Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft
File: nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft (raw, json)
Hash identifier: vGviB9LHtcIxMSYq9gGKsbwiQK6zSG9BUDaQqFne+t0=
Subject key identifier: D1:59:37:8D:72:AB:D8:25:67:1A:21:3D:3A:18:57:F4:82:77:90:E4
Authority key identifier: 9D:36:27:D9:76:65:14:57:89:42:42:00:50:BF:83:A8:B1:29:16:6E
Certificate issuer: /CN=9d3627d9766514578942420050bf83a8b129166e
Certificate serial: 01964EC784B3E1921ADC0EAF5F1FE8759AED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft
Manifest number: 118B
Signing time: Sat 19 Apr 2025 16:00:20 +0000
Manifest this update: Sat 19 Apr 2025 16:00:20 +0000
Manifest next update: Sun 20 Apr 2025 16:00:20 +0000
Files and hashes: 1: nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl (hash: PAnZtG+uuIJPAWJHv7UFplyzQlLyNlZ7gP5FY56sIWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:c7:84:b3:e1:92:1a:dc:0e:af:5f:1f:e8:75:9a:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d3627d9766514578942420050bf83a8b129166e
Validity
Not Before: Apr 19 16:00:20 2025 GMT
Not After : Apr 20 16:00:20 2025 GMT
Subject: CN=d159378d72abd825671a213d3a1857f4827790e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:de:76:7f:e2:9e:b6:20:4f:5d:7c:67:aa:c6:
55:14:af:88:67:a9:99:66:ff:96:66:90:ed:f6:22:
ee:88:22:82:9b:c3:c5:9c:4b:e3:d9:6b:6c:e4:92:
eb:44:6f:be:33:1e:1e:0f:bd:b3:6f:27:58:c9:7d:
c2:9f:5b:27:fc:57:1a:52:bf:7d:d4:76:09:11:d8:
27:20:f2:6e:4d:5e:2d:8c:71:f7:28:dc:3e:a9:60:
88:e8:91:8c:1d:bc:d5:cd:11:67:15:c4:c3:cd:b9:
c4:03:60:cd:c0:e1:56:2c:91:36:24:3b:95:34:d6:
f3:64:15:f2:d1:22:9d:29:fa:ca:a9:90:83:89:ed:
0d:df:7e:41:88:f8:38:7a:92:71:d6:45:fd:5f:5e:
30:02:b2:be:8d:9d:b1:36:cd:7d:e8:b6:fc:9c:80:
b1:42:55:9a:c3:bf:4e:7d:f3:40:31:0d:e7:0b:ff:
0c:7f:9b:0e:d6:a1:12:de:08:bf:58:be:11:d4:d1:
3f:22:04:9e:ec:cc:ac:8f:0e:94:4f:87:31:5d:14:
66:6a:7c:d9:ae:3c:2d:51:aa:ce:64:44:51:3e:e1:
59:b3:23:b8:25:7d:23:fd:61:f4:85:ff:66:8b:a7:
4a:08:ee:aa:32:c4:b8:95:63:23:30:00:d8:c7:61:
50:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:59:37:8D:72:AB:D8:25:67:1A:21:3D:3A:18:57:F4:82:77:90:E4
X509v3 Authority Key Identifier:
keyid:9D:36:27:D9:76:65:14:57:89:42:42:00:50:BF:83:A8:B1:29:16:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:f1:77:af:b9:cd:54:cc:f6:ff:f0:fd:19:67:b7:21:5e:6d:
1f:a0:e2:b6:fe:0f:45:ee:3f:3b:ee:2f:67:3c:de:07:45:e0:
8d:fc:2a:a8:cd:d5:f9:e1:46:87:4a:9c:e5:6d:09:87:a6:e8:
61:d8:67:e6:11:ce:18:da:b6:93:87:ff:08:dc:ac:32:5b:51:
32:b1:ca:29:ac:76:c3:bb:2a:2b:6d:1f:bd:3c:57:81:97:87:
80:2d:0d:1a:de:51:a6:90:d4:17:63:0a:f1:f3:cf:8a:b4:08:
db:39:fa:8d:9a:04:82:7f:12:e1:3a:55:dc:e0:a0:1b:c1:27:
fc:cf:b1:dd:4c:e9:58:02:bc:d0:15:a9:be:29:2a:03:25:83:
d7:1f:58:66:16:88:71:9c:5e:7d:8b:72:24:18:e5:72:19:c0:
a2:7e:14:1d:5b:52:ac:d3:9d:ac:ba:de:29:15:90:36:9e:f5:
fb:cc:33:14:3a:74:dd:ce:5b:70:7d:fd:64:f2:67:c4:e3:c4:
3e:a6:6c:b3:52:2e:a0:7f:05:90:57:57:50:a8:b0:9f:2e:b5:
24:18:9f:3b:8a:da:a3:69:47:34:57:b7:3b:0d:c8:f0:c8:65:
25:cc:a7:a7:a4:8f:06:97:58:4d:05:22:84:f6:4a:bd:df:14:
87:31:3b:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:10:10 2025 by rpki-client