Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.mft
File: NEGOJrKutuqoFD_XGDD5s1Sue7w.mft (raw, json)
Hash identifier: OEV/DBcoLE+rkqpRyqX+4k0knL9iUzWbeUO+U85e55U=
Subject key identifier: AF:62:87:00:AB:11:99:C0:9A:92:96:27:71:4A:9C:9A:5F:47:6B:6F
Authority key identifier: 34:41:8E:26:B2:AE:B6:EA:A8:14:3F:D7:18:30:F9:B3:54:AE:7B:BC
Certificate issuer: /CN=34418e26b2aeb6eaa8143fd71830f9b354ae7bbc
Certificate serial: 01965914689499A32F759224ED8471263788
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NEGOJrKutuqoFD_XGDD5s1Sue7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.mft
Manifest number: 0DD5
Signing time: Mon 21 Apr 2025 16:00:31 +0000
Manifest this update: Mon 21 Apr 2025 16:00:31 +0000
Manifest next update: Tue 22 Apr 2025 16:00:31 +0000
Files and hashes: 1: NEGOJrKutuqoFD_XGDD5s1Sue7w.crl (hash: WOyLsZkMU5avNjq9hDOmgAEVfHGR+2IkKcQq755MWm8=)
2: nsObN2DjPGcwLXn29XqybNz0hdw.roa (hash: LniUQovzLZtOR3Vslt1uv0Oiv/eQZfXqUz8XebxPz+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.mft
rsync://rpki.ripe.net/repository/DEFAULT/NEGOJrKutuqoFD_XGDD5s1Sue7w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:14:68:94:99:a3:2f:75:92:24:ed:84:71:26:37:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34418e26b2aeb6eaa8143fd71830f9b354ae7bbc
Validity
Not Before: Apr 21 16:00:31 2025 GMT
Not After : Apr 22 16:00:31 2025 GMT
Subject: CN=af628700ab1199c09a929627714a9c9a5f476b6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:84:bb:7f:b6:73:68:de:45:9f:a7:22:b8:49:
3c:6d:91:ab:6a:76:c8:bb:3d:f9:20:18:2d:80:ee:
fd:15:07:d0:31:75:dc:27:d7:e6:63:84:ca:14:21:
fe:43:26:f5:b4:3f:5b:83:02:ba:31:d2:11:a0:a4:
0d:fa:74:19:29:45:d6:79:67:21:88:4f:4d:a0:8e:
01:04:34:4b:35:4b:68:ed:bb:d5:6f:7e:e2:8c:83:
5c:d1:25:cc:df:eb:8e:b9:b0:0e:6d:2b:d0:5b:62:
af:30:89:6d:df:04:26:58:27:63:7c:d1:bf:25:c5:
90:b7:db:71:15:8f:4b:61:8e:a7:43:a4:d2:c3:d9:
77:31:24:26:ec:db:68:f3:c1:fb:88:18:e6:19:56:
e5:36:82:a7:6d:93:93:32:b0:36:33:cd:f0:f9:e0:
5d:44:9e:51:76:32:d1:fa:a6:b1:bf:fd:72:47:3e:
a4:b9:d7:c5:9a:08:f4:cd:79:3d:f7:f0:b7:25:c6:
ac:14:06:9f:db:dc:bf:64:c0:be:a1:1f:89:70:a8:
3c:26:fe:e1:67:7a:8e:42:5b:dc:4f:61:3c:f2:6d:
4f:04:1c:a9:ca:43:ab:2c:63:7b:db:b5:5a:6b:35:
35:49:28:83:03:6d:98:8e:4d:98:6a:d5:95:f8:c1:
d7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:62:87:00:AB:11:99:C0:9A:92:96:27:71:4A:9C:9A:5F:47:6B:6F
X509v3 Authority Key Identifier:
keyid:34:41:8E:26:B2:AE:B6:EA:A8:14:3F:D7:18:30:F9:B3:54:AE:7B:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NEGOJrKutuqoFD_XGDD5s1Sue7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:67:6a:76:d0:24:d1:98:7c:d9:d8:34:23:9e:44:29:0e:bf:
35:5a:12:fb:40:41:ef:56:ac:e3:e7:60:34:24:0f:02:56:e9:
32:08:b5:ff:e0:a0:3a:f4:fb:fc:01:07:c6:0b:5c:8c:8d:cd:
a4:ac:88:98:85:d9:01:c4:74:de:72:41:27:07:d2:c7:52:a0:
a0:38:77:93:d3:b3:05:cf:7d:cb:94:b3:dc:d9:ac:4f:47:0f:
52:05:61:41:b7:96:2c:13:5b:b9:a7:26:91:16:57:5b:e2:83:
30:c9:7b:da:a9:59:d9:ba:00:40:60:15:14:63:91:13:c3:fc:
90:c1:f0:9d:f5:06:33:06:8d:f8:1e:a3:4f:e3:ed:9b:97:a4:
86:97:6a:9d:74:0b:bb:30:f0:0f:b9:96:72:01:44:d9:c9:53:
d0:26:d7:a9:6e:50:51:76:21:b4:f1:73:91:20:10:88:2f:6c:
9d:10:7d:0d:8c:87:44:42:92:da:8c:f8:ae:57:07:5a:4d:40:
a0:64:dd:ab:71:a9:0e:2a:1f:12:e5:10:eb:3b:9d:08:ec:a9:
dd:17:ab:5b:80:e9:d1:12:26:17:da:a0:18:d9:fc:4c:17:02:
ab:8e:c8:d7:82:02:bc:8b:8b:23:61:a1:e2:c9:3b:f4:1e:41:
b7:58:96:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:25:51 2025 by rpki-client