Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
File: nEswhmFPR4OKPoCj5uBR09imkvk.mft (raw, json)
Hash identifier: 6ppx7uhEERhxNnNanAKThwGvEUL088lV5cJGiOQwIgg=
Subject key identifier: 32:25:A8:21:C5:9B:0B:C7:8C:21:9A:DA:11:46:CA:4C:0B:EA:AC:A3
Authority key identifier: 9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
Certificate issuer: /CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Certificate serial: 01964B58F52B3CC01C03C609450170E38086
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
Manifest number: 0545
Signing time: Sat 19 Apr 2025 00:00:43 +0000
Manifest this update: Sat 19 Apr 2025 00:00:43 +0000
Manifest next update: Sun 20 Apr 2025 00:00:43 +0000
Files and hashes: 1: a_Q0Oj2hhJ8gyCrgqERD5VjhULo.roa (hash: ix5ZmIac7PSSZ8cbH+U6PyHdhcxmOIX450xPjZ8S6o0=)
2: nEswhmFPR4OKPoCj5uBR09imkvk.crl (hash: YDOKZ+eFaJQQI+jAm/T3xtZo0Mj6dnZ6U4lvONszjV0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:58:f5:2b:3c:c0:1c:03:c6:09:45:01:70:e3:80:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Validity
Not Before: Apr 19 00:00:43 2025 GMT
Not After : Apr 20 00:00:43 2025 GMT
Subject: CN=3225a821c59b0bc78c219ada1146ca4c0beaaca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b5:57:d4:af:b8:6f:19:a2:e3:14:e1:d8:8f:
58:47:e2:6c:2f:3c:0a:22:a3:36:10:16:05:89:5e:
34:43:7f:48:0f:e2:29:5f:75:1e:b1:10:fa:85:74:
76:13:03:59:7a:4d:3c:14:5b:d7:9d:c2:86:92:82:
17:06:1e:c2:3f:03:10:7e:17:f6:fb:46:a5:12:9a:
74:f7:96:25:81:36:be:d0:2b:1b:7e:48:3b:b8:41:
77:1b:5d:75:f1:95:ec:c3:1a:4f:eb:a0:91:61:3a:
1c:59:e3:0a:58:c1:44:c1:d4:e3:de:93:9c:ce:75:
fc:40:0c:54:2f:dd:fd:3f:12:ea:fd:46:fa:d5:65:
a3:7a:9e:b1:8e:7e:a6:71:fc:18:c8:a8:a8:03:4f:
06:45:b7:49:a8:a6:14:ff:18:e7:14:e6:32:7d:ea:
ab:49:64:16:7c:45:84:a0:f7:2b:ee:f6:a0:11:cf:
ad:32:e4:39:62:d6:8e:53:5a:f5:f6:06:0a:29:1a:
73:b6:52:b1:79:9d:02:1a:ab:25:20:4d:7e:4e:a9:
e2:ba:2b:be:42:9a:98:d2:10:d6:f9:99:8d:e4:a1:
cb:cd:ff:e3:93:aa:71:e4:b1:68:3b:46:dc:df:39:
9d:10:20:e9:94:ce:dd:14:d4:42:40:f6:a7:f2:07:
80:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:25:A8:21:C5:9B:0B:C7:8C:21:9A:DA:11:46:CA:4C:0B:EA:AC:A3
X509v3 Authority Key Identifier:
keyid:9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:cf:97:80:1f:4f:bd:f0:30:40:fa:8e:13:3b:85:b4:72:29:
f2:00:4b:0f:69:a8:72:61:f5:b4:85:d2:42:7d:91:79:5a:a0:
52:b2:e8:b1:e6:ac:b8:7f:af:9c:24:2e:17:cf:f5:c4:41:b8:
05:04:32:fa:86:6e:0e:b7:ed:35:3e:95:20:8a:71:50:8d:6e:
96:f1:e7:3a:72:c9:e0:00:c3:e5:2c:cd:7e:63:28:c0:2d:e2:
c8:a3:27:7f:f9:23:62:f5:1b:13:9b:47:0d:91:46:43:6e:37:
34:3c:f6:0c:2b:2d:96:0f:61:dc:f4:d8:ad:79:43:75:52:c3:
2a:a7:41:b1:6d:16:cf:84:fb:9a:e0:fe:ce:3d:7b:32:a1:6d:
f0:82:2a:17:6b:49:23:b2:4a:64:3f:14:c5:8b:80:68:30:9e:
7e:1b:85:59:26:08:1e:0b:2a:e4:87:53:3e:bf:0a:a8:6a:a3:
11:eb:c3:fe:86:62:a4:63:bb:cc:44:0a:93:af:94:12:f5:88:
70:0d:5f:23:78:fc:8c:ea:83:7d:b1:f7:cb:0d:fd:c9:20:3a:
c3:9b:ee:76:b8:cf:e2:ce:e7:3f:c6:09:6a:06:2b:cf:1e:0c:
85:97:82:6a:c5:b6:d0:61:b6:79:9d:76:94:8c:b5:0c:62:12:
7d:67:c4:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:13:01 2025 by rpki-client