Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.mft
File: NkITiw7v_lajLMuqWNb_5u3D8p4.mft (raw, json)
Hash identifier: ESUgR5PxuICI5ly4coANhXrB5PosSMt7O0UYJOKeEzc=
Subject key identifier: 05:F0:44:32:CB:FD:C0:10:0D:7F:BE:F4:FC:54:8D:D1:CA:01:9E:3D
Authority key identifier: 36:42:13:8B:0E:EF:FE:56:A3:2C:CB:AA:58:D6:FF:E6:ED:C3:F2:9E
Certificate issuer: /CN=3642138b0eeffe56a32ccbaa58d6ffe6edc3f29e
Certificate serial: 01974A7BA3352E4BEDD7F4983AA224C72FB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NkITiw7v_lajLMuqWNb_5u3D8p4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.mft
Manifest number: 0481
Signing time: Sat 07 Jun 2025 13:01:45 +0000
Manifest this update: Sat 07 Jun 2025 13:01:45 +0000
Manifest next update: Sun 08 Jun 2025 13:01:45 +0000
Files and hashes: 1: NkITiw7v_lajLMuqWNb_5u3D8p4.crl (hash: jGe2eKByQxYRuxXUEVB1wleyK4od8Pp2QQxB5bciZuo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NkITiw7v_lajLMuqWNb_5u3D8p4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:a3:35:2e:4b:ed:d7:f4:98:3a:a2:24:c7:2f:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3642138b0eeffe56a32ccbaa58d6ffe6edc3f29e
Validity
Not Before: Jun 7 13:01:45 2025 GMT
Not After : Jun 8 13:01:45 2025 GMT
Subject: CN=05f04432cbfdc0100d7fbef4fc548dd1ca019e3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:10:85:49:79:20:7c:61:b1:c8:90:ab:65:b3:
8d:e7:70:dd:76:8a:9e:45:24:55:05:fe:cd:df:6d:
ba:bf:73:27:d4:de:a4:ac:03:b5:bf:74:00:b3:e7:
a1:5c:cc:6e:be:d9:ea:71:2e:11:0a:17:1a:0c:0c:
c5:4f:42:c1:c0:91:6a:4c:99:31:b3:c3:6f:6e:f5:
1f:d1:95:f0:ed:89:f3:33:89:62:49:09:24:df:a8:
a0:f7:b7:81:4f:fd:74:30:84:bf:42:28:61:04:cb:
a9:a2:b1:11:d9:fb:98:f7:5b:41:ae:79:b3:e7:15:
2b:6a:58:d9:d4:68:4a:8e:75:96:fe:cb:21:a6:d6:
bb:0f:99:57:41:72:60:c9:25:2c:0d:07:9d:5a:d7:
ce:31:b7:8e:cf:f1:63:33:cf:ac:42:e6:c4:03:73:
49:a9:bd:8f:24:85:a5:6b:ba:d0:e5:a2:d5:3a:66:
db:19:91:c0:33:3b:2a:0e:dd:2b:4c:9e:2c:e9:4e:
c4:2e:8b:82:64:55:45:52:08:4a:3e:54:e6:c0:a9:
ea:68:7c:34:04:cc:91:57:73:82:f5:a1:0f:ca:10:
d2:bc:f2:0a:d9:67:7d:37:ae:b1:53:f8:4d:69:b4:
40:6c:f7:0d:fa:35:d1:e7:1b:19:41:fc:7a:5b:d7:
d1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F0:44:32:CB:FD:C0:10:0D:7F:BE:F4:FC:54:8D:D1:CA:01:9E:3D
X509v3 Authority Key Identifier:
keyid:36:42:13:8B:0E:EF:FE:56:A3:2C:CB:AA:58:D6:FF:E6:ED:C3:F2:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NkITiw7v_lajLMuqWNb_5u3D8p4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:d6:eb:37:e3:7e:58:69:7f:22:21:d3:db:59:0d:f6:8f:50:
b7:ca:75:9a:dc:81:e6:e3:27:18:ea:65:18:64:21:95:99:0c:
6f:4c:95:60:10:0a:de:7f:b8:9a:da:c6:21:a0:16:43:a8:56:
b7:8e:79:56:f4:0f:21:99:7c:33:09:c8:fa:07:0d:9b:99:ef:
13:71:e3:d0:77:b6:b6:00:92:4b:26:f4:6e:33:e7:a6:3c:83:
92:cb:39:fd:cd:fe:ba:2c:b8:51:89:8d:9d:78:07:23:db:80:
ae:04:b1:7f:a2:f1:a2:4a:7f:78:e9:cd:cc:e2:67:df:1b:fe:
c2:07:37:33:a9:53:35:03:5c:cb:d9:69:c0:5e:f6:08:1a:0a:
59:4e:36:af:58:3d:6e:76:6a:eb:c7:30:27:54:4b:28:3f:79:
4e:d5:34:e2:ee:f2:66:cf:f8:80:6b:75:d5:c9:f2:0b:c4:2b:
6b:97:73:7e:1c:63:64:14:a2:01:68:91:85:d5:8a:9d:35:51:
fc:10:2c:b6:45:7f:d2:45:cc:ed:5d:25:ae:3b:3c:89:aa:8d:
19:92:9b:f6:ee:ff:34:25:88:49:50:ce:b2:28:45:6c:2a:4f:
1e:1d:8f:de:58:5c:42:9b:d5:c4:15:4b:eb:6b:66:41:8f:5a:
92:2e:41:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:31:27 2025 by rpki-client