Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
File: nfToC0ytTlC3iO3xaXZxLe7_bA0.mft (raw, json)
Hash identifier: oonvJqWBN/BrAnu3sx0OZUaKrK+EBRbNPzEJPpfJ4y8=
Subject key identifier: CB:4D:9B:A4:0C:19:C6:37:05:9D:F6:DC:A7:51:AA:5F:8E:D5:96:F1
Authority key identifier: 9D:F4:E8:0B:4C:AD:4E:50:B7:88:ED:F1:69:76:71:2D:EE:FF:6C:0D
Certificate issuer: /CN=9df4e80b4cad4e50b788edf16976712deeff6c0d
Certificate serial: 0196579485DF67D7DEE515C215ECA51158FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
Manifest number: 0DD3
Signing time: Mon 21 Apr 2025 09:01:13 +0000
Manifest this update: Mon 21 Apr 2025 09:01:13 +0000
Manifest next update: Tue 22 Apr 2025 09:01:13 +0000
Files and hashes: 1: mTtxU7O_lRz_UT2tjl3cUWas7pA.roa (hash: lHDy75xFNayt8SROCAEJF8vDi//tAi35Yjt2Fy8OX04=)
2: nfToC0ytTlC3iO3xaXZxLe7_bA0.crl (hash: miTuN4S/LgX/3H0Z/SioDJrxlun7/NegVCRORmDVapY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:94:85:df:67:d7:de:e5:15:c2:15:ec:a5:11:58:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9df4e80b4cad4e50b788edf16976712deeff6c0d
Validity
Not Before: Apr 21 09:01:13 2025 GMT
Not After : Apr 22 09:01:13 2025 GMT
Subject: CN=cb4d9ba40c19c637059df6dca751aa5f8ed596f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a9:5a:cd:4e:69:6a:fe:65:31:3b:e9:45:f3:
44:99:61:b2:a1:4d:02:5c:a5:d4:02:e9:99:11:32:
0e:42:42:c4:74:c6:8c:d3:01:7a:b5:41:a6:5f:1c:
ec:1e:61:cf:49:d1:02:e6:a2:9b:96:a8:a7:f9:b1:
e5:d1:4b:2d:2e:7a:c4:b1:d3:b6:8e:7e:32:e1:f1:
51:f5:c2:45:89:44:5b:bf:8e:7c:83:7e:42:02:23:
a9:d0:59:aa:e7:72:c1:57:07:0b:2c:88:37:ab:28:
62:28:41:8e:74:00:28:eb:79:43:2c:d2:2a:23:76:
f7:af:c2:96:93:a7:06:80:2d:7d:fa:48:84:63:db:
c8:e5:5f:3f:af:db:a1:e4:8b:4e:ad:c9:cd:4c:32:
7a:5a:5e:a2:b2:d9:3f:8b:99:f9:59:0a:94:cb:3e:
c3:96:5e:6a:d5:62:8f:ff:2a:a0:f2:98:54:49:e2:
67:d0:8c:38:33:62:94:25:c3:23:d0:49:6b:a1:4e:
7f:fd:18:3b:be:c1:4f:bc:56:89:09:db:54:09:84:
f4:97:a3:e4:dd:9c:62:62:82:f8:5e:9d:a7:ba:94:
21:fe:bd:ed:50:3f:7d:1f:e6:13:c6:58:f1:8a:3d:
d2:6c:ec:15:7e:0b:0d:63:ec:df:e5:c4:05:6e:58:
d4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:4D:9B:A4:0C:19:C6:37:05:9D:F6:DC:A7:51:AA:5F:8E:D5:96:F1
X509v3 Authority Key Identifier:
keyid:9D:F4:E8:0B:4C:AD:4E:50:B7:88:ED:F1:69:76:71:2D:EE:FF:6C:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:e5:68:01:06:c9:63:f2:b8:20:29:a5:2a:f7:7e:b8:ae:5a:
df:f9:de:9b:3c:30:54:62:0c:c6:94:f1:fd:69:6b:a5:2f:af:
09:45:17:16:31:78:e5:13:ba:85:0e:44:0e:a4:57:c6:42:22:
3f:d5:7f:7c:48:c2:c6:40:7b:e0:5c:ec:5b:36:35:ff:ca:a8:
f4:a2:13:1d:51:a2:70:1b:d9:82:b7:4e:8e:32:a2:84:0b:2b:
2e:22:fe:f1:8a:04:34:d9:4a:40:1f:fb:67:4a:b1:6e:6e:97:
41:cb:18:2b:11:bd:01:f8:b0:30:b1:fb:d3:03:1d:3c:14:f1:
07:11:18:2d:99:24:45:ee:46:9e:18:14:7a:08:61:a5:5d:bc:
c8:f2:33:69:6b:77:e9:72:90:7c:fc:a1:59:3c:a7:61:95:da:
9d:86:e7:bb:7a:a2:4e:f6:ab:e9:8d:28:4d:bc:a2:03:0f:7d:
09:cf:30:9d:dc:0f:1d:09:da:7f:eb:a9:63:90:b8:c6:a6:45:
14:53:e3:42:7c:1e:3a:ff:9a:61:68:d0:d4:06:fd:8b:41:b1:
44:c1:64:db:ca:04:df:ba:42:e7:ee:a2:80:73:1c:69:0d:76:
f7:77:f7:68:a2:93:e7:76:ba:af:a7:6f:f1:d7:48:70:0a:46:
81:63:11:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:42:05 2025 by rpki-client