Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft
File: nzcg6XD6oOB_UKY4nnrlOvpDnas.mft (raw, json)
Hash identifier: QXX/lii4PYDkb2iPxvbIoLQNSpdUwPktF4YDXO3a7y0=
Subject key identifier: 00:7C:B7:55:E0:66:2B:7D:37:76:7C:34:E5:C4:E5:60:94:34:A3:B6
Authority key identifier: 9F:37:20:E9:70:FA:A0:E0:7F:50:A6:38:9E:7A:E5:3A:FA:43:9D:AB
Certificate issuer: /CN=9f3720e970faa0e07f50a6389e7ae53afa439dab
Certificate serial: 019651C8ED75EE2F82C75AD6225EB1E4506C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft
Manifest number: 1501
Signing time: Sun 20 Apr 2025 06:00:44 +0000
Manifest this update: Sun 20 Apr 2025 06:00:44 +0000
Manifest next update: Mon 21 Apr 2025 06:00:44 +0000
Files and hashes: 1: Etd-zR5nQJ_3oZWsvX_yh9qZs04.roa (hash: Va9UidVPtYR8CQHobQQrWe+S/Z2ABdjjbhF7ggqh2M0=)
2: nzcg6XD6oOB_UKY4nnrlOvpDnas.crl (hash: NBqjKv18f5OIaB0C75a4FHakf9D7S+VIiDHV3HHTcxk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft
rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 06:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:c8:ed:75:ee:2f:82:c7:5a:d6:22:5e:b1:e4:50:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f3720e970faa0e07f50a6389e7ae53afa439dab
Validity
Not Before: Apr 20 06:00:44 2025 GMT
Not After : Apr 21 06:00:44 2025 GMT
Subject: CN=007cb755e0662b7d37767c34e5c4e5609434a3b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8b:ed:5f:0a:ce:c1:95:1d:c4:13:d6:02:5c:
fe:9e:61:fe:a9:2a:74:53:1e:7e:cb:52:2a:93:0b:
9a:f5:5c:d4:af:24:dd:1f:7c:7d:59:4f:6b:5a:53:
66:c5:58:2b:a1:f8:05:c6:19:c5:ad:32:be:43:c1:
74:2f:e9:88:11:e3:80:7b:78:df:d5:51:bc:09:0c:
0c:5d:fe:38:c8:c9:c5:ee:19:c2:8a:5f:11:79:e0:
3e:86:d8:22:0f:f2:22:5d:c1:02:95:7a:e7:0f:65:
69:a0:92:d0:bd:63:bf:fc:a2:6e:46:92:9d:90:67:
45:22:ea:de:68:f9:21:42:4a:3d:ad:bc:c5:6d:47:
26:24:54:75:81:38:83:1a:db:d4:c3:90:69:1c:22:
00:2a:16:86:80:00:19:b4:ec:11:7a:c8:c6:2d:ec:
fd:72:d3:94:ee:a6:72:31:aa:a1:08:4c:4e:93:06:
a4:fd:d2:68:d4:ca:9c:45:c7:31:f2:5a:be:e0:49:
9d:c3:85:ef:63:61:78:a0:74:98:a5:2b:68:62:5f:
29:50:df:e3:a9:f8:15:c8:c6:60:11:17:2a:a6:2f:
4c:82:2a:5d:04:37:89:73:a8:c5:cf:9e:40:98:81:
4f:77:1a:8b:71:f2:56:42:e0:0b:5d:19:69:64:49:
e3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:7C:B7:55:E0:66:2B:7D:37:76:7C:34:E5:C4:E5:60:94:34:A3:B6
X509v3 Authority Key Identifier:
keyid:9F:37:20:E9:70:FA:A0:E0:7F:50:A6:38:9E:7A:E5:3A:FA:43:9D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:1f:5b:8c:94:fa:d0:04:1f:56:5f:80:b5:d5:8e:c7:0e:70:
21:2f:a8:7a:c4:35:f8:42:18:51:c1:40:ce:f5:3a:df:13:50:
76:a7:68:73:30:24:0d:d1:1c:08:92:12:b4:f6:b0:b3:6f:cb:
c3:6a:35:b5:14:e0:ea:fa:1c:52:56:00:ca:6f:8b:48:5a:a8:
e7:83:05:1b:7b:a5:de:8c:4a:34:9a:7d:34:6d:7a:be:be:12:
86:f6:5c:2a:43:93:8c:56:14:a0:a2:47:a1:9f:0b:f7:a4:1c:
92:72:72:93:1e:bf:07:bc:f3:7c:10:ac:f3:3b:fc:49:23:d4:
f6:85:33:7c:d4:50:be:89:d3:ac:ce:cf:f7:74:6d:60:f2:75:
b2:5e:52:c2:f0:b0:0f:a9:27:5b:5c:3b:9e:14:90:06:00:71:
a1:70:73:26:68:7d:95:5b:0a:3d:98:99:ce:82:a4:72:11:8d:
16:19:e3:81:a4:39:24:f4:d3:9c:a6:70:a8:11:10:66:97:09:
94:3f:10:56:c0:55:de:83:a0:82:f1:2d:a0:5d:50:76:3a:5d:
59:0f:96:a9:4a:ab:68:86:51:85:bf:88:47:91:c0:72:b7:28:
fb:34:c9:f0:9b:86:59:84:0d:e1:9a:ed:a4:24:2a:38:09:60:
ba:f4:ba:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 15:32:24 2025 by rpki-client