Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
File: nlY8Qm0ark7R5_WVNnSQIgiehHk.mft (raw, json)
Hash identifier: 5cQ76QKEExicDg6zhUSC8Q2KsmhLfxFRBD6jl6QiSLI=
Subject key identifier: 35:C6:D3:CB:13:ED:F3:94:35:4C:4F:96:2A:F3:AB:ED:8B:07:A7:CE
Authority key identifier: 9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
Certificate issuer: /CN=9e563c426d1aae4ed1e7f59536749022089e8479
Certificate serial: 019512478B75F888EABF15CDC880C11A04F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
Manifest number: 0918
Signing time: Mon 17 Feb 2025 05:00:33 +0000
Manifest this update: Mon 17 Feb 2025 05:00:33 +0000
Manifest next update: Tue 18 Feb 2025 05:00:33 +0000
Files and hashes: 1: DLPCyIKM7jz79PsqVnrxNoMgYXE.roa (hash: +QgaTeTZpZ2fDtls8hcOtAF0lYWHQbDmqjy56TBm3AY=)
2: nlY8Qm0ark7R5_WVNnSQIgiehHk.crl (hash: wfbqf8flksUCYYEvasPe4EJDCWv6BWOQIzNLEbhcRRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:8b:75:f8:88:ea:bf:15:cd:c8:80:c1:1a:04:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e563c426d1aae4ed1e7f59536749022089e8479
Validity
Not Before: Feb 17 05:00:33 2025 GMT
Not After : Feb 18 05:00:33 2025 GMT
Subject: CN=35c6d3cb13edf394354c4f962af3abed8b07a7ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:8f:d6:cf:20:37:80:28:76:b2:dd:41:c5:fc:
39:65:b1:65:2c:0d:9d:de:ae:86:a9:16:af:a8:bb:
66:80:28:09:fe:93:5f:43:52:40:be:55:66:07:d4:
7c:3c:2d:f5:66:e1:c2:7f:7d:d4:8e:6a:b3:6e:41:
ab:44:47:74:14:6f:cc:7b:6e:54:62:50:0c:f4:5c:
37:8b:e1:d3:72:6e:6f:40:b1:dd:5e:0c:27:a4:75:
46:20:86:e1:14:00:6b:22:2c:14:4b:64:c2:17:65:
72:af:30:52:84:b9:4f:59:90:ff:e2:46:c3:d8:e4:
ac:46:6d:ef:b2:38:05:37:2e:ee:71:a5:bd:01:02:
ca:e2:53:ea:2b:63:9c:14:ac:0d:04:ea:9f:ab:f2:
1a:2b:9e:03:cb:60:5a:b6:30:54:7e:b6:df:70:58:
fa:fd:39:de:18:6d:f0:a2:0d:3d:05:bd:7a:9c:fd:
cc:fe:83:fb:2e:45:b5:48:af:57:20:f8:38:a6:ef:
ae:6c:49:b8:d0:5c:fb:5c:77:e3:38:0f:33:b0:fd:
8b:c5:4b:35:72:f4:ae:61:0d:af:9c:12:5d:57:3d:
fc:ca:96:db:5a:d4:57:75:19:96:30:e5:b4:ca:22:
91:27:5f:d4:45:48:6f:6b:b4:30:54:19:17:a3:7c:
2d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:C6:D3:CB:13:ED:F3:94:35:4C:4F:96:2A:F3:AB:ED:8B:07:A7:CE
X509v3 Authority Key Identifier:
keyid:9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:89:c7:ca:f9:3a:52:92:db:54:3e:68:4c:2f:4e:84:3c:0e:
25:b6:26:01:45:ff:1f:8b:37:7b:d3:64:d1:83:f8:d8:3e:37:
7d:73:69:e1:f0:97:aa:4a:16:e9:75:68:11:95:02:cc:53:3b:
33:10:5c:ae:5f:d5:16:2f:bd:ff:81:6f:9a:f8:19:77:a0:a7:
c4:27:bc:79:01:89:d4:21:d1:ad:21:b3:41:d2:97:61:de:45:
d5:05:df:97:0e:63:35:93:85:36:64:2b:27:3e:76:f1:8f:9a:
6d:1d:68:0f:6c:84:a1:ee:ab:e2:58:a2:9b:0c:02:77:72:61:
11:5c:a7:18:58:6f:4f:e1:89:87:68:06:f5:36:bf:6a:5b:77:
c7:87:1d:ac:60:d2:29:6d:f1:71:fc:61:e9:88:83:1e:05:a4:
ce:c2:b3:42:d2:b3:8e:f5:f9:16:df:53:a2:47:5f:63:9f:1c:
1e:67:31:ac:5d:42:89:47:58:65:6f:49:3c:33:53:70:6c:75:
e6:04:81:3d:2b:c9:4a:cf:88:55:78:11:99:b2:49:9c:25:8c:
ad:d5:9f:98:05:f1:a8:61:3e:fa:99:6c:bb:b9:9f:09:22:15:
84:77:92:59:a1:74:ad:28:55:87:79:59:3b:18:11:0a:f3:62:
43:6d:a3:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:32 2025 by rpki-client