Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
File: nFVnZyAcUPayqVXbah5uAR36XUQ.mft (raw, json)
Hash identifier: adNMPHYXP+zW6eqdRvJzQI+X/1/ESbnRw8xNQdEXe7s=
Subject key identifier: 6C:11:FF:DB:7A:4C:25:F1:8B:D2:41:E2:4A:8C:72:C4:DA:ED:84:2E
Authority key identifier: 9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44
Certificate issuer: /CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44
Certificate serial: 019653123BEFE3CA7689E645FCB657C57D1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
Manifest number: 0A25
Signing time: Sun 20 Apr 2025 12:00:25 +0000
Manifest this update: Sun 20 Apr 2025 12:00:25 +0000
Manifest next update: Mon 21 Apr 2025 12:00:25 +0000
Files and hashes: 1: cmsoMlIRCcbLziNipTUjZc3lrew.roa (hash: a1CFCcY0jADOuS6DTKGkRSmsv5gzH4GzUcir7HG6pUE=)
2: nFVnZyAcUPayqVXbah5uAR36XUQ.crl (hash: c5ZsrMSjHpEWGdnzH8st+W8UHYoer5y/B0s8pgFEpaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 12:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:12:3b:ef:e3:ca:76:89:e6:45:fc:b6:57:c5:7d:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44
Validity
Not Before: Apr 20 12:00:25 2025 GMT
Not After : Apr 21 12:00:25 2025 GMT
Subject: CN=6c11ffdb7a4c25f18bd241e24a8c72c4daed842e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:f2:3e:55:e0:64:25:04:51:63:3d:2c:47:51:
b6:0b:10:6c:c4:c9:0b:91:42:47:9c:41:bd:56:b1:
81:9f:ff:5f:07:36:34:79:45:35:de:45:70:de:84:
04:ec:97:91:3a:3a:fd:6b:c6:69:a2:72:c8:bb:de:
43:16:37:c4:7c:42:a0:19:0c:49:a4:e1:00:4a:0a:
0a:6f:3d:71:27:1c:cf:49:27:a6:df:1c:70:80:16:
9e:f7:8c:d5:fc:4f:6a:48:38:f4:dd:5f:a6:4a:29:
ce:aa:de:9b:88:ec:98:00:28:e4:cc:48:99:44:ba:
1a:c6:16:ef:2e:98:5b:09:40:0a:13:7b:81:0b:f9:
6d:55:c2:94:cd:42:91:cf:92:7e:2e:0f:84:72:80:
f1:6e:93:77:b0:7e:77:25:92:f8:0a:8a:b7:ef:27:
a0:0a:ca:03:53:e1:dd:74:b7:9f:f3:c6:75:fa:e1:
ba:48:8f:bf:6d:8b:2d:e4:08:7d:e8:9d:a1:2a:60:
25:7b:07:9e:25:2e:92:ce:81:78:97:ab:33:b2:7e:
36:3a:9f:41:3b:43:5d:d6:b7:3f:06:fa:fd:6d:74:
82:69:bc:e0:59:7b:92:ac:69:0d:ea:9e:bf:cd:1d:
67:e2:a0:7b:d6:d1:35:c6:84:39:38:af:6e:ce:ea:
0e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:11:FF:DB:7A:4C:25:F1:8B:D2:41:E2:4A:8C:72:C4:DA:ED:84:2E
X509v3 Authority Key Identifier:
keyid:9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:29:29:35:b3:b4:6d:ad:26:0a:27:0d:57:18:0c:8d:90:08:
9b:4a:60:7f:13:eb:35:2d:7a:38:f1:9b:ca:b6:b7:cf:72:70:
0b:de:36:74:97:94:20:e9:0e:e6:7e:5d:b7:6c:5d:5f:bc:e9:
47:f5:29:56:e2:33:45:fe:a0:3d:f6:c2:b6:16:86:32:8e:7b:
8c:6b:88:6b:48:89:6f:a4:e7:6a:f2:37:65:dd:e7:3a:86:ac:
61:e2:75:58:60:6f:2b:cf:bf:6a:32:eb:29:90:ec:37:e0:16:
79:d4:c6:40:b9:6d:14:17:3f:25:0d:06:9f:00:01:46:38:2e:
d5:b5:31:1d:ce:bc:74:60:2b:23:d3:da:57:96:3d:95:74:9d:
0d:23:be:2f:51:82:d9:d5:18:b0:b3:10:83:fd:a4:2f:44:30:
fb:0a:90:f7:be:83:4a:45:8b:bc:a3:e5:90:fa:0b:f6:6c:d0:
b8:f6:8c:65:0c:08:01:1b:3e:49:d7:5a:11:39:b9:fd:0a:18:
37:4a:2d:5b:06:19:b7:3d:d7:a0:cc:94:a9:e3:98:1a:e0:dd:
45:65:c8:f7:3f:a6:55:1e:87:04:69:c8:98:8d:3f:fe:5c:15:
cd:84:05:a0:68:a9:82:bf:0b:85:50:05:db:20:c1:41:2f:a7:
f3:08:d6:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 20:02:30 2025 by rpki-client