Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft
File: NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft (raw, json)
Hash identifier: LiA5VmWeibOYdgQd3cwANn5yUfldkNqNVODJO5k5roM=
Subject key identifier: BA:B3:EC:89:34:FD:03:D4:5B:7A:3A:5B:AC:78:EA:4B:F0:44:EC:00
Authority key identifier: 35:01:77:24:57:E0:F8:27:B9:E9:20:B0:0C:D1:14:82:4A:5F:A6:21
Certificate issuer: /CN=3501772457e0f827b9e920b00cd114824a5fa621
Certificate serial: 019651239F80D0A3B4177F9E227BCE01DE85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQF3JFfg-Ce56SCwDNEUgkpfpiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft
Manifest number: 14FC
Signing time: Sun 20 Apr 2025 03:00:11 +0000
Manifest this update: Sun 20 Apr 2025 03:00:11 +0000
Manifest next update: Mon 21 Apr 2025 03:00:11 +0000
Files and hashes: 1: NQF3JFfg-Ce56SCwDNEUgkpfpiE.crl (hash: n3qW3XskETrWLyeoNa01KklxSHUXtNeInkaA5Si8y+A=)
2: f-luTA_tx0v0TH5JKilbt6SzcJU.roa (hash: +LXN4TEg0fwtohb1kuvdLScMnEdA9CiLPdalbBVCXxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/NQF3JFfg-Ce56SCwDNEUgkpfpiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 03:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:23:9f:80:d0:a3:b4:17:7f:9e:22:7b:ce:01:de:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3501772457e0f827b9e920b00cd114824a5fa621
Validity
Not Before: Apr 20 03:00:11 2025 GMT
Not After : Apr 21 03:00:11 2025 GMT
Subject: CN=bab3ec8934fd03d45b7a3a5bac78ea4bf044ec00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cf:99:e6:e9:56:90:2e:a1:c7:eb:8a:23:35:
a8:60:f4:cf:4b:53:d2:61:41:7f:6d:58:d9:01:4d:
74:ce:63:82:97:b6:22:a1:34:37:73:a7:08:6d:29:
7c:25:34:fd:37:19:c5:14:11:82:bc:81:02:c0:ec:
8b:6f:30:f8:90:39:1b:66:7f:60:37:37:ba:5f:6d:
52:89:eb:d8:c3:ab:e2:a1:4d:99:29:90:ff:48:ac:
95:92:b0:2b:af:da:f1:e5:0b:47:8d:e4:fe:43:7a:
b1:a6:37:d0:66:59:4e:61:95:18:ff:1c:ed:f6:fd:
d1:60:78:4b:81:5a:91:52:19:e1:7f:1b:1c:b9:21:
cd:c3:25:a8:f7:e6:2c:46:4a:e1:fb:83:7e:5a:40:
38:56:91:8d:0b:b8:10:9e:29:20:f9:7e:42:79:03:
ca:24:9e:24:27:98:e4:59:a0:8c:e5:bf:31:b8:97:
2d:43:0c:43:10:38:61:5f:05:4d:21:a9:a4:97:70:
40:ea:49:82:6e:3b:90:1f:a5:29:51:a2:02:5c:d8:
08:7f:a0:57:bc:21:ca:b4:f1:b3:88:7b:44:b4:83:
61:d9:da:a1:ac:97:c8:62:b6:f6:c5:c5:3d:c2:2b:
1a:68:29:b5:53:51:13:a1:0a:24:5d:06:85:1e:5e:
64:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:B3:EC:89:34:FD:03:D4:5B:7A:3A:5B:AC:78:EA:4B:F0:44:EC:00
X509v3 Authority Key Identifier:
keyid:35:01:77:24:57:E0:F8:27:B9:E9:20:B0:0C:D1:14:82:4A:5F:A6:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQF3JFfg-Ce56SCwDNEUgkpfpiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:12:d6:11:4a:85:1b:9e:4d:20:f1:78:5f:1e:d5:d0:3f:6d:
51:7b:b6:37:41:75:c6:00:d6:90:71:82:c6:de:81:61:d3:c5:
13:d7:42:95:f8:ba:7c:f8:94:6b:a2:4b:32:eb:87:08:58:56:
20:59:4c:69:72:32:88:67:d2:02:e7:00:b7:6e:c0:ff:a2:5f:
6a:2f:21:a9:11:43:e7:ac:59:37:c3:d1:91:78:74:21:8f:ac:
7b:dd:b6:69:e3:b6:77:00:ec:24:75:91:23:59:ba:3f:65:06:
3c:fc:6d:53:73:14:fc:d9:1f:cc:b6:3e:c4:f1:ee:36:e6:39:
45:f8:74:bb:dc:8e:04:6b:21:e0:10:34:82:e7:e0:e8:12:20:
e8:f1:3b:06:e9:2f:88:16:a5:89:fa:7a:1e:10:5b:cb:d6:af:
73:bc:5c:18:69:31:e4:0e:42:73:95:68:c1:48:88:5a:33:e7:
65:2c:2e:8d:99:a3:4d:f2:08:56:f5:ed:c5:98:bd:8e:6b:4f:
6a:ca:3d:cb:88:77:e9:23:09:20:5c:ba:2f:80:a8:5e:67:e2:
fd:9d:d8:c5:5e:78:35:e0:ce:0d:cd:71:e5:99:4a:de:4d:36:
81:e3:65:89:d7:40:30:85:6e:9d:5c:52:de:33:6c:54:8d:be:
e9:14:30:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:59:38 2025 by rpki-client