Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
File: nhuhZT_KfIAXI8pG_0Qua6wekaA.mft (raw, json)
Hash identifier: Yc42eLdiv+87obNizicyPmOjMz82w+Jq7x+Ezl+zskw=
Subject key identifier: D3:72:0E:1D:34:5A:99:13:B3:5D:E6:3B:10:EB:25:1E:1A:1A:55:E9
Authority key identifier: 9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
Certificate issuer: /CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Certificate serial: 0196CB05AC9084F70F016A7799503447288C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
Manifest number: 07B3
Signing time: Tue 13 May 2025 19:01:08 +0000
Manifest this update: Tue 13 May 2025 19:01:08 +0000
Manifest next update: Wed 14 May 2025 19:01:08 +0000
Files and hashes: 1: cb8dWgekdgTmGEn_puzoSrtajs0.roa (hash: klMt7aeT4NJnkoShXspgSHaq5Jk7n53EuU54bLRTaLc=)
2: nhuhZT_KfIAXI8pG_0Qua6wekaA.crl (hash: +fCgcUOw7nn5C1yCat5UiS3Y+oUXAIS56Ag+HYmS+8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 19:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:05:ac:90:84:f7:0f:01:6a:77:99:50:34:47:28:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Validity
Not Before: May 13 19:01:08 2025 GMT
Not After : May 14 19:01:08 2025 GMT
Subject: CN=d3720e1d345a9913b35de63b10eb251e1a1a55e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:c3:fc:a2:9b:35:b0:6e:0f:31:72:be:c2:76:
f3:21:0e:89:8d:74:b3:a2:2b:52:fa:9d:41:9a:f1:
24:ea:54:5e:6b:69:23:cb:12:49:10:b4:0f:91:71:
37:d0:c9:f2:42:f7:01:d8:dd:81:22:91:d1:cf:6d:
e4:52:62:67:4e:d8:a4:c4:a1:5e:a6:e9:15:74:f2:
2b:4f:53:8b:e4:6f:5f:1e:69:e8:91:9e:72:53:20:
74:78:e0:63:39:12:d9:3e:21:22:95:36:cc:7e:ce:
93:70:72:1f:fa:cf:d5:0f:cc:6a:f2:1e:0b:69:a1:
f1:aa:63:fa:87:c1:62:e6:34:e4:20:79:ad:0a:bd:
cb:24:d5:ff:25:ef:34:4e:67:5e:26:05:8f:bb:51:
10:19:56:f1:9d:af:6d:98:12:3a:61:a0:01:db:1f:
4a:f8:d0:49:2d:1b:42:80:32:44:55:2d:ee:30:9a:
af:d2:06:6c:2e:65:e1:49:a6:bb:15:26:cb:1e:d4:
db:13:79:f4:48:94:d2:1f:26:3e:e0:d8:d9:6d:44:
56:d5:f2:81:80:c1:89:01:c0:e3:99:aa:cf:2f:bb:
4a:67:29:ed:57:10:32:f5:81:be:8a:99:a9:d3:11:
fc:71:1b:26:1d:2c:fc:6e:0c:4f:c5:b0:b9:41:1c:
dc:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:72:0E:1D:34:5A:99:13:B3:5D:E6:3B:10:EB:25:1E:1A:1A:55:E9
X509v3 Authority Key Identifier:
keyid:9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:79:20:d3:96:ce:ee:b9:44:38:20:5a:a1:80:ef:a8:9d:29:
ff:a6:0f:79:df:06:19:ee:e0:ec:4b:cd:24:e8:d3:38:a9:d4:
ef:2d:61:4c:ed:b1:bc:3f:27:39:dc:56:11:c1:bb:d0:f3:1f:
33:d9:86:90:a0:4b:57:93:60:fe:e1:2f:32:76:cf:b3:23:69:
2e:ae:d2:56:1a:58:f5:0f:cb:ee:8b:7b:e2:f9:4e:6e:a4:e8:
28:1c:07:7e:56:22:bf:95:9b:36:96:bf:8c:ef:e6:b9:4c:7f:
3e:fb:c8:d5:c6:91:44:25:0f:3a:95:27:c5:5f:f5:c2:9e:43:
63:91:1c:cb:40:5f:b9:bc:11:32:96:31:a1:57:cc:58:10:c5:
d1:92:c9:37:cd:d3:72:0d:d9:e6:89:fa:c8:7a:24:e8:aa:6e:
6c:8e:07:8a:9c:be:a5:1f:db:36:d9:3b:bb:eb:2a:a8:be:5c:
29:3d:83:66:5c:4b:ee:73:e1:d2:4a:bd:cc:be:c6:0c:a8:ad:
fb:79:09:33:20:52:e5:5c:92:0e:d3:68:50:7a:c6:e7:f1:ea:
4f:bf:da:18:c0:0f:33:e8:8b:a7:d7:02:d4:c1:ab:35:b3:a5:
47:11:7d:47:e5:e9:d8:f3:a8:b1:0f:78:7a:2f:f6:4e:d3:f3:
9f:39:2a:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 01:20:16 2025 by rpki-client