Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
File: nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft (raw, json)
Hash identifier: O6VlEIqFCMgKNQ1HzW8fNbu7aMInKBjN5aQu0zKLm/E=
Subject key identifier: 9B:52:B4:B2:BF:93:96:65:7B:26:C6:86:A8:08:BF:5A:7D:6C:7E:E3
Authority key identifier: 9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
Certificate issuer: /CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Certificate serial: 01964E234A2BC4485C0B5DEA54EB8EAFC273
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 13:00:57 +0000
Manifest this update: Sat 19 Apr 2025 13:00:57 +0000
Manifest next update: Sun 20 Apr 2025 13:00:57 +0000
Files and hashes: 1: 8vJ7ABj3xVyEwXenD9W0ncMrU1A.roa (hash: 5gnWjjNTmQRrWBLMz2vS6KZph20DEPN6rQfmfIVo1TE=)
2: 95tOWT20XUkoFBLGQGdVcwDGE0s.roa (hash: Qa6N16B2kLdBJuSQoLOln9hPwf+0/JSY++MAPTIofBc=)
3: D2QorAtAGpZ4DSilBt-gZlYU1WU.roa (hash: vpJGRRZzUNjxMRhoSrLA2Ov0y70mAO/SHEjk1etazfE=)
4: nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl (hash: MMGXhk6PBgDnBA1qRuMiWlbM1NxbrVF+CwuCkuTz0Y8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:23:4a:2b:c4:48:5c:0b:5d:ea:54:eb:8e:af:c2:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Validity
Not Before: Apr 19 13:00:57 2025 GMT
Not After : Apr 20 13:00:57 2025 GMT
Subject: CN=9b52b4b2bf9396657b26c686a808bf5a7d6c7ee3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b0:d4:eb:a0:6a:5b:ab:f6:7f:f9:09:df:58:
bb:bf:0e:26:a3:89:dd:91:6c:b3:3c:49:9e:90:ca:
d0:24:01:d9:0f:f6:8a:a6:cd:7b:dc:6d:c7:8b:af:
cd:f7:25:6a:6a:b3:0e:a2:ec:1a:35:9e:25:20:44:
7a:14:bc:f3:15:09:88:59:d2:0a:ba:f9:6e:b3:7a:
52:fb:f5:f9:36:80:cc:8e:8e:91:cb:21:0a:1d:42:
ce:57:12:06:c4:e4:40:b9:62:19:72:85:01:98:50:
89:28:94:32:90:82:f9:2d:43:c6:9d:57:0c:00:e9:
23:3f:9e:7a:e0:2c:cd:ea:6a:35:42:53:c9:c7:aa:
77:fb:1c:94:8e:77:59:59:5e:e2:4a:e4:bb:48:7e:
74:b4:88:71:41:ef:5d:30:1b:29:1d:f3:5e:85:c4:
91:68:79:ce:04:c1:24:9c:07:de:3e:2a:a9:8e:f8:
2a:4a:e9:70:13:18:b9:04:50:89:3d:a4:d0:60:56:
c9:65:05:3d:f8:f9:1c:d5:41:b8:d4:02:ae:9c:e2:
80:37:35:f0:ae:4c:11:61:c3:af:5e:14:4c:97:72:
d3:b4:ed:ee:19:84:49:9c:4a:b4:02:38:1b:0b:54:
ea:21:4c:81:a4:00:5c:f8:c3:b2:c2:a9:8c:a5:ae:
f5:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:52:B4:B2:BF:93:96:65:7B:26:C6:86:A8:08:BF:5A:7D:6C:7E:E3
X509v3 Authority Key Identifier:
keyid:9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:9d:d5:47:07:f3:4b:f3:44:7c:35:15:e8:6f:cc:c6:1c:00:
e3:cd:2b:a5:96:e3:ab:10:37:3d:31:28:e0:a2:35:f8:e1:1a:
32:0d:8f:9e:8f:e9:e7:2f:e8:7c:61:40:85:f5:a1:ea:c7:91:
7f:b7:4e:58:e4:9d:b1:fd:1f:58:66:cf:40:c1:5a:b4:be:31:
86:20:7f:38:87:a4:ad:00:f1:36:73:96:be:82:ca:95:da:64:
97:9d:a9:bc:9c:e3:a2:cb:9e:6b:6e:97:c3:ee:5e:09:38:a4:
d4:9a:7c:a9:b2:e8:43:20:5c:86:b8:8f:59:13:32:cc:d6:71:
76:58:4f:e6:2c:20:70:7e:2d:89:32:8e:b2:60:90:48:97:43:
1d:38:60:6d:76:a7:70:08:31:a6:08:2b:2e:9e:6e:79:44:93:
1e:cb:9f:5f:cf:28:e4:44:66:a2:ee:2e:9f:28:33:10:db:ea:
67:d3:99:7c:57:40:a9:f9:e7:06:1a:11:9b:f3:3f:39:2c:71:
b3:71:70:a2:60:00:14:da:d7:7e:a9:d2:a0:f1:0b:32:45:5e:
32:d4:2d:26:e2:5c:81:e0:d3:6f:12:cb:dd:af:c3:09:99:a9:
2c:6c:e6:59:cf:36:7c:44:10:eb:08:10:89:ee:41:ec:82:42:
b5:bc:50:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:01:31 2025 by rpki-client