Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft
File: NHBSPMWdTwUnV-cSKR4rt535KAA.mft (raw, json)
Hash identifier: EiSg7NKr5UJrxkUSQhvBDwRK38vfwgZshVXV2vIPX5w=
Subject key identifier: F5:9E:2A:E3:B5:94:CD:DA:D8:4B:A2:9E:63:ED:C3:22:64:B2:A8:78
Authority key identifier: 34:70:52:3C:C5:9D:4F:05:27:57:E7:12:29:1E:2B:B7:9D:F9:28:00
Certificate issuer: /CN=3470523cc59d4f052757e712291e2bb79df92800
Certificate serial: 0196A5415D745F1598C46CA0AB486C1A5631
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHBSPMWdTwUnV-cSKR4rt535KAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft
Manifest number: 36
Signing time: Tue 06 May 2025 11:00:46 +0000
Manifest this update: Tue 06 May 2025 11:00:46 +0000
Manifest next update: Wed 07 May 2025 11:00:46 +0000
Files and hashes: 1: NHBSPMWdTwUnV-cSKR4rt535KAA.crl (hash: 4m8jqThCObBf/HMDyslvWTQ0Fi4bH2Ke662kJ7ozPzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/NHBSPMWdTwUnV-cSKR4rt535KAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a5:41:5d:74:5f:15:98:c4:6c:a0:ab:48:6c:1a:56:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3470523cc59d4f052757e712291e2bb79df92800
Validity
Not Before: May 6 11:00:46 2025 GMT
Not After : May 7 11:00:46 2025 GMT
Subject: CN=f59e2ae3b594cddad84ba29e63edc32264b2a878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:38:c1:7e:d1:c0:f4:89:6d:a9:9d:6b:15:e7:
27:6d:0f:61:32:99:c6:5e:7c:52:5c:23:96:63:cc:
57:8e:aa:cf:9d:58:e6:32:b2:75:eb:53:f9:dd:2b:
f7:74:4f:8e:7b:26:b9:9e:a6:9f:4a:53:53:e8:72:
cb:21:ab:bf:ab:38:3b:00:63:e1:9f:8d:8e:5c:bb:
98:0d:50:3f:9c:88:ee:bc:fa:6e:75:e7:11:41:27:
00:51:61:34:c0:16:cd:fc:6f:97:88:77:03:01:58:
8c:6e:df:57:12:68:73:57:d7:15:03:28:5d:fc:40:
0a:61:40:39:bb:87:0c:2a:4c:00:0a:42:cd:b2:9a:
9e:ce:c1:e3:79:62:99:32:0b:05:a0:37:4d:a9:71:
71:b6:5b:36:0b:a0:35:d4:7f:32:d4:67:d0:1c:cc:
d2:f7:b0:b5:28:a4:36:6b:d7:57:e4:b7:c0:d5:6b:
62:d8:a1:28:fa:91:ba:12:8a:36:60:1c:7d:76:67:
06:08:24:75:64:8e:f9:6b:65:8d:fc:9a:ff:9c:77:
e9:7a:da:76:97:07:4e:4a:fc:59:9d:95:0c:1e:9a:
93:ff:f9:74:c5:3c:89:f3:03:4a:cd:05:33:e9:72:
10:c0:3c:69:14:b4:8d:4d:9c:ae:6a:31:c4:39:ae:
af:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:9E:2A:E3:B5:94:CD:DA:D8:4B:A2:9E:63:ED:C3:22:64:B2:A8:78
X509v3 Authority Key Identifier:
keyid:34:70:52:3C:C5:9D:4F:05:27:57:E7:12:29:1E:2B:B7:9D:F9:28:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHBSPMWdTwUnV-cSKR4rt535KAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:71:d6:f7:3d:05:bb:b5:3c:25:a7:ce:17:6a:e6:16:1f:f0:
c4:e8:9f:26:51:7f:98:f5:6d:68:ef:73:ad:bd:8e:67:45:3e:
45:ea:cf:5b:e2:f2:84:4c:ea:0c:41:ce:22:3f:d1:e2:99:e3:
8e:35:5f:20:cc:76:77:a3:a8:d3:96:71:ed:f6:43:c0:4a:0a:
40:5c:af:5e:43:2a:bc:39:cd:48:d6:bd:ed:17:19:62:fe:14:
47:65:a6:0d:53:5a:50:02:f5:5c:50:32:d8:9a:d5:27:d9:84:
31:57:9b:13:ae:41:cc:f7:c3:8a:18:4c:3b:af:07:e7:5c:12:
fe:35:58:eb:e5:15:d1:be:b7:57:62:24:fe:b6:09:02:a3:32:
71:74:9a:8f:b1:32:0f:a7:dd:90:ab:0e:40:7d:7a:1f:01:d3:
04:84:5e:3a:a2:d6:28:b2:80:35:18:a4:95:7a:fc:20:41:10:
dd:79:e3:8f:25:4d:85:ed:a9:1e:e5:25:05:34:8a:5a:24:d6:
27:91:83:a8:13:45:d4:7f:85:dc:18:a4:4d:20:36:11:d3:9a:
36:31:a4:93:d4:76:a4:0e:95:11:bb:8e:02:9d:08:4f:6d:65:
df:27:80:42:60:ce:43:00:81:fd:78:48:b7:17:37:f3:e4:b2:
be:cd:54:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 14:13:14 2025 by rpki-client