Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
File: NIMjF9JURDS2WeVpIHHY5MSTiwY.mft (raw, json)
Hash identifier: 1Dk8gC60yvX7l4TpkIS2Dk9H/FGYVGYWyjTCiO1ulTI=
Subject key identifier: 18:35:0F:81:AD:B6:E3:52:97:2E:54:2A:31:79:27:E4:8D:EF:A9:86
Authority key identifier: 34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
Certificate issuer: /CN=34832317d2544434b659e5692071d8e4c4938b06
Certificate serial: 0196C3B9AEED0FEAE230F8177AE7F195961A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
Manifest number: 02A9
Signing time: Mon 12 May 2025 09:00:48 +0000
Manifest this update: Mon 12 May 2025 09:00:48 +0000
Manifest next update: Tue 13 May 2025 09:00:48 +0000
Files and hashes: 1: NIMjF9JURDS2WeVpIHHY5MSTiwY.crl (hash: rsNDSibIk3Q3PhQwasgY0wWRrvzXkiz1S+gaooDFsKk=)
2: x2Xaez7Ra9vjvF4FG3Er4hO4ovk.roa (hash: T67Ch/iuLueDDibfJIFSKnLQW9UiEIt+71JVmL/jUzg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:b9:ae:ed:0f:ea:e2:30:f8:17:7a:e7:f1:95:96:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34832317d2544434b659e5692071d8e4c4938b06
Validity
Not Before: May 12 09:00:48 2025 GMT
Not After : May 13 09:00:48 2025 GMT
Subject: CN=18350f81adb6e352972e542a317927e48defa986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:f8:40:85:fc:04:7d:1b:80:11:da:e6:b0:1f:
a1:c8:eb:bd:fc:3c:43:25:2c:f1:36:70:7d:06:1b:
c0:6c:27:53:d0:fb:34:fa:63:24:a8:69:a2:03:0d:
48:de:9a:44:98:44:e4:0a:97:e6:8f:b2:7d:e5:d8:
1a:59:5a:fa:a9:b8:a2:66:eb:be:7e:00:44:c1:74:
fb:bb:a0:8c:d7:64:29:8c:f7:8a:61:66:66:2f:6e:
3e:98:15:c6:5f:b6:c5:05:f3:68:e6:8d:94:f5:ad:
f1:0d:8b:d8:72:6c:7f:dd:1e:70:d5:d4:d1:d2:5a:
e7:8b:79:5d:e6:2f:f6:8e:eb:62:9e:77:4d:e3:f5:
14:6a:d6:fb:34:ef:8d:8e:2a:8d:72:09:1f:43:e2:
dc:4c:fe:53:a9:39:2c:0f:8e:5e:01:3e:e0:ac:ff:
26:dd:32:4f:57:ba:2b:85:e3:40:0e:46:ff:04:e1:
e8:a1:16:a1:01:06:13:db:b2:82:38:38:aa:89:02:
28:ce:7b:fe:08:06:66:72:8e:cd:d0:af:0e:c2:ea:
e5:9a:ce:ef:31:fc:f2:4c:29:cf:45:b2:99:ec:6a:
28:04:09:97:9b:02:47:91:0d:42:61:ff:10:ae:90:
e2:ef:81:81:b8:3c:04:62:89:41:9d:ba:5e:5d:00:
f6:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:35:0F:81:AD:B6:E3:52:97:2E:54:2A:31:79:27:E4:8D:EF:A9:86
X509v3 Authority Key Identifier:
keyid:34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:40:17:32:9f:3c:f6:db:25:f4:6b:43:ee:5e:c2:7d:95:a7:
0a:2f:55:d7:7b:bd:60:6e:d0:f4:a4:1d:a7:9a:ce:8f:70:bd:
de:85:8f:14:d6:61:19:66:f0:7d:08:93:b4:c8:e1:52:70:59:
b9:1c:92:bd:c6:e2:d1:a9:92:23:0f:32:c4:ac:80:2d:1b:a3:
f5:dd:fa:e0:ee:ac:fc:f7:28:67:ed:bc:9e:99:b3:6a:0b:00:
60:aa:14:cc:b1:e0:a0:06:d5:84:b9:ff:a6:37:19:f8:6a:d7:
89:5d:69:36:f3:56:11:ec:0c:a9:ed:d6:94:73:fb:94:f0:9c:
d0:1e:c1:97:ed:08:bc:2e:66:b3:9e:03:50:c5:61:92:bb:4f:
5f:a2:1a:9e:be:81:7f:18:a4:94:a7:24:eb:76:0c:8b:1b:90:
eb:ea:48:4f:a9:1c:b2:16:e9:82:0e:40:69:7f:3b:2f:61:16:
3b:e8:49:2b:e0:a4:e9:1e:a0:50:9b:0f:91:f7:47:74:5e:b7:
e7:03:f6:60:61:ff:f7:a8:e2:a4:5b:b7:42:45:8f:33:08:f2:
fd:92:a1:2e:2a:8b:47:bd:34:1f:04:a4:60:3e:be:89:bd:a5:
23:57:28:72:bc:82:8e:73:82:66:2a:aa:07:c7:45:1d:9f:1d:
f4:32:46:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:04:52 2025 by rpki-client