Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ff25d7-5ffa-4686-8326-69d79c9d0721/1/nfbRY1k964rv8HL-yljm8_HE5-U.mft
File: nfbRY1k964rv8HL-yljm8_HE5-U.mft (raw, json)
Hash identifier: cyi8imJbhaZMVRNggW1JWGG2mxAh0CyG2cOiJwTur60=
Subject key identifier: 80:AA:FF:BE:8A:5D:84:91:0E:28:09:41:D1:66:4A:69:5A:67:32:70
Authority key identifier: 9D:F6:D1:63:59:3D:EB:8A:EF:F0:72:FE:CA:58:E6:F3:F1:C4:E7:E5
Certificate issuer: /CN=9df6d163593deb8aeff072feca58e6f3f1c4e7e5
Certificate serial: 019656138DDC5D3AA52DA3B4D2812AAB041D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfbRY1k964rv8HL-yljm8_HE5-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ff25d7-5ffa-4686-8326-69d79c9d0721/1/nfbRY1k964rv8HL-yljm8_HE5-U.mft
Manifest number: 0B9A
Signing time: Mon 21 Apr 2025 02:00:44 +0000
Manifest this update: Mon 21 Apr 2025 02:00:44 +0000
Manifest next update: Tue 22 Apr 2025 02:00:44 +0000
Files and hashes: 1: XM057xIBl4X4QJASTmfkRwaiNaE.roa (hash: vZ1H1/yQjb9EVPL0oyydRTCpB/F5AEPyVx/M+2z5CZ0=)
2: nfbRY1k964rv8HL-yljm8_HE5-U.crl (hash: F3TmBndaHMgJOyCXJuY+6M1nvhTv0vCQ5Gyw/ctVG3c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/ff25d7-5ffa-4686-8326-69d79c9d0721/1/nfbRY1k964rv8HL-yljm8_HE5-U.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/ff25d7-5ffa-4686-8326-69d79c9d0721/1/nfbRY1k964rv8HL-yljm8_HE5-U.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfbRY1k964rv8HL-yljm8_HE5-U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:13:8d:dc:5d:3a:a5:2d:a3:b4:d2:81:2a:ab:04:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9df6d163593deb8aeff072feca58e6f3f1c4e7e5
Validity
Not Before: Apr 21 02:00:44 2025 GMT
Not After : Apr 22 02:00:44 2025 GMT
Subject: CN=80aaffbe8a5d84910e280941d1664a695a673270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9c:83:e4:27:43:fe:3f:53:b9:40:41:c7:49:
b0:29:bf:3e:62:25:f8:9f:1f:ba:51:9d:f0:08:c1:
52:4b:b9:f9:81:42:16:b0:72:1b:c0:ad:5f:4c:40:
b7:d5:4f:b6:04:8c:b1:b8:5d:0b:38:82:b9:5b:8a:
7c:e8:79:ee:8f:72:92:74:49:4e:9b:59:be:e1:01:
b2:8d:7e:b3:6e:45:78:cc:a1:67:db:37:fe:df:79:
00:40:6a:48:d6:c6:55:fd:6d:72:7b:2c:5b:1e:34:
fc:b3:04:8b:6d:16:e8:76:d8:af:2f:a2:bf:2d:d4:
f5:01:77:b8:5d:84:c2:11:1e:6c:db:ca:6e:60:ae:
70:56:e2:6f:5c:a0:38:8c:f7:f2:7d:42:2b:a4:8e:
2e:08:27:72:31:35:4b:fb:a1:16:68:7f:0d:6c:d1:
89:66:8a:e0:10:b4:63:74:20:90:e8:89:cc:ec:6e:
b3:6b:ae:43:ac:93:29:3b:c8:c0:bc:d0:d5:4d:88:
40:a2:ec:fc:cb:3c:8d:1d:ee:19:da:0a:fd:f8:63:
c7:e4:0c:78:34:b3:2b:66:8a:d3:b5:00:a8:f1:dc:
19:4a:7f:33:1f:76:d6:87:3e:d0:6a:88:bb:23:78:
a5:75:0f:f9:42:11:7b:ce:4f:74:53:8a:0d:57:1f:
78:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:AA:FF:BE:8A:5D:84:91:0E:28:09:41:D1:66:4A:69:5A:67:32:70
X509v3 Authority Key Identifier:
keyid:9D:F6:D1:63:59:3D:EB:8A:EF:F0:72:FE:CA:58:E6:F3:F1:C4:E7:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfbRY1k964rv8HL-yljm8_HE5-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff25d7-5ffa-4686-8326-69d79c9d0721/1/nfbRY1k964rv8HL-yljm8_HE5-U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff25d7-5ffa-4686-8326-69d79c9d0721/1/nfbRY1k964rv8HL-yljm8_HE5-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:f3:7d:78:4c:41:dd:f8:81:24:b6:a2:1e:e3:fc:33:b2:57:
82:e2:53:89:3a:83:12:54:83:92:9f:25:c7:05:83:5d:47:4c:
d9:a0:44:22:dd:3b:fe:b1:b7:ab:26:13:db:a3:cd:1a:36:43:
2e:08:24:79:7f:f3:f6:49:64:e6:d7:ef:59:20:3b:0d:12:c9:
ef:3a:f3:7b:4c:78:fb:46:e4:af:76:10:32:e4:45:ee:28:3a:
95:95:8d:83:7b:7b:89:3a:f9:03:a6:91:aa:41:2d:dc:a5:da:
5b:05:db:1d:fa:b3:ae:d5:04:03:9f:ed:08:8c:32:00:19:dc:
0a:0c:38:fb:09:fa:6b:50:b9:20:0e:77:df:57:cc:89:f4:d1:
6c:5d:d7:5f:7e:fe:69:b4:c7:7e:43:a0:28:df:b7:d7:3f:f7:
c0:e3:47:e1:01:82:b4:c7:bd:d6:d3:6f:91:29:b5:35:73:4a:
d5:30:5f:07:4d:7c:6f:f8:41:d3:b0:df:08:c3:42:ea:14:87:
fe:4f:24:1f:b3:3d:15:97:73:88:ae:76:57:b6:f3:92:45:a8:
fa:44:58:43:6e:5b:a2:70:6f:34:13:1b:58:7a:73:92:49:0a:
3a:e6:32:7e:d4:60:b0:87:81:28:7d:8e:13:7a:64:9e:39:7d:
a1:28:42:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:57:49 2025 by rpki-client