Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
File: NHjAigY6wtNKGxkeJDY4m77tXpc.mft (raw, json)
Hash identifier: tYZnmm1DBUL/yA9DjcGIb8+9O0/dG8XZn27ypgM+ibA=
Subject key identifier: DC:02:26:21:A2:67:E5:10:70:2D:90:9C:17:7D:81:18:8D:EB:67:92
Authority key identifier: 34:78:C0:8A:06:3A:C2:D3:4A:1B:19:1E:24:36:38:9B:BE:ED:5E:97
Certificate issuer: /CN=3478c08a063ac2d34a1b191e2436389bbeed5e97
Certificate serial: 01964F6D166E01467C18668A6C1EBCDE8187
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
Manifest number: 0B3A
Signing time: Sat 19 Apr 2025 19:01:11 +0000
Manifest this update: Sat 19 Apr 2025 19:01:11 +0000
Manifest next update: Sun 20 Apr 2025 19:01:11 +0000
Files and hashes: 1: NHjAigY6wtNKGxkeJDY4m77tXpc.crl (hash: ApWQK6aTqKcS8TO6hK7dwq82w2eYqQv149UI3rYOfGg=)
2: pNlFvC-ThONwUDItOe39MOTdmuo.roa (hash: WDsgShsG54TqHBufqeXclF0wXzsc7Ep5HfaFqkIsZUI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6d:16:6e:01:46:7c:18:66:8a:6c:1e:bc:de:81:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3478c08a063ac2d34a1b191e2436389bbeed5e97
Validity
Not Before: Apr 19 19:01:11 2025 GMT
Not After : Apr 20 19:01:11 2025 GMT
Subject: CN=dc022621a267e510702d909c177d81188deb6792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a4:49:1e:74:e1:96:ca:b5:c9:63:1a:bc:1a:
1e:48:9a:5d:ae:1b:31:d7:41:c1:77:fb:95:b9:7a:
57:13:4c:51:df:76:5c:cf:73:ce:43:a0:4b:ae:e3:
d2:df:d4:c0:ba:3f:3b:80:f4:e5:a3:42:d9:c6:7e:
ca:8f:8a:ad:75:cf:19:95:b8:28:a3:03:e2:53:8e:
7b:5e:3e:65:10:9f:26:8f:e9:db:97:60:10:17:51:
a6:b9:1f:8d:a6:85:3f:1d:dc:d4:29:73:be:c6:42:
1b:2c:69:4b:e0:47:62:05:b6:c5:d7:ae:8e:b7:b7:
f3:ed:c9:12:f5:b0:db:22:e1:12:89:0a:fb:cf:8a:
87:49:08:a3:65:d6:0d:50:ca:01:76:14:86:a1:21:
ad:1b:21:d2:4d:92:d2:c8:b4:fc:95:60:10:87:4f:
45:41:a1:64:08:ca:e7:63:6d:5f:b4:3b:60:68:5a:
76:33:57:21:b3:46:49:2e:f9:8e:b9:a7:80:26:6a:
84:19:e6:6c:fb:75:2f:3e:d9:55:b5:dc:b6:f4:4b:
b3:3c:39:ae:25:59:79:ff:04:d7:30:e8:33:d0:83:
40:6f:ce:5f:20:98:5e:c1:f6:02:4c:48:7c:14:d8:
6a:fb:cb:82:95:b7:d5:48:1c:56:5f:23:a4:df:f6:
1f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:02:26:21:A2:67:E5:10:70:2D:90:9C:17:7D:81:18:8D:EB:67:92
X509v3 Authority Key Identifier:
keyid:34:78:C0:8A:06:3A:C2:D3:4A:1B:19:1E:24:36:38:9B:BE:ED:5E:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:08:3e:96:98:27:8b:34:a5:25:20:33:0b:04:dd:a7:24:51:
ee:8d:4e:3c:1f:67:76:4b:c9:71:d9:da:e0:5f:ae:bf:ac:6e:
3b:c9:74:59:f6:fc:09:ba:ec:60:c7:35:fc:a8:22:5d:b2:f4:
4f:33:17:a9:34:38:a5:19:f8:b6:22:67:2c:0c:89:5f:f1:e5:
27:96:d6:0f:f2:02:06:41:60:a5:3d:06:e7:96:74:35:33:f4:
34:dd:61:1e:b1:f0:29:4f:65:c1:0a:6d:b8:e9:14:ab:a2:f4:
a3:d7:7e:9e:85:8b:64:54:50:70:45:6f:28:8e:56:25:55:72:
85:30:e9:db:3e:d9:2e:b1:96:64:69:db:a4:0e:2b:38:96:58:
e2:6e:37:8a:54:b2:09:08:0b:de:3c:b3:34:ad:dc:0d:66:4f:
b1:d7:c2:43:33:ab:24:7e:40:2f:90:4a:e3:cb:6b:a4:98:ed:
6e:22:a7:cf:22:0b:62:6a:46:61:2e:09:6f:89:60:94:21:85:
06:59:a3:b1:0b:9d:66:3e:af:fa:cb:cd:b5:2e:e6:41:42:3d:
e2:89:6d:32:a2:fe:4d:cf:93:81:31:25:7a:f4:0d:7d:9f:67:
5f:21:5b:25:35:10:d6:06:4e:01:55:89:f2:c4:f3:55:8c:1e:
44:bd:ff:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:15:10 2025 by rpki-client