Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
File: Nia55ERl8L1xPAoeBQED05EdzWc.mft (raw, json)
Hash identifier: IHSfXNloJ3kVPtVEDh9EGddDYaPw+9n63e0FfmNLeFI=
Subject key identifier: 5F:FD:9B:6E:B5:45:B0:E8:FE:0C:39:9D:BB:53:40:88:D3:9B:FF:B6
Authority key identifier: 36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
Certificate issuer: /CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Certificate serial: 01965914E4A2D5BF29FDC6F89A3599F0B3CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
Manifest number: 0AE5
Signing time: Mon 21 Apr 2025 16:01:03 +0000
Manifest this update: Mon 21 Apr 2025 16:01:03 +0000
Manifest next update: Tue 22 Apr 2025 16:01:03 +0000
Files and hashes: 1: Nia55ERl8L1xPAoeBQED05EdzWc.crl (hash: pJl2YQfdds79EfoLuuyOpvhtnQjJ1dp2Yal3LRT/LAQ=)
2: ijM-M3pW5i9OPaVJ9z7pdR0nkfo.roa (hash: BaCHQlpNW/709AUvEnmAV++DQu/RFZCpGAAySqc5kGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:14:e4:a2:d5:bf:29:fd:c6:f8:9a:35:99:f0:b3:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Validity
Not Before: Apr 21 16:01:03 2025 GMT
Not After : Apr 22 16:01:03 2025 GMT
Subject: CN=5ffd9b6eb545b0e8fe0c399dbb534088d39bffb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4c:bd:5d:b2:82:6c:b8:0a:6a:bc:6e:87:2e:
0b:cd:96:4b:aa:69:47:cb:bc:d8:32:01:e4:c4:75:
6e:36:83:22:36:6e:ee:c4:b6:8e:17:29:b0:e8:2b:
aa:7d:df:e8:13:97:0f:5a:49:38:a1:3f:e8:d5:66:
be:64:47:0f:29:71:51:7e:d4:4d:b0:d8:78:35:c0:
63:b8:16:61:5e:65:ec:f8:08:ad:72:d2:eb:a6:87:
08:24:51:ea:43:3d:6c:cb:4f:73:83:78:df:74:08:
dd:a5:1e:71:49:23:55:06:8a:4c:cb:c1:68:30:a2:
25:40:98:27:f5:e0:c5:5d:6f:00:37:0e:b8:a2:18:
ad:79:ba:0d:0d:86:d6:28:0c:c9:50:c4:d5:5f:89:
af:ae:b1:9b:a4:8d:60:b2:c3:2e:e0:e6:b5:c0:69:
8e:59:b3:f0:fc:70:f1:c0:eb:19:18:93:a5:58:3a:
22:33:92:9c:c3:ab:71:4b:d4:64:b9:36:fe:c1:d9:
02:37:70:41:57:b7:f5:2b:38:02:ac:34:31:a1:e4:
e5:bb:a0:39:72:bd:4c:4c:f3:c2:3c:7f:5c:90:d4:
5e:dc:76:35:6b:0e:96:5f:09:b1:cb:9e:3e:d4:e3:
9d:72:59:65:77:77:31:69:ff:d9:d3:d2:f5:89:98:
1d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:FD:9B:6E:B5:45:B0:E8:FE:0C:39:9D:BB:53:40:88:D3:9B:FF:B6
X509v3 Authority Key Identifier:
keyid:36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:14:e6:f1:41:0b:ed:d7:44:fc:97:64:f0:37:86:4d:da:01:
26:b2:f7:3e:0c:d8:9d:e7:5a:42:fc:bb:33:fa:6f:64:b7:ed:
42:1f:d8:86:de:2d:6c:13:63:dd:71:2d:97:c1:dd:95:07:b4:
ea:be:45:f0:42:9c:b8:b3:69:44:0f:9a:4c:e5:6b:f8:75:38:
41:4e:2c:e7:c3:aa:04:3c:59:06:ab:2c:45:24:78:d3:82:3b:
80:07:74:30:0f:88:7f:4f:a8:f6:93:23:84:07:8f:0d:f2:be:
a4:bd:4e:bc:f8:dc:08:7c:97:93:6c:41:38:e3:fb:08:da:06:
b3:1a:7b:02:74:30:cf:a0:de:3e:c6:ec:13:b4:d6:b9:ee:be:
53:b9:f2:1f:5e:87:d4:60:a3:1e:c9:13:b7:bf:51:54:e8:12:
38:b0:12:45:37:4a:6f:99:b5:f6:ca:47:22:81:6f:05:0e:70:
33:d9:69:d8:34:cf:c4:ad:f2:93:39:d7:56:35:6d:d9:9f:24:
54:9c:e1:95:2b:fc:37:d5:ef:7f:83:74:e8:a0:a1:03:58:6a:
9b:c8:5d:4e:0b:35:1d:b5:58:7c:ec:3b:b1:68:3c:cd:93:d4:
f5:f0:54:91:19:d3:2b:a4:ab:5d:6e:a8:8d:2d:b2:17:c7:ec:
a3:62:ec:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:13:04 2025 by rpki-client