Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
File: nFVnZyAcUPayqVXbah5uAR36XUQ.mft (raw, json)
Hash identifier: y/7bcpso0TO7vkRQE9KVLrSf2k5HaJ7WPNRSbZFBIGE=
Subject key identifier: 45:42:F6:85:15:EB:00:40:61:35:01:3A:86:60:F5:95:89:1B:61:77
Authority key identifier: 9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44
Certificate issuer: /CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44
Certificate serial: 0196BD49531219C9D48DDDD34AF75E9443E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
Manifest number: 0A5C
Signing time: Sun 11 May 2025 03:00:21 +0000
Manifest this update: Sun 11 May 2025 03:00:21 +0000
Manifest next update: Mon 12 May 2025 03:00:21 +0000
Files and hashes: 1: cmsoMlIRCcbLziNipTUjZc3lrew.roa (hash: a1CFCcY0jADOuS6DTKGkRSmsv5gzH4GzUcir7HG6pUE=)
2: nFVnZyAcUPayqVXbah5uAR36XUQ.crl (hash: Yk+2SthfpKox1Kzfm2KEXPjLWpmQ1CHZn3WZQ1u8tOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 03:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:49:53:12:19:c9:d4:8d:dd:d3:4a:f7:5e:94:43:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44
Validity
Not Before: May 11 03:00:21 2025 GMT
Not After : May 12 03:00:21 2025 GMT
Subject: CN=4542f68515eb00406135013a8660f595891b6177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:50:49:1a:97:ee:c1:67:29:27:88:13:83:f6:
05:b7:f3:cc:39:d7:23:46:8f:04:a3:61:25:12:75:
d1:80:93:d0:22:22:e8:72:24:a7:fa:04:37:d0:f1:
a5:af:20:29:5e:95:d8:27:2d:98:b8:47:f5:0f:54:
b6:f7:0b:6d:d3:dc:69:88:a1:85:6e:34:42:cd:43:
10:b8:78:bb:f2:74:17:ed:08:5b:bc:73:8b:0b:c3:
8a:a0:5e:b5:d4:7b:76:45:9b:7b:de:f7:84:ac:38:
2b:d2:87:5c:3a:27:97:9b:c8:34:bd:49:21:c2:9e:
db:98:55:e1:91:eb:b3:e2:62:c8:9e:51:32:bf:52:
0d:b6:fc:0e:fe:c9:98:e4:4e:b2:2a:c3:8b:91:44:
64:f4:48:9c:c8:a0:36:89:07:f3:3b:73:00:33:69:
4d:f1:88:e2:f2:10:26:46:fb:ec:ae:ae:f1:eb:ff:
3f:0e:04:7b:b7:67:9b:c3:dd:fd:cd:03:30:f8:85:
cd:4b:79:0a:1a:70:b9:7d:f1:ca:a0:f6:c5:bd:36:
bc:b4:b1:94:5e:a9:45:96:ae:25:1d:93:86:5a:34:
9a:5d:aa:e6:c4:c5:a4:ad:d0:76:4b:8c:a1:3e:cd:
cf:1f:8a:bd:27:2c:19:75:8c:87:f3:cd:12:82:b7:
b4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:42:F6:85:15:EB:00:40:61:35:01:3A:86:60:F5:95:89:1B:61:77
X509v3 Authority Key Identifier:
keyid:9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:8d:c4:1d:31:86:b1:8c:62:e8:b5:ef:ab:26:e7:bc:53:67:
eb:99:fe:59:f4:48:47:3b:95:89:4c:88:45:4d:6c:0f:ed:d7:
4d:4d:04:00:aa:99:83:f8:7a:8f:ea:06:49:98:b0:65:cb:c7:
8f:a1:d8:78:f8:dc:39:9d:3b:c2:04:ff:8d:9e:b8:26:87:7b:
df:f2:ca:ce:32:ed:57:95:47:d4:41:70:33:85:55:e1:89:30:
88:6a:1c:04:84:9a:45:a1:cb:51:64:82:64:96:24:3f:1d:56:
70:e1:9e:ba:04:eb:f5:ee:a0:fb:26:02:b7:44:d4:37:bd:81:
c8:ae:68:4c:d9:c3:73:ec:a4:76:e0:d6:cc:dd:74:70:13:ef:
9f:95:71:6b:26:db:20:ff:18:05:f4:9b:ab:83:72:b0:fc:03:
82:aa:1b:b2:a0:1d:77:03:0e:e5:92:e1:77:a2:f7:b5:22:6b:
d5:93:ae:39:41:37:ef:8c:ad:99:61:0a:ba:67:1c:a0:64:41:
8d:5a:83:b6:2d:04:db:43:28:49:46:af:73:74:27:ce:2e:41:
fb:73:a1:d7:09:f1:9f:15:43:88:fc:6f:3f:1b:31:41:60:76:
53:e1:7a:60:15:63:f8:8d:db:7f:64:ec:4a:03:4e:1e:73:12:
36:5d:65:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 12:41:59 2025 by rpki-client