Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
File: NIMjF9JURDS2WeVpIHHY5MSTiwY.mft (raw, json)
Hash identifier: xh2FtrC6/dAS5CZ8TwWHiO3n5OzgR4rMtU9WJy1Wl7w=
Subject key identifier: 4B:7D:71:A4:94:24:C5:C0:A9:5E:2B:14:E3:A0:06:C8:65:AF:C0:AB
Authority key identifier: 34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
Certificate issuer: /CN=34832317d2544434b659e5692071d8e4c4938b06
Certificate serial: 01964A0FB4D10B5810B3C91435351BA9F61C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
Manifest number: 026A
Signing time: Fri 18 Apr 2025 18:01:05 +0000
Manifest this update: Fri 18 Apr 2025 18:01:05 +0000
Manifest next update: Sat 19 Apr 2025 18:01:05 +0000
Files and hashes: 1: NIMjF9JURDS2WeVpIHHY5MSTiwY.crl (hash: yu8uNVSM9ghyd5P2LcF9JQmNLsIKOXSMUTgz+lj+850=)
2: x2Xaez7Ra9vjvF4FG3Er4hO4ovk.roa (hash: T67Ch/iuLueDDibfJIFSKnLQW9UiEIt+71JVmL/jUzg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 18:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:0f:b4:d1:0b:58:10:b3:c9:14:35:35:1b:a9:f6:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34832317d2544434b659e5692071d8e4c4938b06
Validity
Not Before: Apr 18 18:01:05 2025 GMT
Not After : Apr 19 18:01:05 2025 GMT
Subject: CN=4b7d71a49424c5c0a95e2b14e3a006c865afc0ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:05:97:57:de:13:f4:ef:29:a0:c9:1c:4d:b8:
91:b0:96:99:bf:21:3f:4f:25:34:58:0c:28:b1:93:
4b:f1:cf:c8:84:74:63:4c:f7:f4:a5:d5:5e:0e:5b:
9c:da:e1:d8:0b:d0:58:db:45:48:6b:81:a3:aa:a6:
26:f5:ff:f5:73:48:66:3e:0f:e9:15:3d:f9:6e:e9:
d6:41:7c:5c:f8:58:ae:b8:f0:1e:87:83:75:88:d8:
5f:a5:36:72:03:34:81:2e:e7:32:c6:21:0b:ef:15:
d7:d4:bf:bf:3b:f0:cd:88:3c:48:98:17:0a:6f:3e:
1d:1c:10:3c:2f:54:f8:51:40:a0:2b:71:4c:8d:b5:
df:77:60:b6:9a:b0:e1:66:4f:79:31:88:09:14:02:
91:a6:41:36:2d:c5:a8:04:40:1a:36:42:b5:74:f7:
1e:30:81:f4:d7:69:01:a8:c8:b0:6b:99:0a:ba:fd:
25:a1:b9:f8:d2:1a:96:cc:ce:bd:a5:67:71:6e:00:
80:d7:2c:45:b8:34:ff:2a:77:a4:fc:08:78:a0:0a:
83:12:7e:fb:81:46:ac:77:ec:df:ae:e3:d7:d1:6e:
8a:25:99:1c:55:eb:6e:6b:d5:10:04:ec:38:4f:93:
cd:db:6d:ef:c1:f0:72:32:ff:1c:ac:e4:13:10:7d:
2d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:7D:71:A4:94:24:C5:C0:A9:5E:2B:14:E3:A0:06:C8:65:AF:C0:AB
X509v3 Authority Key Identifier:
keyid:34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:85:77:6a:3c:3c:4e:47:79:40:a5:6a:25:4b:09:6a:89:71:
bb:92:7e:bd:c8:fe:c3:4f:a2:bb:99:3b:b2:81:07:5f:a0:ca:
af:c7:78:52:76:58:48:86:93:ef:38:47:dc:9f:77:38:c2:f6:
12:18:f6:55:e5:e3:19:67:28:9f:e0:8a:4c:3e:0a:8a:ea:43:
58:84:32:5e:fd:ad:0c:37:40:9b:88:7a:5d:0f:32:5b:b3:81:
73:ed:6a:c3:8b:f4:96:22:55:d1:0b:3c:39:e6:75:e3:d8:03:
95:87:aa:bd:b3:7c:ad:35:df:e7:53:c4:63:89:c7:a1:20:1d:
9e:21:48:e2:92:07:df:bf:d7:f8:ae:d4:8f:3b:7b:6a:1e:16:
ba:1a:af:fc:32:d7:ae:f2:b7:81:90:55:c2:04:cf:d4:5c:61:
e0:28:38:84:ee:1b:3f:d4:38:a3:da:90:fc:26:eb:ca:f8:cd:
02:70:48:da:11:44:40:58:ee:f4:c9:0c:85:4f:c3:63:35:04:
f5:8e:fc:f8:b4:fc:e3:29:3a:82:2c:db:ff:7a:e8:84:0e:e2:
f2:46:b2:29:d3:ca:4b:99:d4:8d:3a:6c:80:5d:7b:4a:06:95:
2d:e5:f6:58:1c:c7:c7:40:14:dd:4e:38:0b:b0:d3:29:05:79:
7b:19:76:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 00:40:29 2025 by rpki-client