Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.mft
File: npzXqbifTgVovUoLbCwRzRfn8OE.mft (raw, json)
Hash identifier: Mr3gjRsqSV+TH42PlO1BivNcEubuFebTfsw30QHGwlE=
Subject key identifier: 02:8C:70:6F:A2:78:36:6C:12:53:E6:C6:3C:F7:6F:9A:6F:1B:F0:4B
Authority key identifier: 9E:9C:D7:A9:B8:9F:4E:05:68:BD:4A:0B:6C:2C:11:CD:17:E7:F0:E1
Certificate issuer: /CN=9e9cd7a9b89f4e0568bd4a0b6c2c11cd17e7f0e1
Certificate serial: 01951134EF54F168BF7EE8B907BBDB3841D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npzXqbifTgVovUoLbCwRzRfn8OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.mft
Manifest number: 0208
Signing time: Mon 17 Feb 2025 00:00:36 +0000
Manifest this update: Mon 17 Feb 2025 00:00:36 +0000
Manifest next update: Tue 18 Feb 2025 00:00:36 +0000
Files and hashes: 1: npzXqbifTgVovUoLbCwRzRfn8OE.crl (hash: zSucMjVhl3kvM40C1BLCQdYdqQUlB52kAC6Xrla3tVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.mft
rsync://rpki.ripe.net/repository/DEFAULT/npzXqbifTgVovUoLbCwRzRfn8OE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:ef:54:f1:68:bf:7e:e8:b9:07:bb:db:38:41:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e9cd7a9b89f4e0568bd4a0b6c2c11cd17e7f0e1
Validity
Not Before: Feb 17 00:00:36 2025 GMT
Not After : Feb 18 00:00:36 2025 GMT
Subject: CN=028c706fa278366c1253e6c63cf76f9a6f1bf04b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2b:c9:c2:7f:9a:2a:49:5e:e1:0e:03:aa:5d:
d8:59:66:1f:c6:8f:51:60:d4:51:43:6b:96:9e:f7:
bd:ed:12:40:ed:c2:8c:5e:ba:d8:92:d2:8f:ac:de:
ab:3f:03:8e:47:95:a4:ba:95:b9:7e:47:c7:1e:98:
4f:e1:70:35:80:16:41:bb:0c:b9:ba:95:c4:b5:92:
c6:1e:9c:67:68:a2:1b:94:a7:96:39:30:6a:64:c1:
af:63:44:6d:52:c6:26:63:9a:8e:cc:cc:97:a4:39:
21:aa:c8:f4:15:9a:ae:1a:6e:a9:96:18:65:8a:c1:
df:1b:b6:ae:0d:f5:8c:79:9d:33:46:da:b6:a6:5f:
f3:be:b4:4a:fc:ce:13:69:69:24:0a:6a:94:5e:74:
b6:99:21:5f:ba:db:62:9b:b9:b9:c0:67:3f:a8:39:
ad:5c:be:15:f6:7a:18:fd:20:52:a1:82:0b:60:25:
fa:27:fd:76:21:fb:fe:d7:a8:d1:9e:84:29:cc:4a:
49:61:aa:46:2a:b4:8d:5e:4d:c6:32:82:b3:39:50:
2c:d4:e9:3e:d4:df:d9:c0:0a:f1:4c:df:e3:f4:e9:
31:b7:69:92:f3:cf:59:32:87:65:f3:1e:2f:8f:ea:
72:9f:0b:a0:c6:7d:c4:94:fd:b9:47:8b:59:3d:8c:
a5:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:8C:70:6F:A2:78:36:6C:12:53:E6:C6:3C:F7:6F:9A:6F:1B:F0:4B
X509v3 Authority Key Identifier:
keyid:9E:9C:D7:A9:B8:9F:4E:05:68:BD:4A:0B:6C:2C:11:CD:17:E7:F0:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npzXqbifTgVovUoLbCwRzRfn8OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:cd:33:fc:db:07:71:99:ca:a5:71:c4:4c:50:ff:61:09:7a:
d0:cf:17:06:d0:7c:ea:de:8e:99:36:50:01:ea:33:26:f1:9e:
a7:69:46:03:68:73:6f:d7:a7:28:3d:77:3b:be:30:6b:44:25:
c9:03:5a:48:4c:35:c3:21:00:a9:a1:28:6d:4f:f6:cd:f2:c9:
a1:df:cc:7c:8c:6c:02:ba:42:22:cd:c9:87:66:a5:66:c5:5d:
90:1b:a4:6c:48:fb:76:47:f6:e9:be:0f:65:de:2e:0d:b8:36:
bd:5c:18:13:78:c4:15:7a:f4:c2:4e:2a:72:f9:fd:67:c5:67:
ce:b2:5b:d4:85:05:43:dc:48:dd:4b:6c:e7:0e:24:b1:6d:bd:
40:17:3a:8b:61:18:c0:93:e9:67:5a:69:2f:0f:a4:b5:22:26:
95:3b:da:83:66:35:0f:8f:01:5e:92:dd:fb:7a:1a:aa:36:43:
5f:f9:31:c3:35:87:76:49:9a:0b:d0:2b:5b:11:49:af:38:8d:
17:5e:a0:a6:97:95:df:9d:6d:bc:e0:54:40:75:de:6d:d3:9a:
a0:9e:60:4e:b5:44:55:6b:a6:3d:8c:04:a2:7f:17:43:04:a7:
1c:4a:65:8a:fc:0e:30:61:8f:ab:eb:17:05:71:76:80:1f:a6:
54:e3:63:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:48 2025 by rpki-client