Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
File: nTHCM8vSZtsCYgud65DQjkFpLmc.mft (raw, json)
Hash identifier: DYiXABzDBbZWCAJorCMyEr8CaaWj8/fXTA4qNRq1QRw=
Subject key identifier: 43:B0:9E:68:C4:59:A9:1E:87:38:D2:F9:0F:89:9B:9A:15:E2:30:17
Authority key identifier: 9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
Certificate issuer: /CN=9d31c233cbd266db02620b9deb90d08e41692e67
Certificate serial: 0196154686708062239D1CEAF9AA6D228096
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
Manifest number: 0BBD
Signing time: Tue 08 Apr 2025 12:01:05 +0000
Manifest this update: Tue 08 Apr 2025 12:01:05 +0000
Manifest next update: Wed 09 Apr 2025 12:01:05 +0000
Files and hashes: 1: _rMAcV1Zh6HxKo_vwEpVhjFVwy8.roa (hash: r1imevw1h8qWVS0OoTwBJnDWSm49xN9+9T+LLaWUqWk=)
2: nTHCM8vSZtsCYgud65DQjkFpLmc.crl (hash: SeeEKBd3UPIrQ74p3gEMqA4RLBZ2WQ0Js6jXu6JKPqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 12:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:15:46:86:70:80:62:23:9d:1c:ea:f9:aa:6d:22:80:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d31c233cbd266db02620b9deb90d08e41692e67
Validity
Not Before: Apr 8 12:01:05 2025 GMT
Not After : Apr 9 12:01:05 2025 GMT
Subject: CN=43b09e68c459a91e8738d2f90f899b9a15e23017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c5:6b:e1:db:3e:7b:59:01:68:01:f6:d1:91:
0d:49:78:35:05:56:d2:4b:ee:00:74:23:a0:e4:68:
8f:97:50:a9:5f:2a:8a:93:91:bf:09:20:51:9d:ce:
b7:cc:f3:35:b4:6a:f6:15:53:e1:66:9f:47:cf:d7:
e4:74:b4:48:98:18:2e:bc:e9:ca:cb:5b:7e:c9:e6:
73:0e:3c:c5:dc:34:79:c1:64:49:af:92:c7:d4:cb:
68:08:bc:08:9e:52:e2:9b:13:33:21:d6:52:22:2d:
5d:47:1e:8b:0c:60:cd:6d:d4:38:91:b1:41:ee:a2:
f3:45:4c:25:63:b7:ae:c0:2e:94:3f:e1:c5:f6:65:
89:fa:53:b4:c3:f6:89:f2:c7:d8:17:74:80:ab:36:
3b:41:76:d8:ff:ea:2c:e4:a3:26:0e:f7:4b:34:8e:
c0:29:a9:85:76:59:3a:d8:5f:19:2c:58:2d:b0:c6:
c5:1a:97:7a:1f:c0:03:8d:4f:57:da:0c:18:88:3a:
34:0b:97:47:65:f4:56:25:7e:cd:ba:33:bb:07:3b:
54:97:5e:51:ed:43:f2:48:34:28:7e:95:c0:e4:af:
31:d4:8d:0b:6f:2c:7e:42:c6:77:8a:af:95:41:cd:
7d:cd:71:1d:1c:93:65:a1:f1:f6:5b:ef:35:64:9a:
2a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:B0:9E:68:C4:59:A9:1E:87:38:D2:F9:0F:89:9B:9A:15:E2:30:17
X509v3 Authority Key Identifier:
keyid:9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:ab:ed:1e:76:b6:e1:c2:18:7c:4e:78:ee:73:57:2e:28:ae:
0e:4a:b9:6a:80:2c:1d:c3:6e:b7:a9:c7:2e:20:3b:95:80:51:
c0:d8:1d:4f:28:83:61:7f:2c:00:d1:6e:08:cf:72:33:b0:70:
d8:fd:5b:fa:7d:75:fe:5e:0c:96:3b:e8:4b:5c:de:92:97:e1:
46:fe:28:f0:f9:96:c0:75:83:7b:25:2d:c3:ee:08:cf:5b:2c:
cd:f4:07:f7:6e:cb:27:39:bc:3a:81:c9:46:e5:3e:03:0e:c8:
4d:05:f8:89:03:ed:ba:0a:59:ed:18:fe:c4:b6:51:5c:87:97:
6a:ac:41:92:f1:9d:b3:8a:99:e3:fa:52:e8:27:a2:7e:d5:0a:
90:39:30:82:8e:f3:94:4b:25:7f:da:ba:6a:1b:71:39:dd:a0:
f8:8c:90:d0:30:91:20:37:f2:02:6f:f6:21:66:16:90:64:70:
a6:3b:72:84:4e:d1:f1:c8:5f:d3:16:f5:c6:d4:e2:03:b2:68:
5e:f4:83:ac:a3:2a:0f:ed:12:16:a1:f4:bc:b0:54:ab:06:b3:
aa:bc:0b:3d:45:40:51:bf:8e:0c:02:81:88:d3:28:f6:e9:5c:
23:7f:04:5a:3c:10:2f:40:49:5f:22:51:ff:56:4f:22:94:a4:
1f:60:1a:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 22:14:22 2025 by rpki-client