Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
File: NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft (raw, json)
Hash identifier: 7SWFVA9UdqMc/VNQ+/Dsh7MfNQzdjDpEdD5mwilEaX8=
Subject key identifier: 68:1C:7F:48:BB:78:08:B5:A8:BF:50:07:3E:F3:50:31:1B:55:C7:F6
Authority key identifier: 35:3F:17:F4:BB:B1:93:46:DC:5A:FC:0C:23:58:79:FB:E6:35:7C:6D
Certificate issuer: /CN=353f17f4bbb19346dc5afc0c235879fbe6357c6d
Certificate serial: 01958F614AD556AEA1503126616B9699730C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
Manifest number: 0D16
Signing time: Thu 13 Mar 2025 12:01:12 +0000
Manifest this update: Thu 13 Mar 2025 12:01:12 +0000
Manifest next update: Fri 14 Mar 2025 12:01:12 +0000
Files and hashes: 1: NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl (hash: ON7aCxrjPUGHSR1WEndOY7KbruAGLIigxwmjU0YNudg=)
2: ZIEntIvRdoyNG_9f7umqM8GaOP0.roa (hash: fyIclvXxfmafIM00Oljz1bkGgUIAKrrEkFW8CDlF9q4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:61:4a:d5:56:ae:a1:50:31:26:61:6b:96:99:73:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=353f17f4bbb19346dc5afc0c235879fbe6357c6d
Validity
Not Before: Mar 13 12:01:12 2025 GMT
Not After : Mar 14 12:01:12 2025 GMT
Subject: CN=681c7f48bb7808b5a8bf50073ef350311b55c7f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:29:ef:b5:98:b7:53:95:f1:ec:d4:bb:a3:bb:
2b:67:4c:72:78:18:bf:97:fa:1e:6f:e4:db:5b:61:
11:02:69:5a:60:c6:b8:83:05:66:b4:ca:18:3a:15:
89:aa:42:df:32:71:e1:42:93:05:b4:44:90:3a:44:
30:80:5f:62:5f:b8:c9:a6:2c:b0:f2:3d:c3:fc:82:
5f:24:20:ed:d2:a5:61:1b:cd:6e:1d:ab:b6:00:dc:
1b:ac:7c:24:2f:99:cd:ea:73:03:85:07:cb:89:91:
f1:32:e7:ec:54:64:b1:b7:5c:94:67:0c:25:de:bd:
cd:7e:f6:7b:f3:7a:7d:60:02:41:c6:75:b7:94:8c:
15:f9:fa:c8:2f:9f:5c:82:3e:5f:ce:cb:c4:65:7a:
f5:a4:52:50:5e:53:04:c2:3c:45:a9:2a:eb:52:34:
98:1d:af:5c:00:cb:63:60:bb:bc:5d:ae:fa:02:95:
d1:31:a6:8b:e3:f8:70:38:80:8f:36:92:2e:5b:72:
db:60:95:d7:e6:a7:69:f4:37:b4:b8:21:6c:ab:1e:
87:01:65:ed:e9:ce:15:9f:fb:d7:3a:b7:ef:9c:0d:
a5:46:bf:db:a1:05:93:05:8f:08:99:78:45:00:e4:
f7:aa:6a:c8:8f:9b:0b:82:d2:20:be:2f:a3:2f:4c:
1a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:1C:7F:48:BB:78:08:B5:A8:BF:50:07:3E:F3:50:31:1B:55:C7:F6
X509v3 Authority Key Identifier:
keyid:35:3F:17:F4:BB:B1:93:46:DC:5A:FC:0C:23:58:79:FB:E6:35:7C:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:9f:17:d0:9b:87:3d:db:19:58:48:58:62:b9:4c:d4:89:c8:
fd:f1:0b:3b:2e:09:57:1a:b5:c1:ac:bd:39:84:ec:42:f0:a1:
2f:aa:e9:1a:a0:5e:cc:e0:c9:9a:92:2b:07:33:1d:00:5e:ab:
03:8e:91:91:98:54:f8:8a:e4:35:7a:9e:c1:33:6e:fb:34:45:
a9:b7:b2:ae:7c:59:d3:9b:8c:8e:9b:59:5d:5c:81:e8:35:94:
06:3f:3d:f8:38:cf:75:44:63:41:33:a9:38:6d:f2:45:39:7f:
9a:af:42:d6:3d:c7:25:35:5f:6c:46:82:9b:3d:b4:03:e7:d1:
d1:f0:ad:d5:bc:38:f2:0f:32:72:be:49:a5:b0:d8:c9:11:31:
29:60:84:9f:f2:96:49:27:37:f0:5e:c3:1e:ba:a9:14:50:e3:
d4:86:db:55:c6:31:0f:10:02:4b:a7:cf:98:e5:93:7c:00:2b:
45:e4:87:d7:51:54:d1:25:7a:d7:0a:42:47:fb:4d:cf:f4:8e:
bc:d2:45:1f:fd:98:7a:77:bd:69:0c:f5:4b:18:91:0f:e8:88:
a7:0c:85:17:5f:bb:3d:ce:bd:8a:2f:52:66:44:c5:39:82:dc:
20:8f:84:1c:9d:ee:ac:c7:5b:22:f7:57:04:1a:fb:a0:70:9f:
0f:6e:6d:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:29:49 2025 by rpki-client