Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft
File: NufP3RKRk-IZw3ASHKFiUOQptYs.mft (raw, json)
Hash identifier: 3RfTKUELz0b+GSG6IBL+Fj1575k5ZRYxr419Mr4uuoI=
Subject key identifier: 18:68:DE:4F:BA:4C:08:3E:C7:9D:89:96:FC:EC:9A:35:8C:AC:6F:E1
Authority key identifier: 36:E7:CF:DD:12:91:93:E2:19:C3:70:12:1C:A1:62:50:E4:29:B5:8B
Certificate issuer: /CN=36e7cfdd129193e219c370121ca16250e429b58b
Certificate serial: 0196A6C1C8798107D29C6D4CDD361F454C17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NufP3RKRk-IZw3ASHKFiUOQptYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft
Manifest number: 0F19
Signing time: Tue 06 May 2025 18:00:39 +0000
Manifest this update: Tue 06 May 2025 18:00:39 +0000
Manifest next update: Wed 07 May 2025 18:00:39 +0000
Files and hashes: 1: NufP3RKRk-IZw3ASHKFiUOQptYs.crl (hash: +19wyxd2zVP/S9JvAMZfIpoE14vkR40uMfugS96L8PY=)
2: TQTaN9R3PROnWSlPAnOimZ3OkV0.roa (hash: 6MvOdY9qe95Xeb6bYl6JjgUIxMzjpmO+qyLURJWgUDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/NufP3RKRk-IZw3ASHKFiUOQptYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 18:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a6:c1:c8:79:81:07:d2:9c:6d:4c:dd:36:1f:45:4c:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36e7cfdd129193e219c370121ca16250e429b58b
Validity
Not Before: May 6 18:00:39 2025 GMT
Not After : May 7 18:00:39 2025 GMT
Subject: CN=1868de4fba4c083ec79d8996fcec9a358cac6fe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:eb:c6:17:8b:df:87:25:f4:2a:a6:5d:ce:4f:
22:1c:df:27:90:b7:62:39:cd:82:93:98:04:f5:7e:
87:c6:04:2b:8a:b3:40:e7:cc:6f:85:ad:83:27:da:
62:94:63:0c:5a:30:39:b8:0a:a5:31:06:7c:3a:db:
89:00:06:db:31:ea:46:73:7b:68:a7:2e:58:f1:60:
7c:b0:d4:d1:c4:c2:09:08:d2:1e:d2:18:36:15:2c:
3f:1f:87:41:3d:c5:87:e6:80:88:d5:2d:98:b2:c6:
5a:80:60:dc:76:79:5d:b2:12:01:88:6f:b8:37:a6:
17:66:5f:22:1e:d8:50:00:90:ec:f5:c8:5a:dc:c2:
f0:9b:19:5c:29:b1:6c:97:b0:2a:c3:ec:67:a4:49:
1f:b8:d5:bb:a1:ff:fd:16:7a:17:e1:ac:6b:be:ab:
68:58:f2:f3:10:79:bd:e9:1a:c0:43:95:02:f3:da:
db:30:cc:96:68:e1:57:33:f7:e7:55:33:ce:b7:a2:
a6:9c:8a:ed:22:85:59:53:c5:31:6a:84:1a:e4:7f:
a2:82:bd:56:3b:b0:5a:a8:62:c2:9c:29:8c:26:0f:
d2:39:7b:8c:0a:9b:26:49:b5:ab:3c:03:51:1c:5c:
4d:82:03:92:ce:39:fd:99:33:a3:5e:d0:4c:44:c3:
fe:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:68:DE:4F:BA:4C:08:3E:C7:9D:89:96:FC:EC:9A:35:8C:AC:6F:E1
X509v3 Authority Key Identifier:
keyid:36:E7:CF:DD:12:91:93:E2:19:C3:70:12:1C:A1:62:50:E4:29:B5:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NufP3RKRk-IZw3ASHKFiUOQptYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:69:d7:e5:e3:07:d7:ea:66:eb:02:b3:3f:3d:a6:50:8a:b7:
52:f4:e8:9e:a0:dd:0e:cd:cb:c3:3d:c1:76:07:2e:9a:ac:2c:
0d:5c:19:79:aa:d8:89:7e:92:01:76:46:3a:e2:ab:74:7d:e1:
d9:d7:a2:e0:78:cf:ec:70:a1:a5:9e:d5:b7:e0:59:f2:a4:1d:
5a:b7:e9:8c:08:82:06:a7:33:6f:0a:e1:51:d7:bf:31:60:70:
c2:08:0c:a5:aa:c2:3e:83:54:93:4d:cc:d6:8a:e7:8c:a1:39:
3d:02:ce:86:27:5c:b7:1a:28:ba:64:d9:c5:69:99:ef:27:ce:
7e:54:33:af:eb:29:f7:b8:ca:34:83:c8:76:27:e6:6c:78:cb:
ce:79:f9:cf:cf:dd:79:56:ca:7f:67:2d:83:1f:94:71:b7:35:
ea:12:e1:d3:c6:51:5b:6d:78:1c:9f:a6:4e:67:d5:0e:b2:4a:
4b:f5:38:79:31:13:eb:4b:27:60:33:7d:47:8e:81:50:0d:79:
32:4f:2e:c5:0a:2a:e2:40:a0:43:55:87:33:e1:5e:fb:21:14:
26:37:4f:48:88:28:c8:74:bb:fc:bc:1a:68:62:87:9b:44:b2:
a6:31:5a:88:a4:72:62:b8:02:27:ac:4b:42:2e:c7:81:40:cc:
f0:24:8c:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 02:55:50 2025 by rpki-client