Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
File: nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft (raw, json)
Hash identifier: CtcIb/TCT3Ep7acbajti5vbsWULKPiAqRvisx7MTKzE=
Subject key identifier: A8:16:75:9E:42:D8:22:97:B3:81:59:A8:5C:1D:50:7A:6A:A6:5D:06
Authority key identifier: 9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC
Certificate issuer: /CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec
Certificate serial: 019655DCC88CAAB234CAE0F1C09C74F83534
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
Manifest number: 14FB
Signing time: Mon 21 Apr 2025 01:00:54 +0000
Manifest this update: Mon 21 Apr 2025 01:00:54 +0000
Manifest next update: Tue 22 Apr 2025 01:00:54 +0000
Files and hashes: 1: RvlNk8dGKorZzV6RSRdv-WDV_HE.roa (hash: KtznCFrYuNrxb/iIoe3x5KvOTsGXxBUw5Sa9+KNOTgg=)
2: nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl (hash: qeQsVq8hDI94bI0DMmTn04VRhjSJrRzakHIXVYiutaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:dc:c8:8c:aa:b2:34:ca:e0:f1:c0:9c:74:f8:35:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec
Validity
Not Before: Apr 21 01:00:54 2025 GMT
Not After : Apr 22 01:00:54 2025 GMT
Subject: CN=a816759e42d82297b38159a85c1d507a6aa65d06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:85:ff:46:8c:15:95:0a:c9:e3:c0:8d:bf:f4:
7a:39:a1:e2:66:a0:e3:7f:a6:4d:e0:74:0b:80:be:
3c:b3:59:45:fb:ab:7e:f3:8b:fb:61:8f:bc:f4:60:
d7:ab:11:5a:19:6a:51:1a:88:12:09:03:a7:2d:00:
53:10:f1:ea:19:bf:29:c8:f4:f5:b5:bf:a4:cb:94:
a9:e2:d4:74:ba:85:d2:89:46:b4:16:72:c2:70:8a:
7c:e2:d1:4f:d4:26:19:92:8c:43:13:79:74:99:66:
0d:ad:ad:72:6a:f9:21:9a:9b:45:be:14:82:6a:3c:
34:c9:b2:6f:33:44:72:68:ef:ea:1d:2c:3b:30:fc:
8f:0f:02:e4:c7:59:3f:49:c6:6f:70:fa:c7:56:d9:
5c:76:0d:7f:c5:50:9c:6b:f0:84:fe:8b:04:49:30:
d5:eb:50:57:11:df:5e:21:c8:12:b7:8e:aa:4c:10:
1d:90:d3:21:f1:38:1c:2f:76:3e:a0:75:5f:02:68:
ca:bd:91:a4:ef:1c:34:16:bd:1e:dd:26:3a:af:d6:
82:fa:95:52:49:b4:ed:57:11:8a:d8:9d:3d:e1:4c:
de:61:ad:a0:d4:c2:4a:2f:be:7b:e5:78:c5:5c:cd:
da:65:22:e5:e8:17:5b:ac:19:39:c7:d3:11:fb:7d:
28:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:16:75:9E:42:D8:22:97:B3:81:59:A8:5C:1D:50:7A:6A:A6:5D:06
X509v3 Authority Key Identifier:
keyid:9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:a1:45:f3:00:68:0f:23:f0:59:04:b4:b4:87:d7:65:4a:f4:
af:5b:ca:c7:2f:58:9c:d2:bd:8f:af:98:d3:dc:83:87:7b:32:
5a:40:d7:a5:3d:de:1b:ee:0d:f6:14:e3:6e:ba:5c:74:10:ab:
fb:47:d8:a2:43:21:1b:38:61:a0:8c:f1:91:78:73:50:89:60:
91:90:e5:32:07:28:f7:78:e4:71:a8:bb:8c:f5:c7:23:1b:8e:
42:26:8c:34:32:96:e5:cb:e7:6c:91:10:20:ba:e8:c3:be:a4:
06:66:20:56:af:87:f9:17:1f:48:e5:fd:d7:05:74:37:5a:2f:
5d:bd:31:ba:75:9d:00:40:d7:cc:ce:95:6e:8b:f4:a8:ce:03:
fa:30:e8:d9:42:ab:4d:98:32:03:4f:7c:66:1b:10:f1:7e:a7:
c3:b6:73:ad:3a:6b:bc:e4:65:98:b1:5a:96:cb:ce:4f:57:86:
34:d5:12:f3:f4:37:35:ba:93:70:36:49:f5:ed:3e:1e:37:16:
a3:48:df:95:df:ab:ad:bb:51:cf:a5:99:f6:57:a5:4c:4d:71:
ed:17:13:43:7b:c6:93:d1:72:0f:38:f9:95:a2:a8:8d:a4:af:
0c:c8:7b:30:94:4b:7b:e6:5d:45:92:65:d8:ba:47:a1:27:4e:
71:a2:ad:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:46:50 2025 by rpki-client