Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
File: nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft (raw, json)
Hash identifier: SqYOztZ4a+MnLCk28+GYCsh3gvkjRyuWq0QTPdwKJZw=
Subject key identifier: 7F:DC:F4:62:60:AB:18:AC:61:C4:59:23:68:25:8E:B9:4D:40:81:4B
Authority key identifier: 9D:8A:DA:35:29:82:A3:19:B5:4D:5E:48:3D:34:42:63:46:73:3E:A4
Certificate issuer: /CN=9d8ada352982a319b54d5e483d34426346733ea4
Certificate serial: 019641799CA00B42236B5E3940DAA9D06126
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
Manifest number: 13E4
Signing time: Thu 17 Apr 2025 02:00:11 +0000
Manifest this update: Thu 17 Apr 2025 02:00:11 +0000
Manifest next update: Fri 18 Apr 2025 02:00:11 +0000
Files and hashes: 1: KpbjIIUZw0-XxCl1KqQDZ_EUKkY.roa (hash: KJWoFU4L0w8L8ZUG5csCrTHWK3udD7xALiAnkocVeD0=)
2: nYraNSmCoxm1TV5IPTRCY0ZzPqQ.crl (hash: oeH3mK0tCmm+2hf0V/sY2UvGqeAK/fBT1KvszCdfMCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 02:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:41:79:9c:a0:0b:42:23:6b:5e:39:40:da:a9:d0:61:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d8ada352982a319b54d5e483d34426346733ea4
Validity
Not Before: Apr 17 02:00:11 2025 GMT
Not After : Apr 18 02:00:11 2025 GMT
Subject: CN=7fdcf46260ab18ac61c4592368258eb94d40814b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f1:30:42:15:a8:d2:c4:d6:4b:9c:65:f6:93:
cd:29:67:29:7d:4b:54:b1:f0:9e:16:64:cb:e7:48:
2e:45:31:d4:76:6e:34:30:a2:1c:3e:08:58:05:39:
f2:8e:99:65:bc:e8:21:2a:2e:6c:22:c6:7c:2e:c5:
0d:bd:82:5f:5c:dc:ff:15:0e:93:64:02:c8:11:bf:
7b:6c:4c:7a:15:3f:34:b8:a6:30:8a:66:5d:a6:db:
92:9e:97:f3:46:0a:ed:6d:3e:60:c3:6e:95:14:96:
f0:8d:aa:04:e4:2a:57:aa:10:68:37:0a:e3:8d:cb:
2b:43:d5:96:71:6f:07:e5:59:a9:2d:67:21:80:9f:
fd:5d:6d:5e:4c:33:92:36:d9:b7:2e:30:93:ad:33:
ca:9e:27:cf:33:63:9c:89:34:7b:4c:94:6c:31:6a:
5b:24:7a:fb:f8:e1:a6:9a:02:0f:00:87:51:a3:b4:
a5:2d:9f:61:65:14:df:68:e3:dc:07:fa:3a:e2:37:
d4:fa:d3:f9:81:6b:8d:f1:c3:ba:f1:41:63:79:0f:
ba:2d:04:d4:b0:ff:6d:af:ef:f3:52:a6:ef:e4:ed:
80:83:1d:df:ab:57:ae:22:c8:be:d9:e2:d2:22:5d:
71:36:31:28:e5:b5:e4:c3:1f:87:95:b4:30:64:75:
6d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:DC:F4:62:60:AB:18:AC:61:C4:59:23:68:25:8E:B9:4D:40:81:4B
X509v3 Authority Key Identifier:
keyid:9D:8A:DA:35:29:82:A3:19:B5:4D:5E:48:3D:34:42:63:46:73:3E:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:83:d6:d2:4d:36:52:94:39:ca:e6:53:2a:60:51:6d:f1:06:
ca:ce:a0:85:66:1b:8f:6f:df:13:58:74:56:da:f8:97:82:cc:
21:72:ba:a3:63:46:07:8b:b5:cd:23:34:4e:84:b3:d8:f7:cd:
e3:6b:1e:51:a0:6c:a8:14:bc:3f:4d:ae:5f:d2:01:61:1b:41:
af:76:24:05:fd:bf:42:b3:ab:b6:56:4f:26:0f:fc:19:46:6f:
a0:3b:72:18:47:a7:f5:3d:08:e8:a9:c1:c2:21:4c:10:94:97:
61:b6:96:9d:a4:ee:33:63:04:9a:ce:f0:c5:3c:cd:08:e4:0e:
14:6e:ff:97:bb:c1:06:3b:12:9d:21:ed:9f:78:98:de:fe:da:
a5:c9:ec:5e:9a:a7:af:53:ca:96:0f:ad:ad:cf:8b:98:0a:d2:
7b:dd:fc:ee:d9:da:ad:79:bb:87:7f:a8:43:df:27:e4:5f:c0:
12:d0:3d:58:d4:e0:06:55:8f:32:c9:29:4a:e9:66:97:7f:cd:
ce:4a:30:f2:c1:a5:78:83:99:7d:a5:18:be:89:64:31:0d:60:
b1:c8:c8:4d:77:3a:06:ee:29:df:5f:e3:3a:ee:e4:bd:79:a3:
79:39:a7:9d:dc:5b:86:80:5a:fb:ab:4b:05:09:88:5a:be:81:
7c:ae:37:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 10:25:36 2025 by rpki-client