Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
File: NADZSQmD598yx88Xyh6tTwX3lkY.mft (raw, json)
Hash identifier: dBFRmjtZ+0VAOTpsuPd9SHSIds6rGAijy+eQMWha4IM=
Subject key identifier: DB:7C:35:16:3E:BE:C9:20:41:E8:CC:53:E9:83:AE:FD:30:51:0B:3C
Authority key identifier: 34:00:D9:49:09:83:E7:DF:32:C7:CF:17:CA:1E:AD:4F:05:F7:96:46
Certificate issuer: /CN=3400d9490983e7df32c7cf17ca1ead4f05f79646
Certificate serial: 01963F54A8FE6D2D6248E80F3ADDC55FD816
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
Manifest number: 0665
Signing time: Wed 16 Apr 2025 16:00:34 +0000
Manifest this update: Wed 16 Apr 2025 16:00:34 +0000
Manifest next update: Thu 17 Apr 2025 16:00:34 +0000
Files and hashes: 1: NADZSQmD598yx88Xyh6tTwX3lkY.crl (hash: vLHBVBRH/HqfOs0E4UKlYkjrBE5sZ2jiq0NTU9tqRSo=)
2: wGV9gdNmWFtWWUn9dwqAU6O3Xlw.roa (hash: e5ewBGv57i41ziAigHZZOeL98kqI4hYVQ5SbzM8SjnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:54:a8:fe:6d:2d:62:48:e8:0f:3a:dd:c5:5f:d8:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3400d9490983e7df32c7cf17ca1ead4f05f79646
Validity
Not Before: Apr 16 16:00:34 2025 GMT
Not After : Apr 17 16:00:34 2025 GMT
Subject: CN=db7c35163ebec92041e8cc53e983aefd30510b3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6e:cc:74:a0:18:6e:31:18:43:70:da:d5:b9:
64:27:9c:ea:2d:71:95:78:1a:59:71:f2:54:81:3d:
99:e8:d8:e4:e3:9e:f6:ab:e5:66:73:7e:5c:eb:9a:
7c:b1:e5:31:c1:fe:c8:ba:52:94:fe:1d:b8:b1:94:
f6:57:42:f7:59:6a:84:43:07:58:99:46:e2:db:cb:
c6:50:18:ba:d7:05:90:e5:dc:c1:b1:4d:62:ae:56:
2d:05:72:ca:e8:9a:1b:ce:ac:72:1f:3e:5e:dc:d8:
a0:02:3e:9f:cd:ae:35:5c:a9:36:2a:9d:00:51:9b:
02:e6:e3:bc:1e:86:3b:22:3b:52:f7:d0:64:86:83:
df:a6:79:50:d7:4c:63:34:db:e6:30:21:24:1d:b5:
b9:30:82:d2:e3:bd:91:c9:e4:20:56:02:6d:9b:64:
f0:87:39:bd:13:d6:7e:10:9d:7b:06:bd:cb:08:2e:
a8:fb:91:81:98:dc:ca:ea:a9:fd:c5:dd:ab:00:ef:
79:9f:a6:c5:e7:46:61:fe:83:b7:e1:b4:bf:aa:89:
29:3f:b2:55:66:68:6e:10:7a:b4:d2:90:f4:d4:cf:
06:be:b9:8d:83:92:a1:dc:06:a1:e9:48:5a:42:25:
f0:c1:52:c3:4c:da:6d:58:dd:9e:36:d8:a6:3e:f7:
c2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:7C:35:16:3E:BE:C9:20:41:E8:CC:53:E9:83:AE:FD:30:51:0B:3C
X509v3 Authority Key Identifier:
keyid:34:00:D9:49:09:83:E7:DF:32:C7:CF:17:CA:1E:AD:4F:05:F7:96:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:e2:4b:a5:84:3c:c5:28:18:d3:48:58:6d:9c:5f:be:1a:77:
06:10:8e:02:16:6c:24:3a:74:26:59:50:84:ee:71:99:c8:64:
4d:77:40:65:6b:78:1f:9f:9a:8c:e8:98:b9:83:40:73:af:57:
9e:70:a0:1f:d4:8e:2c:37:ee:4f:6b:60:b5:6f:b5:52:3c:6c:
a9:83:36:ec:4d:65:0b:af:05:90:7b:28:68:9e:af:5b:97:5a:
d6:b2:59:f2:54:10:ab:04:8e:98:78:d5:48:81:10:c1:af:17:
0d:79:c8:85:83:56:4d:d7:b5:91:7f:de:8e:ce:bb:b9:e7:85:
9c:30:db:50:60:b2:91:03:ee:fc:b0:de:d2:5e:fe:48:0c:50:
56:b8:af:b2:d3:8d:a2:15:62:1a:a3:76:2a:a3:7f:13:a9:bb:
73:d1:73:98:a2:9e:c4:ac:28:a1:5f:a0:3a:97:a4:59:22:b3:
c5:dc:75:0c:bc:1b:88:c3:8f:0f:8a:bd:f8:00:40:75:ef:fb:
22:f8:41:72:b9:0f:c2:72:0f:3c:56:e3:07:3c:cf:e5:58:9b:
54:44:13:07:9a:ae:90:00:e1:55:96:c6:68:62:a3:ba:3d:7c:
d6:78:55:9b:47:c5:c5:da:0f:6b:fb:cc:6c:06:21:9f:c2:11:
bb:cf:10:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 22:11:56 2025 by rpki-client