Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
File: N8ZRc24kPV6mzsymOv20oDEtdzA.mft (raw, json)
Hash identifier: Tn4iPon6QL94GEuPAldqEKQ8a3ff15bdfxiGJP8Lgj8=
Subject key identifier: 92:41:B5:C7:9E:A7:0F:01:D1:6A:F3:72:22:67:12:07:41:1B:4F:77
Authority key identifier: 37:C6:51:73:6E:24:3D:5E:A6:CE:CC:A6:3A:FD:B4:A0:31:2D:77:30
Certificate issuer: /CN=37c651736e243d5ea6cecca63afdb4a0312d7730
Certificate serial: 01958CCE6248352C2C058C9160A137580509
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
Manifest number: 1497
Signing time: Thu 13 Mar 2025 00:01:30 +0000
Manifest this update: Thu 13 Mar 2025 00:01:30 +0000
Manifest next update: Fri 14 Mar 2025 00:01:30 +0000
Files and hashes: 1: N8ZRc24kPV6mzsymOv20oDEtdzA.crl (hash: B3NA9NjGjPDagtDm4Efr8OpTWuk0WLIftPq5D+AnKj8=)
2: ZRv7bLa28b8tf6OWanURzCF5xRg.roa (hash: oK8tGS8JdWtsRZmm08fTUJdRLOafRX6MArGF8Pv/FL0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:ce:62:48:35:2c:2c:05:8c:91:60:a1:37:58:05:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37c651736e243d5ea6cecca63afdb4a0312d7730
Validity
Not Before: Mar 13 00:01:30 2025 GMT
Not After : Mar 14 00:01:30 2025 GMT
Subject: CN=9241b5c79ea70f01d16af37222671207411b4f77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fe:c9:ae:82:87:db:e9:3b:f9:28:91:5c:39:
e4:d8:86:d0:11:99:ec:ad:90:d5:e1:10:4f:1a:70:
72:6b:9c:41:12:f1:33:dd:4c:c9:e7:e7:60:a4:37:
63:a5:60:63:60:90:a0:8e:57:81:b2:18:14:6e:d5:
94:31:a3:44:e0:9d:55:0b:3b:16:7c:d8:00:85:d9:
8d:fe:aa:cd:43:5e:62:13:36:b6:e2:35:b4:3f:38:
3d:98:af:53:10:04:74:4d:97:d5:5f:ce:74:99:a7:
91:93:82:36:13:e6:33:4a:1f:43:5d:5b:66:8e:fc:
e9:d0:95:60:c5:49:92:58:ec:28:31:7a:9f:96:f2:
93:0b:95:ed:b3:bc:4c:3b:dc:08:54:d3:0e:18:4c:
62:9a:58:f0:2b:f7:b4:01:16:d7:38:64:31:e7:6f:
e4:4d:79:0d:f5:3b:e7:7a:fe:0f:1c:77:2a:8b:4c:
8c:7d:88:34:74:2e:2b:67:49:da:b7:79:71:7a:80:
84:36:22:a4:f4:84:a3:01:82:1c:8f:b5:82:ce:06:
9c:a9:69:fa:0e:c2:8e:83:fc:f1:68:c8:71:5b:39:
69:17:bf:9d:21:1e:b7:93:b0:4f:86:55:dd:08:45:
d4:43:78:1c:86:9c:52:d9:1e:ad:40:49:10:57:b9:
2b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:41:B5:C7:9E:A7:0F:01:D1:6A:F3:72:22:67:12:07:41:1B:4F:77
X509v3 Authority Key Identifier:
keyid:37:C6:51:73:6E:24:3D:5E:A6:CE:CC:A6:3A:FD:B4:A0:31:2D:77:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:dc:0f:22:0c:8c:43:bb:c4:9d:cf:99:d4:3e:4f:88:d9:61:
b5:e4:b7:a0:4d:f6:ef:d8:38:4b:b8:11:4f:1c:af:f5:87:a9:
25:52:0d:61:1f:65:9b:21:6b:ba:3d:be:eb:ca:5a:57:94:92:
72:f6:a1:d3:6f:13:26:09:97:8a:6f:91:2a:37:9a:ea:03:cb:
b1:0e:e2:88:fb:e6:33:8d:b6:28:e2:64:d1:9d:69:c3:86:1e:
75:12:7c:4f:80:e7:bf:27:fa:90:fa:31:00:78:ed:d8:51:4d:
35:5f:50:9f:b5:d8:5c:6f:27:de:9a:92:ea:df:00:ab:15:d8:
32:ec:ed:25:aa:bc:da:c3:ea:25:7c:86:54:e4:c0:fa:53:cd:
10:5e:7f:87:7b:3b:2c:8c:18:5a:58:5b:66:48:0b:be:48:ef:
6d:fd:03:5d:31:93:9c:56:e3:1b:2c:a9:82:99:7e:74:89:bd:
7c:f6:7f:02:40:e3:e5:8b:e8:5e:c7:e4:3d:34:7c:a1:31:94:
8e:cb:f0:88:e8:de:66:4a:ca:15:30:91:a8:77:b4:a8:45:d6:
c5:1a:7b:e9:c9:f6:b0:e1:24:b5:ec:4e:55:08:92:f9:f9:b5:
08:e5:60:7f:3e:e5:1c:d4:87:5c:bd:fa:b0:c2:21:bd:a9:8b:
93:c7:cf:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWMzmJINSwsBYyRYKE3WAUJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3YzY1MTczNmUyNDNkNWVhNmNlY2NhNjNhZmRiNGEwMzEy
ZDc3MzAwHhcNMjUwMzEzMDAwMTMwWhcNMjUwMzE0MDAwMTMwWjAzMTEwLwYDVQQD
Eyg5MjQxYjVjNzllYTcwZjAxZDE2YWYzNzIyMjY3MTIwNzQxMWI0Zjc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/7JroKH2+k7+SiRXDnk2IbQEZns
rZDV4RBPGnBya5xBEvEz3UzJ5+dgpDdjpWBjYJCgjleBshgUbtWUMaNE4J1VCzsW
fNgAhdmN/qrNQ15iEza24jW0Pzg9mK9TEAR0TZfVX850maeRk4I2E+YzSh9DXVtm
jvzp0JVgxUmSWOwoMXqflvKTC5Xts7xMO9wIVNMOGEximljwK/e0ARbXOGQx52/k
TXkN9Tvnev4PHHcqi0yMfYg0dC4rZ0nat3lxeoCENiKk9ISjAYIcj7WCzgacqWn6
DsKOg/zxaMhxWzlpF7+dIR63k7BPhlXdCEXUQ3gchpxS2R6tQEkQV7kr6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJJBtceepw8B0WrzciJnEgdBG093MB8GA1UdIwQY
MBaAFDfGUXNuJD1eps7Mpjr9tKAxLXcwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTjhaUmMyNGtQVjZtenN5bU92MjBvREV0ZHpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi81MjNjN2QtMzkxNy00MTM3LTlkZjMt
YWJlYTYyNTg2OGE4LzEvTjhaUmMyNGtQVjZtenN5bU92MjBvREV0ZHpBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi81MjNjN2QtMzkxNy00MTM3LTlkZjMtYWJlYTYyNTg2OGE4
LzEvTjhaUmMyNGtQVjZtenN5bU92MjBvREV0ZHpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAltwPIgyM
Q7vEnc+Z1D5PiNlhteS3oE3279g4S7gRTxyv9YepJVINYR9lmyFruj2+68paV5SS
cvah028TJgmXim+RKjea6gPLsQ7iiPvmM422KOJk0Z1pw4YedRJ8T4Dnvyf6kPox
AHjt2FFNNV9Qn7XYXG8n3pqS6t8AqxXYMuztJaq82sPqJXyGVOTA+lPNEF5/h3s7
LIwYWlhbZkgLvkjvbf0DXTGTnFbjGyypgpl+dIm9fPZ/AkDj5YvoXsfkPTR8oTGU
jsvwiOjeZkrKFTCRqHe0qEXWxRp76cn2sOEktexOVQiS+fm1COVgfz7lHNSHXL36
sMIhvamLk8fPVQ==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:25:19 2025 by rpki-client