Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
File: N8ZRc24kPV6mzsymOv20oDEtdzA.mft (raw, json)
Hash identifier: aMrJ2rPOCmSdRc5Z/FEhnQv3T5g176yVNgrS5xQtdqQ=
Subject key identifier: CB:18:6D:0C:6E:07:79:FA:5A:29:1A:09:B5:54:9C:A9:6F:56:72:43
Authority key identifier: 37:C6:51:73:6E:24:3D:5E:A6:CE:CC:A6:3A:FD:B4:A0:31:2D:77:30
Certificate issuer: /CN=37c651736e243d5ea6cecca63afdb4a0312d7730
Certificate serial: 01965794878BF659873B3D153ECF2921A34E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
Manifest number: 1500
Signing time: Mon 21 Apr 2025 09:01:13 +0000
Manifest this update: Mon 21 Apr 2025 09:01:13 +0000
Manifest next update: Tue 22 Apr 2025 09:01:13 +0000
Files and hashes: 1: N8ZRc24kPV6mzsymOv20oDEtdzA.crl (hash: BIMdfOw+FlUOR+O5ArT0E+hPXQtscB1CowUArXSHosw=)
2: ZRv7bLa28b8tf6OWanURzCF5xRg.roa (hash: oK8tGS8JdWtsRZmm08fTUJdRLOafRX6MArGF8Pv/FL0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 09:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:94:87:8b:f6:59:87:3b:3d:15:3e:cf:29:21:a3:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37c651736e243d5ea6cecca63afdb4a0312d7730
Validity
Not Before: Apr 21 09:01:13 2025 GMT
Not After : Apr 22 09:01:13 2025 GMT
Subject: CN=cb186d0c6e0779fa5a291a09b5549ca96f567243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9a:ce:14:8a:ee:f7:1a:58:27:56:de:4f:1b:
41:5e:61:53:9a:d2:71:bb:d2:4b:fb:fb:40:fb:99:
02:72:7f:5c:cd:84:7a:3d:56:ea:ef:00:41:1b:b7:
f7:80:cb:9c:e9:57:7b:02:3a:25:de:6f:f6:2b:29:
d9:c3:75:c0:42:36:c8:77:74:a7:e1:c0:12:82:0b:
77:34:cf:f8:ae:01:79:20:8b:11:a1:15:68:4e:4f:
89:5e:bc:67:12:7f:54:6e:f8:33:4b:f0:8f:60:d8:
ad:2c:42:b4:32:ff:10:94:b6:7b:36:1f:ea:74:1f:
39:46:8d:c9:65:15:0e:de:d9:80:e4:ce:04:93:17:
81:75:0a:5a:aa:59:1a:6a:79:4e:7a:7b:f3:4d:3f:
8b:fd:5c:b8:f0:04:ac:97:8b:bf:90:b3:6a:8b:71:
6a:19:72:c8:a5:67:90:93:41:48:be:c9:3b:5e:7e:
d8:f1:b3:30:6e:d3:0b:a5:c4:64:80:a1:b1:45:c1:
95:33:ae:34:5c:80:a9:20:a4:8f:6c:a2:eb:9b:35:
06:f8:72:00:ee:27:d7:4f:c5:5a:1d:4c:bf:7c:7c:
4b:00:ae:e4:d6:38:05:dd:80:37:53:64:e8:18:3c:
93:16:b8:0b:fb:9f:b1:12:56:4f:9b:d1:cb:bd:99:
4b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:18:6D:0C:6E:07:79:FA:5A:29:1A:09:B5:54:9C:A9:6F:56:72:43
X509v3 Authority Key Identifier:
keyid:37:C6:51:73:6E:24:3D:5E:A6:CE:CC:A6:3A:FD:B4:A0:31:2D:77:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:7d:92:f9:b5:16:3e:af:6e:23:20:16:90:92:7c:8f:88:d1:
30:c6:8a:2e:ce:7e:70:80:27:8c:43:e8:a4:42:b0:4a:eb:35:
c2:6c:ff:61:58:19:b4:95:ff:b4:ab:aa:a1:00:59:df:f4:9c:
36:8f:5a:f2:41:cb:f7:44:f1:fc:6d:0e:e7:ed:f0:d3:c3:ea:
b6:27:f7:03:ab:77:96:fa:b2:1f:cd:ab:32:87:d9:7e:28:60:
22:01:12:34:0d:94:45:29:22:51:4a:0f:82:1c:42:d2:8a:a8:
ac:fd:ae:5d:36:4d:7e:2d:1a:b0:59:21:97:f7:6e:2c:3b:70:
ed:2d:0d:96:e0:91:ad:51:3a:6d:8f:86:74:d4:95:d9:01:1d:
40:76:01:b5:c8:91:7c:1a:c0:be:dd:c2:ba:62:39:41:65:e9:
67:ee:e0:c3:d7:b2:3c:54:2e:da:bd:c6:2f:ee:b8:d9:57:3d:
de:8b:c3:e3:16:0d:2d:0f:fc:d3:63:1b:9b:1a:0a:66:a9:25:
01:70:52:69:22:be:10:82:fd:07:79:6c:e6:77:d3:3d:cd:96:
4c:21:61:20:96:47:ec:4a:e6:bb:58:16:70:c7:fc:3e:33:fb:
86:93:9d:6a:49:3a:b2:84:d3:91:8c:ce:7d:3e:31:70:5e:f3:
c9:12:48:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:19:28 2025 by rpki-client