Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft
File: nvnDHh7MuhkCs_YiWT3pcspxi1w.mft (raw, json)
Hash identifier: CcqIzZpTktzpAQGbuyGV10az798W+qxVLpHgq5FQpG4=
Subject key identifier: 48:5C:42:7D:F4:86:3B:35:A4:98:26:A5:33:42:BE:78:5D:90:07:08
Authority key identifier: 9E:F9:C3:1E:1E:CC:BA:19:02:B3:F6:22:59:3D:E9:72:CA:71:8B:5C
Certificate issuer: /CN=9ef9c31e1eccba1902b3f622593de972ca718b5c
Certificate serial: 019511A2E01FD5D398A8DABFF087412E04E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nvnDHh7MuhkCs_YiWT3pcspxi1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft
Manifest number: 0BAE
Signing time: Mon 17 Feb 2025 02:00:41 +0000
Manifest this update: Mon 17 Feb 2025 02:00:41 +0000
Manifest next update: Tue 18 Feb 2025 02:00:41 +0000
Files and hashes: 1: nvnDHh7MuhkCs_YiWT3pcspxi1w.crl (hash: pH6YJGfYvcN7bYDQBJ/1A1R0y41UTRGGZElSDehVNhM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/nvnDHh7MuhkCs_YiWT3pcspxi1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:e0:1f:d5:d3:98:a8:da:bf:f0:87:41:2e:04:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ef9c31e1eccba1902b3f622593de972ca718b5c
Validity
Not Before: Feb 17 02:00:41 2025 GMT
Not After : Feb 18 02:00:41 2025 GMT
Subject: CN=485c427df4863b35a49826a53342be785d900708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:97:c1:b2:73:f5:ce:30:c4:08:7f:99:6c:65:
ac:7d:fe:05:e0:d8:d8:35:b9:3f:8d:e5:2b:67:68:
aa:a4:ff:bb:10:6c:99:5b:b1:d4:a1:36:66:37:14:
82:e3:14:4c:8a:fa:4d:e8:69:49:29:f7:9f:b1:73:
87:97:97:58:67:bf:a0:ad:2a:c7:b6:3e:03:85:6d:
7a:6c:95:a2:fb:5f:9a:2c:29:49:9c:af:b3:f1:07:
bf:87:b9:cf:d3:f9:7b:7b:10:73:9d:5b:47:21:e9:
c1:47:28:ed:d7:b6:01:86:21:2d:a5:c9:2d:61:fe:
3e:61:53:09:8c:56:a1:96:15:7f:7c:43:d1:dc:fa:
72:f4:cc:5b:cb:5b:f2:86:52:5d:46:86:5f:93:32:
3e:af:31:00:55:72:f9:6b:b3:3d:8d:a9:f8:bb:7e:
15:f6:e0:7c:36:c0:05:0b:9d:0b:20:e5:ae:46:79:
83:e2:62:33:9f:e6:46:6a:97:65:c4:b9:70:7d:c7:
db:ef:75:bf:70:25:97:45:ef:4f:99:fc:47:b2:32:
2b:95:e6:df:8a:bf:af:e0:06:ba:d7:44:49:46:ab:
d3:8a:1f:e0:c1:6c:ec:3c:8f:64:f7:8a:3e:ca:a2:
db:62:a7:79:19:54:07:28:b5:6b:2d:27:1a:7b:10:
b2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:5C:42:7D:F4:86:3B:35:A4:98:26:A5:33:42:BE:78:5D:90:07:08
X509v3 Authority Key Identifier:
keyid:9E:F9:C3:1E:1E:CC:BA:19:02:B3:F6:22:59:3D:E9:72:CA:71:8B:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nvnDHh7MuhkCs_YiWT3pcspxi1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:2d:f8:e1:ae:c1:08:2f:91:db:2b:73:d8:b7:ac:d6:21:5a:
05:28:44:d5:40:b9:e4:03:84:82:e6:c5:52:ee:14:9b:f9:0e:
fe:1a:17:1b:8d:e7:58:db:a3:e0:b5:10:0b:7a:ad:a9:2b:57:
34:09:bc:7e:97:05:9c:e8:9f:5e:26:c3:10:80:c6:0b:28:a9:
97:6b:45:8a:5b:f6:c1:ca:db:76:06:5e:00:ae:08:df:f2:83:
fc:28:68:85:9f:e5:35:eb:63:b4:49:8b:02:4f:79:1e:b2:ce:
86:64:86:0a:92:de:5b:31:27:04:a9:bd:1a:21:60:f5:c3:85:
1f:ee:83:84:32:3f:ea:30:0c:6d:ee:a0:e7:e3:ba:29:fa:2d:
17:e2:8b:d7:42:e4:05:9b:eb:ad:eb:72:61:6a:bc:24:ae:7b:
cc:99:10:41:3e:d7:5b:44:c5:ad:3f:4a:6f:39:31:6a:8d:f5:
6f:64:d1:3e:30:9a:c4:32:ca:cc:1b:66:e5:df:14:ac:2f:32:
48:9a:3a:12:ce:c5:23:16:8a:f5:77:e3:b6:56:2d:a8:b2:85:
11:45:87:d7:38:49:72:98:61:f6:e1:81:3d:b2:f5:ec:7d:a4:
ca:ba:f5:c1:d5:82:c0:a0:80:bb:ad:22:5b:d6:70:91:a9:01:
1e:90:15:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:28 2025 by rpki-client