Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.mft
File: NB54rk8RnAGERACQzx2JrMiyLCQ.mft (raw, json)
Hash identifier: HZLonu8kZUSh2eTGdWwxH6esWC/EreIJTMQzKoRK/no=
Subject key identifier: 70:48:F7:4D:CE:EF:34:52:AE:95:22:62:D9:B0:7A:DE:77:10:36:90
Authority key identifier: 34:1E:78:AE:4F:11:9C:01:84:44:00:90:CF:1D:89:AC:C8:B2:2C:24
Certificate issuer: /CN=341e78ae4f119c0184440090cf1d89acc8b22c24
Certificate serial: 019658A679CE4DA55D3FF82F4F7BB2AC2C7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NB54rk8RnAGERACQzx2JrMiyLCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.mft
Manifest number: 02BD
Signing time: Mon 21 Apr 2025 14:00:27 +0000
Manifest this update: Mon 21 Apr 2025 14:00:27 +0000
Manifest next update: Tue 22 Apr 2025 14:00:27 +0000
Files and hashes: 1: NB54rk8RnAGERACQzx2JrMiyLCQ.crl (hash: 0sGTxb3A0do/GohhP6ITnNPfqY+AlHH5BKKB6KnsgHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/NB54rk8RnAGERACQzx2JrMiyLCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:a6:79:ce:4d:a5:5d:3f:f8:2f:4f:7b:b2:ac:2c:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=341e78ae4f119c0184440090cf1d89acc8b22c24
Validity
Not Before: Apr 21 14:00:27 2025 GMT
Not After : Apr 22 14:00:27 2025 GMT
Subject: CN=7048f74dceef3452ae952262d9b07ade77103690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ee:9c:e1:fa:b2:53:e1:d6:df:e6:ec:dc:4d:
d0:69:1c:c4:d5:02:29:ee:fc:42:06:fe:29:13:3d:
d6:aa:5d:b1:7f:41:c5:dc:e1:bc:be:48:35:1e:2e:
44:4c:43:a3:b6:b5:fa:f9:a1:a3:e2:f9:2a:b2:13:
4c:43:94:43:85:f9:92:b0:76:35:fe:d7:ff:35:28:
59:df:66:83:f7:63:1e:f7:6f:44:64:87:fe:70:38:
6c:73:fe:7a:4a:19:29:19:d2:bd:53:18:ea:68:d1:
dd:80:cd:15:c6:8b:45:92:cb:41:74:4e:2e:b2:9c:
cf:1b:d0:72:76:a4:41:ac:2f:fd:a4:ff:14:07:4c:
9b:22:9b:88:52:bc:69:60:6c:6e:39:fe:e3:c9:42:
56:4b:1a:fe:72:cc:21:24:7a:b1:d9:4e:92:3d:77:
81:63:99:30:fe:8a:3d:02:86:2b:fc:07:05:0d:00:
43:ee:03:ef:8a:0c:ca:7f:77:6a:d9:a6:91:6e:48:
5f:bf:71:a2:cf:8a:b8:21:f8:4e:22:2c:1f:96:91:
0f:80:56:6c:3f:a2:dc:17:cd:77:e5:7e:ab:11:12:
99:18:b3:0e:c6:bd:ff:a2:d3:b7:d9:77:5b:8c:6c:
bd:81:02:99:e3:6e:58:df:02:50:05:9c:80:8c:78:
e2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:48:F7:4D:CE:EF:34:52:AE:95:22:62:D9:B0:7A:DE:77:10:36:90
X509v3 Authority Key Identifier:
keyid:34:1E:78:AE:4F:11:9C:01:84:44:00:90:CF:1D:89:AC:C8:B2:2C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NB54rk8RnAGERACQzx2JrMiyLCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:1d:89:bd:75:91:a3:32:67:87:e1:81:2e:e6:00:82:4b:d9:
ea:96:33:c1:d5:b5:fb:af:1c:97:88:85:9f:12:16:2e:de:b1:
3c:4d:5d:f1:ab:29:4c:fc:07:5d:83:ea:2c:a1:15:35:80:bd:
68:dd:13:2c:f8:e6:24:ee:50:d3:5a:4e:07:12:d1:44:2c:c4:
a0:e6:a5:ef:f0:68:31:5d:e5:ef:a0:43:6f:ab:18:2f:d3:7e:
ab:34:a9:bf:cc:19:8b:15:c3:a0:ec:90:ec:fa:c0:85:4f:b2:
2d:41:e5:68:1b:cd:5f:86:07:b4:4e:df:80:3c:2c:3e:45:91:
8a:7a:cd:34:c6:99:69:f6:36:38:86:d4:45:9d:95:1a:fe:9d:
f8:78:e5:0b:90:da:00:c0:6d:2d:02:89:3c:8b:5e:cd:24:24:
2e:99:c1:73:7c:93:d0:8c:02:e9:80:cd:65:36:b9:d9:2f:c7:
8c:cd:4a:4c:57:7f:1a:25:89:27:ab:c0:ac:c3:ec:6e:01:36:
f6:45:e0:4d:79:b8:99:b1:9e:fb:c1:f5:47:4b:d0:8c:64:ae:
34:cb:bd:04:45:9f:e1:97:ed:20:0d:6b:46:1d:b2:16:4a:6e:
da:1c:13:b6:56:b8:d7:20:cb:00:5f:de:79:dc:a0:9a:ee:2e:
48:71:f7:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 17:03:09 2025 by rpki-client