:92:f2:
e7:38:0d:6d:92:bc:1a:86:a5:84:c3:0e:39:0e:7e:e7:f5:a1:
f8:24:07:07:94:98:5b:48:0a:2b:80:46:23:87:15:b1:fc:0a:
c0:58:88:c9:e1:77:0f:8f:34:d2:aa:5c:87:fb:b8:57:43:9e:
a1:25:2c:96:4d:0c:4a:62:2d:99:4d:9a:cf:50:b3:2b:79:fe:
24:53:14:0c:0b:52:23:9e:dc:5a:c9:5d:26:7f:9b:9f:b3:79:
02:8e:c2:a6:86:ce:d3:43:09:1c:b9:4a:26:a3:ca:10:d5:c7:
f2:83:0c:01:71:63:8e:c6:e8:36:f8:d6:bc:67:5f:34:0e:e3:
a2:19:1d:22:76:89:63:b9:ac:ff:3a:76:5a:6a:25:bd:fb:bf:
d4:42:b3:83:03:0a:d0:2f:bb:0b:da:10:c7:4d:05:a2:70:e7:
6d:97:10:e3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWPYPlo2JTKt0zpyQvbPfklMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1Yjc2NzZkM2VhYmNjNDVlODgwNTRjOGI4NDA0N2VlODcz
MmJjNzMwHhcNMjUwMzEzMTIwMDUxWhcNMjUwMzE0MTIwMDUxWjAzMTEwLwYDVQQD
EyhlZTg4NDdlMjUwZTUzZWFjZTIxNWE3YzQ3OWMzNTE0NmI0YjYzNTA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuljEzP+X1UaNzIK7+dlISzE7mXhB
Q+2/0V1savsFr1CX5rj4A/E+6YIqU9/P25zQb5ecUaZO4kvbuhS06mWdJBz1QK7A
ubXMFbLMYyF3K7K+ZMPUT/AOYIVKG3U/YfY4IDAKUkxqSBLhILiwlHgmqGRQODTU
upn30KrBzgPKVINk4gEwIemJtatOpQe+C3ARX6YyDoXFoIqN/V8oZn/AB7Gtn4hw
BNhHZXndlGU8+diKfgBdEJpbSn+jZ16ywlt+jhGpOLz8Kbm7BeCSVV1Qi9TWREDQ
WktJkp/MazEqv5pQYzlDS9sjJL9yXkic56/fHYMHD5Az7P26r8XHiHsxVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO6IR+JQ5T6s4hWnxHnDUUa0tjUFMB8GA1UdIwQY
MBaAFDW3Z20+q8xF6IBUyLhAR+6HMrxzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmJkbmJUNnJ6RVhvZ0ZUSXVFQkg3b2N5dkhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8wYzcxZTgtNmMwOS00ODUwLWE2YzUt
YmUyMDNmMDEzMDRkLzEvTmJkbmJUNnJ6RVhvZ0ZUSXVFQkg3b2N5dkhNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy8wYzcxZTgtNmMwOS00ODUwLWE2YzUtYmUyMDNmMDEzMDRk
LzEvTmJkbmJUNnJ6RVhvZ0ZUSXVFQkg3b2N5dkhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbV6BclGP
SHEYr2/c0ONPvAUsBG1FIEKqsSgo/6g7AB+sosKVD5fmdKlIsrnnr9wKUEiLn3EN
M9+o03S/Sp9hvAx4ySpsJpyk9/cDjvrW6qfYpYdi1+EEqpLy5zgNbZK8GoalhMMO
OQ5+5/Wh+CQHB5SYW0gKK4BGI4cVsfwKwFiIyeF3D4800qpch/u4V0OeoSUslk0M
SmItmU2az1CzK3n+JFMUDAtSI57cWsldJn+bn7N5Ao7CpobO00MJHLlKJqPKENXH
8oMMAXFjjsboNvjWvGdfNA7johkdInaJY7ms/zp2Wmolvfu/1EKzgwMK0C+7C9oQ
x00FonDnbZcQ4w==
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:37:40 2025 by rpki-client