Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
File: NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft (raw, json)
Hash identifier: tv34o7W/mqcGNSpMNL3NjXaJ2mGCqJ5XRUmOzPQVvsI=
Subject key identifier: 13:00:69:E6:FD:FB:47:4D:25:CA:0B:9D:8D:FD:C8:A8:2C:BA:DD:0A
Authority key identifier: 34:01:23:43:A6:2F:3F:09:B5:5C:DB:C0:1E:75:C3:82:12:A2:35:DF
Certificate issuer: /CN=34012343a62f3f09b55cdbc01e75c38212a235df
Certificate serial: 01965380421893E0A58C2C8F720B1523BAF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
Manifest number: 0D02
Signing time: Sun 20 Apr 2025 14:00:36 +0000
Manifest this update: Sun 20 Apr 2025 14:00:36 +0000
Manifest next update: Mon 21 Apr 2025 14:00:36 +0000
Files and hashes: 1: NAEjQ6YvPwm1XNvAHnXDghKiNd8.crl (hash: YF1qtWXGgYQFoeM5w4HOATYK+A8xa0oGvM1Cj7ejoNs=)
2: hRAHaXw08T46yQXdPdRGo5FEyKc.roa (hash: kanS0GeR3i8daBZU7h/NZ29VRbj73ZfNj0diMdbJ7lg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:80:42:18:93:e0:a5:8c:2c:8f:72:0b:15:23:ba:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34012343a62f3f09b55cdbc01e75c38212a235df
Validity
Not Before: Apr 20 14:00:36 2025 GMT
Not After : Apr 21 14:00:36 2025 GMT
Subject: CN=130069e6fdfb474d25ca0b9d8dfdc8a82cbadd0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d0:bf:9b:b1:f6:1d:aa:38:9e:f9:e0:75:2f:
1e:68:08:24:fc:03:f6:d6:ec:87:32:e9:d0:cf:6a:
ca:7d:93:ff:47:2c:4a:9e:5f:f5:eb:01:73:57:44:
d0:1d:2d:be:6f:da:d1:cf:68:5b:5f:fd:79:0b:b9:
80:ef:aa:08:b5:d3:89:d0:7b:99:50:5e:5e:e4:f5:
f5:bd:c8:91:e0:29:c0:b9:23:5f:dc:c2:72:39:85:
2d:8d:fc:7c:bb:35:0c:f3:37:a0:12:09:47:f1:e8:
9f:22:85:39:f6:02:ec:a0:db:f9:38:7f:87:88:0b:
ea:a6:57:74:c6:e8:77:78:8e:34:fe:4e:e6:d4:fe:
7f:96:79:fd:98:3d:2f:8e:0c:2e:3c:6e:06:d9:56:
cd:8a:88:89:b3:31:f5:64:79:6f:66:75:e6:35:f7:
5d:41:f3:f3:a2:9c:6e:9c:7f:80:f5:11:30:67:c3:
57:6b:ca:17:57:22:86:d1:6b:df:ea:a3:d0:e8:db:
be:7e:a4:b1:37:3b:b5:d9:cd:8a:b0:2a:ee:64:0b:
fe:98:dd:26:16:ea:e3:c1:59:07:e5:4d:06:9d:92:
40:cd:31:20:1f:af:f2:f4:3b:46:7b:d2:1f:02:b0:
1b:ec:7a:d9:55:6b:16:d0:60:db:c0:f9:d9:e1:a3:
0b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:00:69:E6:FD:FB:47:4D:25:CA:0B:9D:8D:FD:C8:A8:2C:BA:DD:0A
X509v3 Authority Key Identifier:
keyid:34:01:23:43:A6:2F:3F:09:B5:5C:DB:C0:1E:75:C3:82:12:A2:35:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:44:c9:a8:5d:b9:32:68:14:d0:55:8a:11:d5:ff:c5:38:ff:
50:a4:7d:75:36:1e:e1:9f:a1:0c:e9:ac:37:e3:47:a0:45:cb:
db:26:38:c1:b1:69:57:02:6b:b8:c4:0c:79:01:ac:a6:7a:35:
c2:1d:20:80:ca:0e:17:b4:6f:bd:4f:8c:a2:b5:c3:a9:e1:d1:
12:43:30:31:db:88:8f:f2:82:d7:89:7e:68:31:3e:e5:34:b7:
55:14:05:f0:e3:19:e2:be:2b:57:7a:c2:53:cf:da:2b:97:60:
2e:6f:f9:97:1f:56:0a:ea:56:e7:27:62:08:e7:52:0e:6f:63:
0d:c0:44:b9:a3:66:64:c0:92:ef:1d:4f:fe:c9:be:d8:f9:82:
d5:f8:a2:e6:5c:fb:c8:56:43:a2:f2:b8:16:0d:df:33:88:e4:
04:ab:9f:a5:2d:a8:ec:24:7d:07:77:85:1e:0b:e2:2d:ea:53:
8a:1c:94:17:6b:ee:41:7c:fc:ac:0c:98:6e:51:11:64:de:d2:
51:59:38:bd:e3:10:ff:a7:7a:19:3f:8d:4a:3f:d6:fd:9c:75:
71:1a:d9:4c:03:3c:02:1b:cf:5c:7e:c7:f2:bc:25:90:4f:ea:
1d:a0:02:84:e8:db:54:cf:fa:02:35:b1:6b:21:2a:31:a1:28:
a7:3f:33:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 22:11:07 2025 by rpki-client