Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft
File: NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft (raw, json)
Hash identifier: yJ3oJvA2xt7ydJIKmoDRjsLFFmCKXvHx+EnSE1maH8Y=
Subject key identifier: 02:31:6F:7C:54:77:9D:45:AC:06:9B:04:2D:A5:98:71:07:C0:ED:CC
Authority key identifier: 34:DD:CB:C8:F6:1B:26:0F:D3:F3:E7:8B:6B:86:87:7C:B9:5F:D8:3E
Certificate issuer: /CN=34ddcbc8f61b260fd3f3e78b6b86877cb95fd83e
Certificate serial: 019510FE1A87F9CB8BB8CDAA43D6A232EF30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NN3LyPYbJg_T8-eLa4aHfLlf2D4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft
Manifest number: 1036
Signing time: Sun 16 Feb 2025 23:00:43 +0000
Manifest this update: Sun 16 Feb 2025 23:00:43 +0000
Manifest next update: Mon 17 Feb 2025 23:00:43 +0000
Files and hashes: 1: NN3LyPYbJg_T8-eLa4aHfLlf2D4.crl (hash: kU6umO5PmKeW6ArwmhBvagYmDMdAWpU3bpnUvgMCOpo=)
2: aPFNqKZrV_epMPFvc-8vIsgJFgg.roa (hash: 83I0vKl1m5ZTxLcVY4fj2guNAuZT35HFxx/AGVAfz8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NN3LyPYbJg_T8-eLa4aHfLlf2D4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fe:1a:87:f9:cb:8b:b8:cd:aa:43:d6:a2:32:ef:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34ddcbc8f61b260fd3f3e78b6b86877cb95fd83e
Validity
Not Before: Feb 16 23:00:43 2025 GMT
Not After : Feb 17 23:00:43 2025 GMT
Subject: CN=02316f7c54779d45ac069b042da5987107c0edcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c8:0b:0c:9d:97:e6:74:70:44:1b:70:51:bc:
28:1a:17:48:21:7f:a5:29:aa:66:7e:eb:fe:c9:84:
97:32:b9:b7:7c:cb:85:4f:a0:d6:39:5e:58:e8:b3:
54:23:4a:89:7f:db:d1:52:c9:da:7d:aa:96:0b:42:
3c:e2:c8:2d:e0:d1:98:fa:0e:b2:99:89:98:9d:3d:
51:8f:44:e4:3a:3d:65:ea:11:59:12:d3:f5:bf:61:
4d:67:03:8b:e1:20:c7:11:d9:20:22:d4:ee:c2:55:
05:38:06:98:01:f5:5c:9c:13:a8:43:0f:07:65:8b:
e2:ea:85:1d:78:25:22:5d:26:bd:34:a1:43:64:04:
2e:8a:a0:9e:08:85:c0:00:7b:b4:04:54:0c:86:65:
fb:32:4f:db:23:b9:a8:e0:61:9e:4c:09:d5:d7:7c:
cc:e3:d2:11:43:63:96:30:53:c4:33:37:2f:44:c5:
3e:4e:d7:c0:27:3d:2f:3a:9b:45:ac:1b:db:ae:9c:
a3:02:ef:ed:f3:1b:03:1e:6c:b7:1f:0f:04:f7:19:
c1:f0:3c:a7:54:aa:65:d6:dd:2b:3b:af:d8:cd:e6:
02:f4:7d:ae:eb:f2:6d:1a:d5:12:0e:bb:b5:74:28:
68:be:e3:6c:70:e8:9c:f7:01:8f:7e:03:bd:9d:b3:
50:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:31:6F:7C:54:77:9D:45:AC:06:9B:04:2D:A5:98:71:07:C0:ED:CC
X509v3 Authority Key Identifier:
keyid:34:DD:CB:C8:F6:1B:26:0F:D3:F3:E7:8B:6B:86:87:7C:B9:5F:D8:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NN3LyPYbJg_T8-eLa4aHfLlf2D4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:0f:dd:d1:b0:eb:cf:c2:b3:26:d6:03:a6:ae:ce:0f:00:67:
cf:fd:74:e4:b6:2e:ff:5c:a5:80:ec:c8:83:69:8c:1e:67:9e:
9c:93:48:aa:17:4b:65:25:49:c4:cd:2b:c6:06:ce:c2:39:15:
0b:01:a7:59:e5:52:93:c0:2a:28:8e:6c:d4:a9:4b:b7:5d:2f:
bb:2f:5f:76:f0:c5:b5:98:6f:39:88:bc:ca:94:5f:f1:ae:9f:
11:e1:dd:27:49:2f:02:30:fe:06:c6:5c:a8:4c:8b:c4:4f:0c:
17:31:6c:ef:1c:0f:5d:83:61:2e:15:39:21:fc:29:f6:47:c4:
31:9a:5c:c3:48:dd:2d:38:60:f7:48:7b:f8:fe:98:4c:d9:00:
79:6a:49:b5:75:87:db:86:c1:81:51:6c:29:89:3d:cf:2f:69:
3d:48:78:f6:de:57:d4:fa:03:30:21:bd:92:4b:27:27:5a:ca:
a1:dd:f6:61:e5:1e:94:95:08:3f:fe:b2:4d:1b:4f:d8:c1:c6:
fc:9a:59:55:28:a7:cd:2d:2d:a8:db:04:e2:60:84:16:55:0c:
d0:5d:7e:8e:b3:51:a8:63:83:d2:da:a0:bb:d3:56:ee:04:d0:
06:00:02:fb:57:f5:31:d1:58:c2:6e:1e:6c:b0:40:28:f4:16:
eb:8f:a7:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:23 2025 by rpki-client