Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft
File: NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft (raw, json)
Hash identifier: 00ju5Q16AWte3oyC2bOCI0mSMbqss9bDdzfoJlALZT8=
Subject key identifier: 79:63:66:55:7C:EA:16:7B:3F:93:66:A7:7E:E1:B2:90:98:58:7F:8A
Authority key identifier: 35:A5:55:E1:46:BE:4A:E5:F7:CC:FE:5A:3C:12:D3:F2:A2:54:3B:05
Certificate issuer: /CN=35a555e146be4ae5f7ccfe5a3c12d3f2a2543b05
Certificate serial: 01965492CD215D2B7CDF1255C80F6530B120
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft
Manifest number: 08AA
Signing time: Sun 20 Apr 2025 19:00:28 +0000
Manifest this update: Sun 20 Apr 2025 19:00:28 +0000
Manifest next update: Mon 21 Apr 2025 19:00:28 +0000
Files and hashes: 1: NaVV4Ua-SuX3zP5aPBLT8qJUOwU.crl (hash: B9gvVNRQDmfziC1zdjFF0G78liYCiaIJbatvuoJTeZw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:92:cd:21:5d:2b:7c:df:12:55:c8:0f:65:30:b1:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35a555e146be4ae5f7ccfe5a3c12d3f2a2543b05
Validity
Not Before: Apr 20 19:00:28 2025 GMT
Not After : Apr 21 19:00:28 2025 GMT
Subject: CN=796366557cea167b3f9366a77ee1b29098587f8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:05:32:bb:1e:1a:50:e3:65:a7:6a:fe:78:23:
75:d4:0c:39:8e:f2:23:5e:93:3d:6a:3a:a6:13:e2:
d8:fe:58:15:6b:e9:d9:f8:55:a0:16:18:9b:0b:54:
b9:29:d0:5e:61:2c:c2:62:b1:d4:16:4d:70:7c:c8:
7b:cb:6f:67:2d:40:7f:f9:79:3f:7b:ae:3f:71:c0:
a0:af:62:13:73:56:a8:92:7b:ac:54:1b:4c:9c:80:
c6:59:d4:90:72:f4:59:7f:18:b8:1d:e4:11:40:87:
4d:31:b8:53:75:11:13:47:6a:18:db:7c:a9:c2:d6:
c5:d5:79:fc:93:c3:5b:33:ed:27:e0:51:48:0d:99:
47:c3:b2:27:ba:aa:d1:f5:e8:18:19:e3:7f:10:b6:
03:ae:46:5d:1b:bf:07:c7:b9:fd:1d:8c:8f:ef:dc:
75:77:72:bf:ff:26:37:27:32:91:fb:01:f9:1f:a1:
e5:3a:4f:d0:7d:b5:1c:b2:4f:33:58:9a:87:36:50:
89:de:cc:27:a2:7b:b7:78:17:e1:f2:f9:78:51:9b:
e4:be:59:59:0e:46:24:ae:80:8d:39:ff:d3:e7:ab:
c2:4a:63:d8:7c:16:d6:2c:b2:eb:5d:db:19:e7:11:
c1:4f:d7:38:87:ee:fa:fe:8f:4b:99:26:fd:83:23:
cb:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:63:66:55:7C:EA:16:7B:3F:93:66:A7:7E:E1:B2:90:98:58:7F:8A
X509v3 Authority Key Identifier:
keyid:35:A5:55:E1:46:BE:4A:E5:F7:CC:FE:5A:3C:12:D3:F2:A2:54:3B:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:ec:3a:36:c5:da:16:be:24:f8:1b:a3:3c:56:fb:09:c1:c5:
82:46:70:27:c9:69:a6:1b:d9:5b:31:96:63:08:ce:49:79:3e:
87:bb:50:7d:46:bd:12:1b:4a:83:2f:fa:e3:ee:d2:74:b7:bc:
53:57:6c:67:87:8d:bc:0d:07:82:01:6e:f4:96:d0:1e:15:0c:
a3:bf:b4:37:d8:c0:56:22:ea:f4:23:6d:91:c1:11:60:e2:62:
f7:e5:3f:de:51:cd:cf:c2:cd:9f:c0:cd:25:10:ee:0c:e4:9d:
9e:54:59:c4:b8:20:54:dd:3d:fa:84:d9:89:f4:01:47:e3:9f:
c2:72:7f:16:3b:08:ab:d3:36:52:6b:c3:94:b6:2a:34:06:4c:
e4:e0:73:cd:26:5f:de:f0:7d:a7:d0:c5:a1:f4:26:7e:93:b9:
83:62:93:5c:35:e9:67:a1:0a:86:f2:50:e3:3a:ec:48:29:50:
bf:68:7b:63:37:22:74:a5:75:8b:d0:97:94:16:ef:5d:4d:4f:
a7:d4:9d:67:87:b0:7c:dc:24:09:69:83:65:76:65:76:3e:69:
1d:8b:fa:80:69:3b:5c:f6:d1:f6:58:55:42:b2:1b:09:4f:53:
c1:8c:1f:fe:4b:8d:11:9a:43:d6:93:7c:28:35:16:30:3a:68:
3e:a3:50:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:29:18 2025 by rpki-client