Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/ac72a6-b836-4043-bd23-fa060b9a3b40/1/nc28ow8_5XpR57bAt_MgOvFnKiI.mft
File: nc28ow8_5XpR57bAt_MgOvFnKiI.mft (raw, json)
Hash identifier: PU61ibPQneMQ7+joRGfrvkYJ4fxD/BGiLF+dV/i3eA8=
Subject key identifier: 94:D6:40:1F:16:C2:06:4F:2C:7F:83:05:D3:13:96:77:8D:D9:40:FD
Authority key identifier: 9D:CD:BC:A3:0F:3F:E5:7A:51:E7:B6:C0:B7:F3:20:3A:F1:67:2A:22
Certificate issuer: /CN=9dcdbca30f3fe57a51e7b6c0b7f3203af1672a22
Certificate serial: 0196BB9277D98CE4B8F99136C5BBC763C41C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nc28ow8_5XpR57bAt_MgOvFnKiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/ac72a6-b836-4043-bd23-fa060b9a3b40/1/nc28ow8_5XpR57bAt_MgOvFnKiI.mft
Manifest number: 152D
Signing time: Sat 10 May 2025 19:01:00 +0000
Manifest this update: Sat 10 May 2025 19:01:00 +0000
Manifest next update: Sun 11 May 2025 19:01:00 +0000
Files and hashes: 1: nc28ow8_5XpR57bAt_MgOvFnKiI.crl (hash: xaiqeG4etjOFab17hRuYwjqBH54Om0so73TEX9tXdAU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/ac72a6-b836-4043-bd23-fa060b9a3b40/1/nc28ow8_5XpR57bAt_MgOvFnKiI.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/ac72a6-b836-4043-bd23-fa060b9a3b40/1/nc28ow8_5XpR57bAt_MgOvFnKiI.mft
rsync://rpki.ripe.net/repository/DEFAULT/nc28ow8_5XpR57bAt_MgOvFnKiI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:92:77:d9:8c:e4:b8:f9:91:36:c5:bb:c7:63:c4:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dcdbca30f3fe57a51e7b6c0b7f3203af1672a22
Validity
Not Before: May 10 19:01:00 2025 GMT
Not After : May 11 19:01:00 2025 GMT
Subject: CN=94d6401f16c2064f2c7f8305d31396778dd940fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:fd:f9:ed:55:d1:4b:1e:93:33:fd:8b:7a:a7:
23:80:c3:61:fa:7f:6b:10:be:29:d1:e0:51:f4:7d:
a0:f0:8c:3a:0a:bd:c5:17:a5:07:a0:0e:db:5e:4f:
c4:47:67:81:ef:18:a9:06:0f:e6:23:74:2e:e0:4c:
df:e6:f6:0a:d5:b1:a6:4a:51:ff:ff:c6:48:b7:06:
22:0e:0d:b7:ed:80:cf:fd:1d:64:c0:77:cb:a3:da:
b1:a7:bb:6a:f2:fa:ee:0e:11:af:c4:7e:fa:5c:33:
ff:7b:ef:e6:ce:a5:b7:cf:0e:5a:a2:22:c9:b6:20:
6c:34:ff:38:08:e3:25:d5:58:74:98:5d:0f:91:6a:
24:2f:06:53:af:ee:34:73:20:69:67:aa:22:e7:22:
88:ee:0f:c4:52:ce:bb:3b:cc:1c:82:50:8e:92:8b:
f6:7a:2a:50:3f:cb:ec:2b:ab:b3:97:69:1b:20:06:
da:9a:a8:18:98:b5:d4:c4:8f:7b:28:12:4c:02:a7:
a7:45:1c:04:7c:0f:c5:28:e1:21:be:e7:01:b1:e6:
e3:8f:ba:b2:f7:4d:c5:78:dc:f9:07:ba:1c:9f:87:
56:ee:6c:97:91:ac:ea:ee:45:c8:b7:97:9a:d7:e7:
fc:40:66:64:1a:61:66:24:e6:30:c5:c4:1b:4e:be:
7e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:D6:40:1F:16:C2:06:4F:2C:7F:83:05:D3:13:96:77:8D:D9:40:FD
X509v3 Authority Key Identifier:
keyid:9D:CD:BC:A3:0F:3F:E5:7A:51:E7:B6:C0:B7:F3:20:3A:F1:67:2A:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nc28ow8_5XpR57bAt_MgOvFnKiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/ac72a6-b836-4043-bd23-fa060b9a3b40/1/nc28ow8_5XpR57bAt_MgOvFnKiI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/ac72a6-b836-4043-bd23-fa060b9a3b40/1/nc28ow8_5XpR57bAt_MgOvFnKiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:2f:c0:6d:e1:03:85:07:bf:64:75:f6:0f:5a:b4:ba:0e:62:
24:85:14:c8:fe:91:56:96:18:25:d1:50:5a:6d:0b:1e:d6:0f:
a5:21:db:96:2c:ae:8f:3c:71:98:7b:f9:88:f7:88:f8:fd:5e:
d9:d1:ca:88:ef:f8:84:73:7c:85:11:b5:16:ca:84:78:c3:58:
d5:4c:2c:be:56:fb:6d:99:4d:56:b5:ad:fd:39:8c:a0:02:aa:
9b:a1:3f:62:e8:bc:06:d8:b0:35:b7:82:0d:e3:ea:73:76:1a:
eb:a4:4d:03:0f:87:7e:fc:3d:58:28:98:c7:1f:80:6e:b3:db:
51:d0:5b:01:46:1d:47:f1:48:9c:4e:f4:28:b9:ab:d2:d6:e8:
f9:bf:ce:ac:1f:ac:e7:3b:7d:e9:11:63:da:81:3e:52:6f:36:
4f:4d:ca:74:c5:f7:0b:f6:cc:e3:bb:88:4e:0f:ad:53:47:71:
04:42:94:10:06:74:f6:55:26:e4:3a:4f:06:0e:62:e5:aa:e7:
d1:b2:a1:af:84:00:83:18:55:28:81:16:9c:2b:f9:c3:6c:88:
6f:9c:8a:34:e6:cf:a2:cc:37:b4:4c:90:f8:3d:64:e2:fe:0f:
33:0b:5e:2e:af:90:82:b9:c3:64:99:a3:8b:b1:f4:7f:ca:b9:
83:8e:b7:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 21:12:37 2025 by rpki-client