Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
File: NTPUOQNczcXww50bP7FhlbVV_KM.mft (raw, json)
Hash identifier: XRQIoLU1PqexeI6521D73JjwGpnpuwa0UMtZQbXlFm0=
Subject key identifier: F1:89:34:B2:8C:01:D1:B6:5C:A5:32:E8:B0:B6:DF:ED:6E:5D:AA:48
Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Certificate serial: 0194C463B323F8D73007369816B07962E804
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
Manifest number: 0924
Signing time: Sun 02 Feb 2025 02:00:55 +0000
Manifest this update: Sun 02 Feb 2025 02:00:55 +0000
Manifest next update: Mon 03 Feb 2025 02:00:55 +0000
Files and hashes: 1: NTPUOQNczcXww50bP7FhlbVV_KM.crl (hash: 8goXe5hyUmlHrXFkzwMuYgxoZ68zEWeZycllwQ4MyIc=)
2: rAVoUvT6eIAoJ9DaPocwQDvvkoc.roa (hash: 1BFZOwvrkIRFql6imBqxsdk52Ly1yvo/6JadLNNcDZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:b3:23:f8:d7:30:07:36:98:16:b0:79:62:e8:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Validity
Not Before: Feb 2 02:00:55 2025 GMT
Not After : Feb 3 02:00:55 2025 GMT
Subject: CN=f18934b28c01d1b65ca532e8b0b6dfed6e5daa48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:10:01:f3:59:f9:1b:6d:9e:dd:38:4a:06:35:
82:e0:33:a4:2b:a1:a1:ec:6b:a5:5b:a5:93:c6:51:
68:5a:cd:d3:c8:b7:7f:e7:f3:52:4c:5e:4c:4e:68:
0d:80:e5:9a:c4:9b:82:d1:3e:01:41:73:11:d1:1e:
37:c2:02:ec:bc:28:09:8d:5d:b0:c0:eb:93:5a:29:
c6:4b:d1:13:72:5f:cb:ef:48:2f:7a:43:93:51:93:
20:b4:97:da:fe:c6:e0:41:af:a4:39:33:fd:be:d8:
2e:71:1a:09:6a:9c:1b:3e:ef:51:f2:ae:f8:d6:2c:
19:06:42:cd:81:2e:fd:2f:91:a8:f3:8e:e1:ab:0f:
c7:07:9b:b3:74:c9:75:51:ca:e1:a8:ba:c2:84:f0:
c1:d6:78:ed:b5:f5:b5:66:ae:df:68:e4:9d:cf:8a:
2c:ce:30:62:32:76:a9:42:1f:73:cc:c5:34:3b:db:
31:64:6b:6d:46:4a:d0:4d:68:1d:62:ee:5d:fb:91:
35:6a:af:81:44:cb:2c:65:17:c5:72:08:b0:a0:95:
25:f0:b0:01:45:22:3b:43:63:04:33:f7:2e:43:04:
84:61:13:c3:1f:45:62:f2:70:a9:73:c8:b0:b7:6a:
2b:4b:a4:1f:c9:90:6a:03:65:c7:26:0c:9d:e3:71:
82:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:89:34:B2:8C:01:D1:B6:5C:A5:32:E8:B0:B6:DF:ED:6E:5D:AA:48
X509v3 Authority Key Identifier:
keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:7c:27:a7:ab:2b:dd:4d:bd:02:13:52:b1:55:c2:97:fb:4a:
7d:fb:0b:2b:fe:29:7c:f8:7e:84:be:e1:1f:8d:56:e0:ed:7b:
e0:6d:e2:2e:c5:45:e8:1c:fb:82:0c:98:75:24:3e:2a:fa:ae:
ed:5f:5b:b5:4f:aa:47:44:70:73:cc:6c:02:43:b9:0e:c2:54:
1c:59:10:da:1c:49:95:72:0b:a0:2d:a9:02:68:d9:f6:46:37:
b1:6a:7a:48:9e:09:3c:06:b6:69:fe:1e:77:33:66:50:4e:f8:
27:50:e2:1f:71:1e:e3:2b:d0:77:36:5e:b7:6d:b2:b4:1d:37:
99:41:4c:70:3d:c7:5c:1a:ea:c7:31:c5:4a:6f:c2:25:0f:30:
51:57:09:66:94:88:71:8a:d7:f2:07:94:e8:c5:94:8d:8f:7c:
d3:7f:7d:c0:d0:90:11:fb:c9:55:bd:4b:7b:60:69:94:17:ea:
5c:2a:25:4a:9c:2f:69:8d:ed:e6:30:ec:d7:e8:3f:3e:77:77:
e4:91:87:95:e8:13:f6:2a:03:62:dc:4d:67:08:34:41:af:10:
66:85:e1:5e:f5:77:41:e3:33:5f:b3:e2:91:fd:0d:f1:86:d1:
56:a7:88:d4:f1:01:28:a1:fb:b8:90:6e:27:b1:25:cb:aa:6d:
56:25:e2:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:07:11 2025 by rpki-client