Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
File: nlY8Qm0ark7R5_WVNnSQIgiehHk.mft (raw, json)
Hash identifier: uKTGthDTMWbCJ11dmu352ZFFxchLwcdg6YdcKXlLzOw=
Subject key identifier: 72:99:48:72:2C:2B:9B:37:EC:66:70:0E:AE:20:B1:A4:89:B7:2E:C4
Authority key identifier: 9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
Certificate issuer: /CN=9e563c426d1aae4ed1e7f59536749022089e8479
Certificate serial: 019635E3D5A56950E4074E5E5E1922F9BFA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
Manifest number: 09AF
Signing time: Mon 14 Apr 2025 20:00:45 +0000
Manifest this update: Mon 14 Apr 2025 20:00:45 +0000
Manifest next update: Tue 15 Apr 2025 20:00:45 +0000
Files and hashes: 1: DLPCyIKM7jz79PsqVnrxNoMgYXE.roa (hash: +QgaTeTZpZ2fDtls8hcOtAF0lYWHQbDmqjy56TBm3AY=)
2: nlY8Qm0ark7R5_WVNnSQIgiehHk.crl (hash: FpWxaBt/nVrPv4Caev7oVJ/mPiBDSHnz54wqRXkYM2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 20:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:35:e3:d5:a5:69:50:e4:07:4e:5e:5e:19:22:f9:bf:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e563c426d1aae4ed1e7f59536749022089e8479
Validity
Not Before: Apr 14 20:00:45 2025 GMT
Not After : Apr 15 20:00:45 2025 GMT
Subject: CN=729948722c2b9b37ec66700eae20b1a489b72ec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:1a:cf:1b:47:fd:70:16:a2:a0:ad:96:b8:d1:
43:4b:cd:f1:b8:24:69:f2:01:54:8a:ff:5f:be:df:
23:c2:c3:c7:cb:de:2b:7b:7d:db:b2:f5:d7:a3:f6:
8c:78:7e:32:7c:d9:ab:c3:a6:e7:ba:31:b0:75:81:
f6:36:0d:35:5a:f2:49:f6:fe:f5:49:2b:d0:11:11:
01:4a:c9:23:23:27:87:92:e2:6c:3d:e3:de:93:df:
88:4a:0a:15:7e:aa:50:97:1d:52:06:0e:e7:b8:fb:
43:46:c7:00:7f:4d:98:15:ef:f4:16:c6:05:4b:fb:
8a:58:41:db:9b:54:70:5f:61:e7:d9:52:56:0a:a1:
10:30:d8:2b:c5:4d:da:82:85:a5:f7:0a:a7:cc:f4:
f3:1a:a3:bb:e2:17:fd:0b:42:23:14:bc:93:c6:e2:
74:d0:b7:2b:8f:a9:40:e3:ac:6d:c7:76:23:f3:2a:
b3:dd:fc:34:aa:96:9b:b2:2b:11:c1:c7:bb:b3:cd:
61:a7:40:54:34:cf:f9:04:68:98:29:19:0b:e2:31:
cb:5a:9f:d2:09:dc:98:a8:7f:b1:6c:5f:f5:dd:03:
7c:8e:ee:bf:b1:20:e8:ef:e5:06:8f:0e:ec:85:ac:
6e:a7:0a:42:82:80:35:59:9c:b3:b4:a8:da:3e:4e:
80:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:99:48:72:2C:2B:9B:37:EC:66:70:0E:AE:20:B1:A4:89:B7:2E:C4
X509v3 Authority Key Identifier:
keyid:9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:e6:d3:ab:0b:90:30:38:30:2b:9f:5e:04:0c:a5:24:51:48:
47:ac:82:a3:f1:30:43:7b:61:34:da:44:81:1e:b4:31:68:12:
3f:ca:34:8b:9f:f5:2c:a4:02:cd:42:c7:5f:c5:5a:13:73:9b:
c0:d6:15:75:e9:5d:c9:3e:85:a6:9e:70:03:3c:ef:8a:20:84:
dc:91:56:a7:a8:21:ab:d0:45:1f:b6:65:bf:92:60:57:47:d0:
84:ab:50:f6:d1:3e:f8:54:b5:bc:88:a5:5f:54:2b:51:20:8d:
13:9f:f1:77:c1:ac:6e:01:65:c0:c8:24:93:92:ac:1c:75:d0:
75:04:5b:a3:d4:c3:6d:e2:a8:96:6d:e2:71:a6:cf:f1:e2:0c:
1f:b1:f5:22:5c:eb:42:38:4d:b0:2c:d4:1e:28:cb:d6:53:ad:
7b:9f:c6:25:66:51:84:3a:2d:36:39:97:b7:69:91:d6:19:90:
0e:2a:4a:27:37:23:01:16:fe:29:c6:fe:a1:a5:d9:58:37:43:
2c:ef:50:21:37:1d:46:dd:ab:fa:0b:4b:36:8f:36:d7:d6:d8:
64:d9:db:3f:44:3e:4f:3b:cc:20:c6:c7:60:ef:53:5c:08:18:
7a:0b:37:56:69:ef:e5:80:e1:cf:8b:66:a1:14:b9:b0:1e:3b:
85:c2:4e:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 04:37:06 2025 by rpki-client