Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
File: nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft (raw, json)
Hash identifier: AGJnMlrf9Iy3dE926vG3Eep0lNSowr17dlgdgcvANnI=
Subject key identifier: 19:E3:50:B1:1D:4F:1D:23:68:31:5E:34:D2:BD:37:55:B5:4F:9C:0F
Authority key identifier: 9D:8A:DA:35:29:82:A3:19:B5:4D:5E:48:3D:34:42:63:46:73:3E:A4
Certificate issuer: /CN=9d8ada352982a319b54d5e483d34426346733ea4
Certificate serial: 01958BF235F711A2FB9CBC9B1CF00367E96D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
Manifest number: 1386
Signing time: Wed 12 Mar 2025 20:01:01 +0000
Manifest this update: Wed 12 Mar 2025 20:01:01 +0000
Manifest next update: Thu 13 Mar 2025 20:01:01 +0000
Files and hashes: 1: KpbjIIUZw0-XxCl1KqQDZ_EUKkY.roa (hash: KJWoFU4L0w8L8ZUG5csCrTHWK3udD7xALiAnkocVeD0=)
2: nYraNSmCoxm1TV5IPTRCY0ZzPqQ.crl (hash: QJAx5MXbO92DWXM/4Ag5JeSyvuXa9pYsv4xRTrUhq7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:f2:35:f7:11:a2:fb:9c:bc:9b:1c:f0:03:67:e9:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d8ada352982a319b54d5e483d34426346733ea4
Validity
Not Before: Mar 12 20:01:01 2025 GMT
Not After : Mar 13 20:01:01 2025 GMT
Subject: CN=19e350b11d4f1d2368315e34d2bd3755b54f9c0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:65:05:0f:41:66:f8:ce:7a:5d:1f:40:ca:8b:
6f:5c:f1:97:3a:4e:39:0b:03:8a:b8:fc:30:0f:8d:
62:0c:61:3e:0e:25:84:df:8c:8f:d2:e1:25:a4:3f:
89:5c:90:79:a2:4a:73:73:02:c9:f3:9b:27:15:6f:
e5:99:08:da:b5:a0:67:5f:b7:f0:27:b1:dd:54:6e:
14:94:43:1f:57:f2:fe:d2:b6:96:c2:85:53:d9:62:
3b:1f:35:c3:1b:7c:cb:3f:56:66:ea:d1:6d:80:d9:
c4:4f:4b:b6:a1:e6:93:de:16:b3:99:20:e3:a8:39:
17:24:2f:e7:d7:fa:ec:fc:93:16:93:c4:93:33:ae:
7f:fc:6e:30:69:a2:70:69:00:1e:d1:ac:e2:3b:40:
c9:0e:25:49:aa:26:46:22:c6:a7:1d:32:6b:83:1f:
2e:70:92:7e:2c:ed:37:6f:1c:25:16:78:d9:8a:9f:
26:b1:6c:d0:93:3e:08:31:18:58:a1:db:d4:72:6d:
02:19:ad:77:24:f0:e9:32:f3:55:48:39:2a:28:60:
94:26:04:17:e4:0a:5d:9e:54:e1:ad:52:f6:2c:08:
8b:75:11:82:17:45:14:3b:be:ce:a9:de:55:1f:95:
8c:a3:37:95:1b:2b:43:7d:23:ac:cc:58:4f:de:da:
e6:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:E3:50:B1:1D:4F:1D:23:68:31:5E:34:D2:BD:37:55:B5:4F:9C:0F
X509v3 Authority Key Identifier:
keyid:9D:8A:DA:35:29:82:A3:19:B5:4D:5E:48:3D:34:42:63:46:73:3E:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:2b:7e:7e:5d:d0:a0:81:a5:b7:25:d3:2e:b4:f8:54:db:1e:
19:17:4a:69:be:dd:64:9b:e1:de:41:af:d9:a8:e7:f8:1b:33:
e2:f5:90:a2:00:0a:a7:27:69:25:03:1f:68:44:eb:7d:8b:d8:
b5:27:69:b4:b1:04:14:f1:78:bc:e6:af:da:78:ed:b6:b3:c0:
94:ef:3a:cd:cf:b6:9d:ef:d8:54:40:cb:d4:f7:98:04:9e:51:
c5:8a:62:64:57:e6:bd:7f:48:a8:94:96:32:0e:66:75:22:d1:
10:08:ba:99:64:0a:d0:32:56:09:15:d6:1a:a8:96:b3:89:86:
58:12:46:63:62:84:dc:f7:04:bc:6e:fb:90:32:31:42:74:d2:
cc:e8:bf:b3:73:56:4b:aa:9e:be:f7:86:0b:c3:b1:f0:f9:59:
9e:3c:69:66:2f:57:30:c6:34:ea:e8:d5:d9:a2:42:55:f1:8f:
b2:b0:ef:03:7c:17:4a:b6:1c:4f:9c:71:82:58:ee:1f:70:93:
a8:23:18:7d:01:79:60:31:4e:4e:b0:8e:1f:8f:85:ed:6e:ad:
a3:b6:f5:5e:ec:11:00:cc:55:98:a8:f7:30:f1:e3:b5:49:9d:
76:30:48:58:af:ed:fd:b5:e2:cc:ff:f4:72:23:b4:2d:84:c6:
5b:c4:28:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:27:29 2025 by rpki-client