Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
File: NPwYIZBVFuYYMg6eRxoTsqqslv8.mft (raw, json)
Hash identifier: NnhuMEJeurMUTMbwlmmwLpmBb8PYDpfC63J44xBTKug=
Subject key identifier: EA:E0:AB:1F:67:03:B1:8E:5C:51:39:19:EA:71:4A:EC:63:3B:E0:57
Authority key identifier: 34:FC:18:21:90:55:16:E6:18:32:0E:9E:47:1A:13:B2:AA:AC:96:FF
Certificate issuer: /CN=34fc1821905516e618320e9e471a13b2aaac96ff
Certificate serial: 019653B6F3A80E59AE308377B91C2C407876
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NPwYIZBVFuYYMg6eRxoTsqqslv8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
Manifest number: 14FC
Signing time: Sun 20 Apr 2025 15:00:20 +0000
Manifest this update: Sun 20 Apr 2025 15:00:20 +0000
Manifest next update: Mon 21 Apr 2025 15:00:20 +0000
Files and hashes: 1: NPwYIZBVFuYYMg6eRxoTsqqslv8.crl (hash: qjHYQFRocGJd+COpK3w0KqvXLTCIypGOubg2TBTeG/A=)
2: rYKTx0nL3KpouO_aEG54Y81fax4.roa (hash: U8k6Z6wFvQxh2jmlJpmKkiKIDJ2daF7abfgpCSFD+Kw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NPwYIZBVFuYYMg6eRxoTsqqslv8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 15:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:b6:f3:a8:0e:59:ae:30:83:77:b9:1c:2c:40:78:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34fc1821905516e618320e9e471a13b2aaac96ff
Validity
Not Before: Apr 20 15:00:20 2025 GMT
Not After : Apr 21 15:00:20 2025 GMT
Subject: CN=eae0ab1f6703b18e5c513919ea714aec633be057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fc:de:ca:a5:5d:4b:5a:f0:08:d8:fd:14:f3:
b3:e1:81:01:94:e7:6b:38:0f:88:a2:db:6d:50:da:
ed:42:0b:32:9e:38:3b:15:76:d1:b4:ba:45:1e:28:
9a:93:fe:c5:db:a4:8d:7e:59:8b:f9:ba:89:41:b4:
16:43:ec:b1:ae:b3:fc:51:45:8d:01:df:e8:00:83:
ff:bf:9b:d6:ae:a1:96:fe:04:7f:5e:ff:c1:b7:d9:
3b:dd:62:c7:8c:32:73:b7:e2:37:52:1c:eb:cb:da:
20:2f:f3:91:61:fa:72:27:57:5a:9d:97:b7:0f:de:
08:69:63:88:a2:34:64:e0:c8:a1:a6:c5:d2:6f:c9:
72:be:8c:8a:23:8d:2e:3b:88:de:31:29:4d:0c:77:
d2:11:bb:d2:f0:5d:1d:53:b7:0c:c9:f7:05:88:59:
10:1b:59:db:6b:11:25:0b:57:e4:dc:34:42:7c:cc:
31:12:e3:0b:2d:21:56:af:07:94:f8:22:57:e8:30:
92:a6:6c:cb:4a:28:c9:a7:53:05:e2:aa:6f:0d:39:
c4:97:67:d6:b3:d9:7f:b7:ba:58:6e:3e:b4:63:10:
e4:46:c0:1c:b7:81:92:2e:e0:4a:ae:47:ee:22:af:
17:af:4e:0f:8d:50:17:6d:47:d9:2c:3d:a6:ab:4a:
07:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E0:AB:1F:67:03:B1:8E:5C:51:39:19:EA:71:4A:EC:63:3B:E0:57
X509v3 Authority Key Identifier:
keyid:34:FC:18:21:90:55:16:E6:18:32:0E:9E:47:1A:13:B2:AA:AC:96:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NPwYIZBVFuYYMg6eRxoTsqqslv8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:dd:14:5b:9c:b5:86:55:bc:15:61:a1:f9:35:63:7e:ed:22:
84:2f:69:2d:e2:2e:0e:a8:37:66:3b:ba:8c:9c:6d:fa:81:5c:
26:4a:30:9b:2c:32:2f:62:f7:a3:2c:6f:8d:b2:5a:85:56:27:
84:3b:13:56:d6:bb:d2:52:00:26:97:68:d3:9b:0b:2b:8b:65:
e6:9f:af:ac:40:e3:20:9d:07:7b:6b:eb:71:d1:96:c4:ab:3a:
1c:8d:7f:ad:94:ff:ce:89:c5:01:21:bb:e9:ba:aa:d9:99:c8:
48:5e:c5:22:6d:eb:77:bf:17:7e:e7:ae:53:9b:72:4b:ac:ed:
52:eb:bc:5c:35:48:e5:cd:a0:5e:19:b9:35:d2:5c:15:5a:80:
f7:7f:b7:e0:61:75:6b:60:bd:11:67:84:1d:82:9f:4c:4f:6b:
d9:ee:04:83:43:ca:da:cc:cd:18:25:33:36:c5:c6:31:fc:f8:
ef:46:fd:0a:e3:0a:5d:e4:95:31:b9:2b:11:c3:b8:49:a8:82:
93:8c:8e:7a:e4:95:50:4c:a9:d4:5e:e5:56:c0:39:df:db:30:
c9:31:af:d2:4c:7e:0d:71:36:26:44:e9:1f:89:bb:5a:da:a5:
47:de:18:84:95:a8:67:3c:96:be:ee:c2:f9:15:63:8e:2e:8b:
7f:dd:fe:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 21:38:59 2025 by rpki-client