Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
File: NQtAztNuMfkF4abo4DxiHp-_yyk.mft (raw, json)
Hash identifier: 8sWCGOHMyypv14euWr7lhUD3LwpDZbAxU5C24RvOubc=
Subject key identifier: 3A:80:23:75:2D:0B:0B:4D:55:8C:65:9C:58:BE:20:EF:3D:73:98:62
Authority key identifier: 35:0B:40:CE:D3:6E:31:F9:05:E1:A6:E8:E0:3C:62:1E:9F:BF:CB:29
Certificate issuer: /CN=350b40ced36e31f905e1a6e8e03c621e9fbfcb29
Certificate serial: 019510C6B7BB5AB207769241A99E0E419D6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
Manifest number: 1193
Signing time: Sun 16 Feb 2025 22:00:13 +0000
Manifest this update: Sun 16 Feb 2025 22:00:13 +0000
Manifest next update: Mon 17 Feb 2025 22:00:13 +0000
Files and hashes: 1: NQtAztNuMfkF4abo4DxiHp-_yyk.crl (hash: rhhbJRhyZUL9QDoEzr5V0XCCrVN1yFawXDq+8E0FJ4w=)
2: u7-gL9wSp2bGW7DIF24NVuhmOKc.roa (hash: tP75Wdne3vqUbGN0hrtXpkGNXdZlPHZwjnI3xiXFlak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c6:b7:bb:5a:b2:07:76:92:41:a9:9e:0e:41:9d:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=350b40ced36e31f905e1a6e8e03c621e9fbfcb29
Validity
Not Before: Feb 16 22:00:13 2025 GMT
Not After : Feb 17 22:00:13 2025 GMT
Subject: CN=3a8023752d0b0b4d558c659c58be20ef3d739862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:42:70:a1:61:68:55:96:7f:3a:b4:25:4c:a4:
5b:22:b0:27:97:46:17:73:bd:8d:f9:3b:7b:d0:76:
f6:f0:13:50:20:d0:d5:b8:3c:fc:a4:d7:52:62:d3:
1d:86:7d:93:bd:e2:56:ac:f6:bb:77:fa:7b:db:b5:
a5:29:93:f4:79:20:6b:5e:eb:6c:0b:db:13:81:b7:
65:ca:b9:2b:0e:a5:77:5f:9e:7c:39:93:35:6a:23:
5b:3a:d4:ef:7d:04:ad:28:81:5c:2f:81:27:fa:72:
ec:7b:e9:2c:87:2e:a1:c4:a4:6c:1a:fc:b2:55:c6:
5b:33:2a:d9:c2:5d:75:98:16:f5:66:9a:5e:15:04:
58:43:af:d7:b9:ee:13:ad:3d:dd:3a:61:4f:65:85:
36:4f:ca:3f:0b:80:f8:c1:aa:05:14:da:c2:53:4e:
c4:83:c6:9d:37:93:80:13:4d:51:4c:28:89:25:48:
e6:a8:82:fb:f8:e1:da:7b:b3:54:1a:4d:30:32:c1:
98:7b:a9:d7:a5:93:21:c5:46:de:af:77:57:17:9f:
11:89:41:58:95:0b:fd:ef:01:0b:67:46:5b:5b:3b:
f3:25:73:36:c2:fc:b2:75:62:21:ec:8e:49:c8:cf:
8d:5a:cb:ef:a9:e3:0f:11:34:e5:6f:0b:ca:6f:69:
b9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:80:23:75:2D:0B:0B:4D:55:8C:65:9C:58:BE:20:EF:3D:73:98:62
X509v3 Authority Key Identifier:
keyid:35:0B:40:CE:D3:6E:31:F9:05:E1:A6:E8:E0:3C:62:1E:9F:BF:CB:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:9d:b5:4a:af:79:60:62:fd:cb:46:53:35:99:1a:b6:5c:a3:
fa:83:dd:f9:45:d5:f1:ef:93:c7:ef:f3:83:fc:16:ac:00:9d:
d8:b3:39:ec:55:8a:de:eb:60:f0:f4:4b:28:fa:62:73:e0:96:
cd:5a:ec:60:fa:89:e7:bf:13:a2:34:4a:18:43:c0:e3:95:ce:
9d:d2:60:79:05:6a:07:75:82:50:f1:7b:30:76:2d:f4:b7:60:
42:64:76:56:d3:9e:b9:76:ba:24:7c:a6:cc:52:75:ef:bd:ac:
d8:2d:0a:40:e4:b1:e6:7b:97:84:ed:5a:88:c3:ec:fd:f0:9e:
5b:49:b8:c2:88:fe:de:5e:c3:ae:86:ba:95:0a:5f:77:65:80:
26:f0:9e:35:f3:9b:81:b4:30:06:37:f0:8c:22:e6:0f:fc:e2:
bd:31:81:a5:a7:d6:64:21:bf:8b:85:ae:3c:e1:ae:86:b9:0c:
57:86:73:c9:bd:cb:0e:10:62:d8:61:8f:0d:f7:82:9a:45:22:
e3:e4:55:9c:c8:f8:a0:db:2a:dd:e1:72:f7:6d:20:f3:27:54:
74:7a:2c:d6:9d:96:6b:b5:0d:e1:ea:0a:31:6d:3d:68:23:11:
36:92:2d:a2:7b:18:5d:38:ad:ba:be:7a:06:26:69:d0:b8:8e:
21:4a:fc:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:20 2025 by rpki-client