Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
File: NQtAztNuMfkF4abo4DxiHp-_yyk.mft (raw, json)
Hash identifier: JcPNUquzdZAmRKrYo4m8pWFozHzrqH+eXiSox7iKfhc=
Subject key identifier: 91:E0:5A:D1:A4:AD:E9:3C:14:30:4A:36:E3:9D:71:94:B5:C9:CF:4E
Authority key identifier: 35:0B:40:CE:D3:6E:31:F9:05:E1:A6:E8:E0:3C:62:1E:9F:BF:CB:29
Certificate issuer: /CN=350b40ced36e31f905e1a6e8e03c621e9fbfcb29
Certificate serial: 0195903D4420ED276F9206ED7F6DB85BC693
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
Manifest number: 11D5
Signing time: Thu 13 Mar 2025 16:01:29 +0000
Manifest this update: Thu 13 Mar 2025 16:01:29 +0000
Manifest next update: Fri 14 Mar 2025 16:01:29 +0000
Files and hashes: 1: NQtAztNuMfkF4abo4DxiHp-_yyk.crl (hash: 2ujCXtOsRrIYlh3E0eJLIHUoQR4Xnxskp8jQ82NnIk4=)
2: u7-gL9wSp2bGW7DIF24NVuhmOKc.roa (hash: tP75Wdne3vqUbGN0hrtXpkGNXdZlPHZwjnI3xiXFlak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:3d:44:20:ed:27:6f:92:06:ed:7f:6d:b8:5b:c6:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=350b40ced36e31f905e1a6e8e03c621e9fbfcb29
Validity
Not Before: Mar 13 16:01:29 2025 GMT
Not After : Mar 14 16:01:29 2025 GMT
Subject: CN=91e05ad1a4ade93c14304a36e39d7194b5c9cf4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e0:f2:31:7b:27:4e:6e:dc:8a:be:39:ee:d8:
38:2c:7b:49:b5:b9:7f:31:de:b4:62:a3:fb:d5:59:
ca:26:5b:66:50:cb:89:bd:cd:8f:ee:88:1a:2a:40:
52:d7:a5:5a:aa:29:3f:6d:af:38:63:6e:ba:dc:18:
48:75:f7:5a:d1:02:3c:84:c5:c2:95:28:26:25:06:
1f:1e:9a:4d:5b:56:62:12:e7:c3:2d:34:95:4d:91:
57:16:e8:29:22:71:9f:52:f6:8b:25:d9:f1:d4:60:
f9:01:b6:55:fd:ca:f0:54:df:03:40:16:1c:a4:07:
30:6d:fe:55:25:fe:2d:c3:10:7c:81:66:5d:76:90:
96:ab:04:9c:80:ea:c4:da:04:0d:fc:0c:2c:b0:f6:
fe:d9:84:ea:31:ef:4d:d2:64:fb:06:53:7a:75:ef:
2b:65:46:40:4e:8a:60:d2:3c:4f:21:f5:b0:77:ae:
e0:eb:a2:38:ed:84:fb:ce:48:57:f1:61:9e:39:c3:
7b:56:a3:0f:d8:77:14:6e:a3:cd:24:31:d9:df:53:
7f:c4:ce:9a:e8:b2:df:93:50:b0:12:96:a1:b2:2c:
05:88:fa:1c:6c:99:99:08:ec:8a:00:20:34:59:c1:
ad:9d:ae:67:12:da:96:94:c2:bb:ca:96:2f:29:ac:
c9:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:E0:5A:D1:A4:AD:E9:3C:14:30:4A:36:E3:9D:71:94:B5:C9:CF:4E
X509v3 Authority Key Identifier:
keyid:35:0B:40:CE:D3:6E:31:F9:05:E1:A6:E8:E0:3C:62:1E:9F:BF:CB:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:da:a2:22:53:5b:34:aa:f8:67:bc:47:8e:53:d4:f4:62:27:
f5:c9:99:00:f4:56:23:29:c6:ab:87:ff:98:1e:e1:39:0f:32:
b9:fb:08:63:c2:d6:c4:97:e6:55:48:67:d6:b1:6d:65:69:ad:
8d:f6:d0:19:42:3c:55:2a:42:63:61:c1:f2:5c:d9:75:77:3d:
ef:a6:ed:28:d7:22:f4:3b:ab:ed:5a:35:b4:58:5f:1d:2b:cb:
c5:7b:8a:51:73:67:75:38:80:0c:e5:d3:4d:d4:ee:70:d7:80:
80:d6:7b:ad:dc:2e:62:ec:e9:0d:05:18:09:c9:01:5f:69:c4:
7f:ff:fe:1a:b9:bc:65:b6:87:e4:54:c5:35:d3:b6:a7:9f:6c:
e3:3f:7b:3f:fe:92:e1:5f:8c:4c:d8:e7:a4:fc:a7:a8:0e:f0:
d4:c5:a0:35:94:5c:a3:ab:df:f9:01:c6:fd:e6:6e:c8:af:80:
8d:07:fa:95:93:4d:7f:4b:39:fc:f8:86:d4:07:36:08:c5:b0:
08:f8:06:88:da:34:4d:5a:b1:87:60:c8:0c:7e:57:f4:8b:ab:
67:da:4c:88:57:88:ff:25:5e:29:3e:2d:ab:ae:d6:3c:47:f4:
5d:6b:fa:82:08:a6:72:b3:fd:47:3d:3c:34:08:d9:05:58:d3:
ca:77:74:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:06:54 2025 by rpki-client