Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
File: nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft (raw, json)
Hash identifier: 0RAlkc03Iw+RNaRYyrFmq4XGc/J33/CnSrY3jFUwhCc=
Subject key identifier: 08:99:3A:6B:A7:D7:A1:B1:A8:0F:81:FC:D1:3B:6F:E8:22:D8:11:D7
Authority key identifier: 9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
Certificate issuer: /CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Certificate serial: 01958B16FE7AE67DBA9694CB87A44F50B986
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
Manifest number: 1495
Signing time: Wed 12 Mar 2025 16:01:34 +0000
Manifest this update: Wed 12 Mar 2025 16:01:34 +0000
Manifest next update: Thu 13 Mar 2025 16:01:34 +0000
Files and hashes: 1: 8vJ7ABj3xVyEwXenD9W0ncMrU1A.roa (hash: 5gnWjjNTmQRrWBLMz2vS6KZph20DEPN6rQfmfIVo1TE=)
2: 95tOWT20XUkoFBLGQGdVcwDGE0s.roa (hash: Qa6N16B2kLdBJuSQoLOln9hPwf+0/JSY++MAPTIofBc=)
3: D2QorAtAGpZ4DSilBt-gZlYU1WU.roa (hash: vpJGRRZzUNjxMRhoSrLA2Ov0y70mAO/SHEjk1etazfE=)
4: nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl (hash: 4cEglAQKU8ekzQEAeEyffUzw0H92GKIMDLEUmee02Bw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 16:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:16:fe:7a:e6:7d:ba:96:94:cb:87:a4:4f:50:b9:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Validity
Not Before: Mar 12 16:01:34 2025 GMT
Not After : Mar 13 16:01:34 2025 GMT
Subject: CN=08993a6ba7d7a1b1a80f81fcd13b6fe822d811d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:91:05:6d:36:99:34:61:dc:0b:e6:91:76:2a:
49:e2:ec:8c:4d:d5:b5:12:7b:f3:cc:41:c4:f8:42:
2f:ba:e3:3a:a0:1e:64:5b:a4:2c:e5:b6:d9:c1:7b:
b1:77:56:97:1b:4f:e5:95:9e:91:bd:cd:d1:74:98:
fb:d3:d0:06:78:86:02:2a:de:a7:26:78:0e:79:6f:
ff:1f:57:f1:b2:1a:8d:12:c7:39:68:61:f5:48:fe:
f6:e1:9a:b2:94:53:7c:36:9f:b8:1f:d0:58:5b:0e:
53:33:bf:97:4d:3f:f8:8a:55:dd:73:18:38:b6:c7:
9e:42:aa:ff:26:f1:bf:0e:2d:18:24:01:ff:d4:55:
2c:2f:62:4d:c3:0c:0c:97:b9:8e:d9:bb:4f:04:fb:
af:a4:06:e2:3c:dd:6d:4c:30:a1:43:fb:db:4b:12:
eb:d4:73:57:e5:5c:51:65:9b:1a:70:0c:28:ed:0f:
0b:9d:89:c5:ae:e7:b5:dd:fa:a9:82:e5:63:37:d7:
4f:c0:f5:79:a2:45:7f:22:55:4a:1a:9a:4f:62:61:
60:7d:4d:d6:80:99:ea:98:f6:ff:95:56:7e:4e:ac:
b1:00:59:0a:97:d5:b3:41:12:74:d8:11:f4:cc:44:
e8:cd:ba:4d:f5:83:bd:a9:44:14:3e:ac:6b:a9:0f:
49:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:99:3A:6B:A7:D7:A1:B1:A8:0F:81:FC:D1:3B:6F:E8:22:D8:11:D7
X509v3 Authority Key Identifier:
keyid:9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:7e:e5:31:77:a5:87:65:6f:6d:0e:fc:44:62:a2:d0:38:81:
cc:ff:14:d5:76:46:af:95:9c:36:85:de:b0:85:0a:dc:6a:7a:
d4:7c:9d:f1:7f:e9:1f:d7:d7:07:6e:2c:ed:08:03:1c:35:2b:
22:73:ba:8b:38:b5:28:3f:05:0d:e8:a7:b3:a1:85:0b:17:2d:
8a:aa:cd:a3:16:94:d6:d9:4e:a1:cb:4e:87:03:24:8d:ad:36:
5a:9b:ba:d3:43:a2:91:18:82:72:6b:8a:5e:b3:08:84:d1:38:
11:1e:69:02:ce:76:f8:fd:87:e5:da:b0:3a:f8:7b:53:08:fc:
e4:47:95:9e:c1:e6:79:4a:31:e2:85:bb:81:f5:36:36:cb:92:
82:8a:1b:d1:1f:5a:1f:1f:5e:36:0d:46:dd:f3:f7:5c:2b:03:
6a:f4:2a:7b:21:5e:3c:46:9d:a8:ee:20:8d:31:42:09:90:c2:
06:14:9f:80:23:11:c5:1d:0c:d1:8a:e9:c0:22:62:3a:7c:ea:
bd:3e:3d:2f:ee:8d:df:f8:f9:54:99:fa:e0:53:1f:96:f2:a3:
46:17:13:e1:8b:38:3a:92:4b:af:01:19:e0:1f:ce:e0:16:16:
0a:6f:fb:cc:07:05:b7:28:59:24:51:32:0b:9b:bd:19:eb:8f:
dc:a7:48:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:49:27 2025 by rpki-client