Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft
File: nHPZRT--37gMRUO7Up_DMMH4wc4.mft (raw, json)
Hash identifier: qTsDOw/r+QeGqSJi7QeVlH5Hz7zmhLDCVFhc/s7JYdw=
Subject key identifier: 5F:BE:BB:69:F2:16:CE:69:49:87:E4:55:2C:6B:03:20:98:AC:6E:82
Authority key identifier: 9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE
Certificate issuer: /CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce
Certificate serial: 01962181FA31F1191E92E3AF577CBF70D28D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft
Manifest number: 0A98
Signing time: Thu 10 Apr 2025 21:01:28 +0000
Manifest this update: Thu 10 Apr 2025 21:01:28 +0000
Manifest next update: Fri 11 Apr 2025 21:01:28 +0000
Files and hashes: 1: AMTfdcOhvN2UxA7mt3gv3KECuGg.roa (hash: k51GSY+oL6d3vSnVOqR7gGcER+6PBSvBsmHDXYmEq2c=)
2: IZ4_8o0uG1RVAax56_hcAW3WTtc.roa (hash: BLF9NvSAp12xGKGCWF6fmakXoIQEimqM8wkdCYNJdbY=)
3: OfxRKdN2bPZI0fvyGrpUm_OCPQs.roa (hash: lVQukuR8pvFzQlCkS5KRF6YO+By1WT+Hs0uHk5OATm0=)
4: ieAfCh_vwbBTbF3DGBJXQYMx9Pw.roa (hash: N095uXaZbk2Jvru/0oYsrQzeZ/eKCMXo6ETE3DefpcQ=)
5: j4cd6L8tYRDjLejdv94aClKAGXU.roa (hash: WlNinENED4PfFKrXHfbYinzDLlIPfYjUPCjvbvhk+i8=)
6: nHPZRT--37gMRUO7Up_DMMH4wc4.crl (hash: 2taHLAZqrWaFi/DB/spIpyJRoIH0cr1WSt9U4RBUYCQ=)
7: xe-87aH9X1grSznD-2-c4OZyYHo.roa (hash: S80ekAfHbqsZOpsBTbZwj0DAL1iEaOufRZ1+nQUXDqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 11 Apr 2025 21:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:21:81:fa:31:f1:19:1e:92:e3:af:57:7c:bf:70:d2:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce
Validity
Not Before: Apr 10 21:01:28 2025 GMT
Not After : Apr 11 21:01:28 2025 GMT
Subject: CN=5fbebb69f216ce694987e4552c6b032098ac6e82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:93:df:71:e9:3e:90:c5:14:79:36:13:03:72:
32:7a:85:62:6c:e8:69:43:f6:09:08:bc:34:d8:e2:
b9:46:66:c4:f0:d6:5a:47:0a:7b:05:cb:11:03:5d:
88:87:51:5b:a7:6a:dc:b4:16:55:a1:10:a1:fb:fb:
43:50:47:98:9f:0a:a4:94:0f:f6:04:86:31:08:bd:
15:cb:92:39:7a:e0:91:61:cf:80:e1:a3:48:79:fc:
2d:f7:9b:50:a1:95:06:f6:a3:b2:c8:b7:05:f1:13:
f3:7e:52:59:c1:5f:ff:fb:b0:1b:e4:7e:2f:2e:a6:
6d:78:6a:aa:ee:25:9d:1d:8a:fa:fc:fd:18:f0:26:
c3:10:0f:f0:73:a4:79:41:90:86:14:c4:a9:0d:0b:
68:53:88:af:18:91:bd:2b:b9:be:77:0f:e9:d7:d4:
80:af:e2:a6:43:7b:0f:48:4b:0a:16:7b:9e:24:92:
b1:f5:21:4a:ac:53:24:fd:88:ae:5b:f0:c9:51:75:
a9:b6:05:5c:f7:cf:14:f2:3a:ce:1a:55:24:a7:c2:
ba:25:08:74:3a:f4:84:01:70:16:d8:04:20:1a:4e:
8f:f1:7e:88:1e:53:c5:4b:7c:39:7b:a3:2a:bd:fb:
7c:61:28:66:f3:d3:b1:0e:7b:07:aa:56:c0:53:0a:
f7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:BE:BB:69:F2:16:CE:69:49:87:E4:55:2C:6B:03:20:98:AC:6E:82
X509v3 Authority Key Identifier:
keyid:9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:ab:05:85:62:5c:b1:81:ec:c6:40:ea:82:75:9d:00:b0:17:
01:8d:43:48:d5:1f:2f:7e:b8:c5:2f:e8:8a:a7:9a:35:46:62:
94:ff:5f:b3:9e:a8:f0:56:47:f9:27:41:c8:08:57:22:d8:de:
d8:60:7e:8c:b2:ba:8e:72:39:c1:11:f9:36:13:1d:84:82:10:
61:67:2d:86:23:86:d9:ae:b7:f9:16:21:f9:28:2d:cb:e2:2d:
93:7d:93:d0:f1:54:07:fc:16:f9:14:fa:81:7f:e4:f1:a2:5b:
a2:e3:09:30:2d:18:f3:90:fe:d2:b0:c7:31:fc:5e:63:c8:91:
5c:ba:bf:21:54:e8:ba:2c:8a:ee:d0:57:f5:54:db:54:48:7c:
af:aa:54:a9:3a:66:d9:52:fc:79:8e:30:ee:24:1b:86:9f:b4:
de:c0:81:29:15:53:e7:4b:ed:da:a8:dd:7f:83:a9:86:c3:dd:
5a:da:da:02:be:1f:aa:b4:01:05:55:56:84:39:e4:6e:66:a9:
2f:fb:31:7e:cb:86:7c:fa:28:f7:b3:b8:6a:cf:59:a6:b7:81:
64:ab:21:29:e4:d4:3a:d8:9b:f1:2a:39:08:4d:71:f5:c6:53:
eb:10:ef:66:60:0f:bb:f0:43:92:ed:e6:b2:6f:0b:92:54:b0:
96:e9:42:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 07:10:36 2025 by rpki-client