Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
File: nlaYDUienFO8gp8-jWPTg_ONDeM.mft (raw, json)
Hash identifier: hS4bCo6F/mr7UDekc12DmAf1dQcGtl50hxk7q2+v8TE=
Subject key identifier: B4:36:1B:8E:96:6F:00:09:A4:00:00:73:98:B9:D5:F9:C0:D7:57:35
Authority key identifier: 9E:56:98:0D:48:9E:9C:53:BC:82:9F:3E:8D:63:D3:83:F3:8D:0D:E3
Certificate issuer: /CN=9e56980d489e9c53bc829f3e8d63d383f38d0de3
Certificate serial: 0194C49A3935EAEB6E819F7167A519BA75D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
Manifest number: 138B
Signing time: Sun 02 Feb 2025 03:00:28 +0000
Manifest this update: Sun 02 Feb 2025 03:00:28 +0000
Manifest next update: Mon 03 Feb 2025 03:00:28 +0000
Files and hashes: 1: 5LKnYfYeN0M1IwSjOCfaAZydc0E.roa (hash: R6rY8mHoFXXwwf30CLdp4brLxdq1SUoGP6TPbyDWGN8=)
2: nlaYDUienFO8gp8-jWPTg_ONDeM.crl (hash: lTH/8hRyC4JdeMe5QcugeZcsmwp6d8da8HYTt/aVka8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:9a:39:35:ea:eb:6e:81:9f:71:67:a5:19:ba:75:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e56980d489e9c53bc829f3e8d63d383f38d0de3
Validity
Not Before: Feb 2 03:00:28 2025 GMT
Not After : Feb 3 03:00:28 2025 GMT
Subject: CN=b4361b8e966f0009a400007398b9d5f9c0d75735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f5:95:d9:70:f5:5d:da:6e:71:ca:a6:b8:fa:
d3:df:f8:26:ac:f1:52:64:6a:6b:9e:7a:11:bc:47:
91:ef:e2:43:b0:8d:c8:6e:fc:62:84:65:b9:3a:ee:
b6:8b:04:7d:e5:5d:17:ea:e2:5e:01:78:27:79:81:
72:10:64:e3:fb:e2:e5:e8:08:ba:02:61:30:aa:69:
17:11:49:bb:cb:31:82:b7:2d:50:0c:0b:cb:49:a7:
85:79:fa:15:ce:e5:b2:d3:ae:08:2a:e6:4d:82:30:
a0:f1:dc:40:33:e6:d8:0f:ff:ff:9f:05:72:b9:f9:
50:a2:56:84:16:dc:2c:3d:2c:6d:8e:53:a8:d2:17:
1f:1e:41:f8:97:20:a4:8d:23:81:48:72:12:8f:84:
51:df:86:4e:6e:b9:64:ed:f0:2d:f3:c1:fd:5e:99:
bd:56:43:07:2a:fe:2f:b0:a0:c8:ec:9e:3e:ee:0c:
f0:14:7f:aa:0d:47:a5:d4:e3:5f:94:ab:b9:0c:16:
a5:ba:fd:f1:8e:03:52:45:2a:7a:a5:84:2c:06:3b:
fa:0e:23:6c:b6:f2:5f:53:d1:69:62:a3:8a:e1:97:
67:e2:6e:33:5b:ec:06:c2:74:09:48:8b:22:1b:a4:
5b:44:62:19:3a:92:85:bf:35:58:a2:e0:45:7c:78:
13:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:36:1B:8E:96:6F:00:09:A4:00:00:73:98:B9:D5:F9:C0:D7:57:35
X509v3 Authority Key Identifier:
keyid:9E:56:98:0D:48:9E:9C:53:BC:82:9F:3E:8D:63:D3:83:F3:8D:0D:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:09:39:7c:31:c7:8b:56:fa:95:6b:8d:77:fe:4a:76:e4:57:
5e:ae:3b:ed:fe:25:e9:5f:a3:22:56:f7:22:24:72:cd:64:59:
e2:53:54:0f:fc:07:5b:ef:b8:4a:3a:93:6b:e3:1d:58:6c:99:
8c:08:e4:bb:6d:94:c1:65:dd:c3:c3:24:6b:ff:ac:a7:15:f3:
e5:ee:a1:32:5c:c8:2d:1a:a3:eb:5b:cb:f2:dd:d0:ba:1e:bb:
26:32:d1:4e:1e:35:ce:03:37:bf:60:67:0f:a8:1a:9e:4e:62:
24:43:31:aa:6e:48:45:b8:f2:b2:75:af:74:00:7b:22:2e:b2:
8d:73:1a:c9:3c:ee:aa:a7:cb:e8:56:50:1f:c4:51:b5:2d:f5:
c2:1c:fb:d4:7b:62:18:f3:ef:bc:62:30:f0:fd:80:77:1b:cf:
db:c8:a5:d0:e9:e0:ba:38:16:e1:d6:23:af:a9:60:14:ca:46:
7c:90:9f:23:93:bd:e9:bb:6d:9b:b3:80:66:cc:93:90:11:80:
b4:f4:0a:81:49:eb:ec:61:9b:b3:86:54:de:92:3d:93:3c:4c:
6c:bb:5d:c1:a0:50:5b:71:4d:e4:7b:0a:f8:b5:33:0d:47:0d:
7f:94:41:f5:15:57:1a:36:75:7e:d0:e0:43:d0:b3:b6:2f:b6:
df:99:34:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:51:43 2025 by rpki-client