Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
File: nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft (raw, json)
Hash identifier: wlxpCuprYCl7effFNGd2uDvyMcCfRj2gGtVtUTPlg7g=
Subject key identifier: B5:09:34:B2:D4:09:ED:75:D5:4C:A7:2E:60:85:A9:C6:F3:F5:73:BA
Authority key identifier: 9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC
Certificate issuer: /CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec
Certificate serial: 0196C2022027B96893BB6B1DC35BBB493C76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
Manifest number: 1533
Signing time: Mon 12 May 2025 01:00:41 +0000
Manifest this update: Mon 12 May 2025 01:00:41 +0000
Manifest next update: Tue 13 May 2025 01:00:41 +0000
Files and hashes: 1: RvlNk8dGKorZzV6RSRdv-WDV_HE.roa (hash: KtznCFrYuNrxb/iIoe3x5KvOTsGXxBUw5Sa9+KNOTgg=)
2: nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl (hash: W+WmHdkJ1x0oFiJof05xQP1lrzItI6hDlj+qER3OskI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:02:20:27:b9:68:93:bb:6b:1d:c3:5b:bb:49:3c:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec
Validity
Not Before: May 12 01:00:41 2025 GMT
Not After : May 13 01:00:41 2025 GMT
Subject: CN=b50934b2d409ed75d54ca72e6085a9c6f3f573ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c4:9c:f0:30:b0:da:dc:17:9f:c8:8a:84:73:
89:c4:06:4f:0f:c6:29:56:ae:7e:53:bd:4b:fa:8b:
a9:39:fa:b7:c5:87:94:7c:39:48:96:70:4b:a5:93:
87:38:aa:9d:b5:60:ec:2b:df:bc:75:c5:84:6a:02:
ee:a1:29:e4:83:3a:3d:5a:0e:64:9d:56:83:66:01:
39:2c:bf:37:96:3d:0e:2e:95:bb:cb:d0:03:35:ac:
11:8e:e5:b1:58:c0:fd:d4:3c:01:47:4a:99:46:5a:
e7:fc:0f:04:69:3d:9e:76:aa:34:2e:6b:e1:a4:5a:
2f:11:ba:45:8e:ef:bd:ef:a3:cd:45:7f:0d:ec:ec:
1c:2d:d0:bc:23:7d:6a:83:b5:85:b1:4a:39:38:3d:
a9:d7:9c:07:42:fe:ad:59:6f:52:9c:26:9b:8c:e6:
9e:ce:79:6f:78:4c:f8:ba:96:48:04:c3:55:55:4d:
c5:f5:d8:87:93:f4:76:2a:82:69:be:36:d5:5f:f9:
c1:3b:40:9b:3b:42:e6:ff:5f:fb:3b:98:f6:7f:26:
5e:12:9a:7b:5b:77:16:ff:9b:de:08:ad:ae:a7:83:
e8:46:39:4a:2a:dd:69:3e:01:a5:2c:bb:14:e0:03:
9a:72:32:ec:a8:11:3c:36:66:10:59:e5:01:c1:39:
a1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:09:34:B2:D4:09:ED:75:D5:4C:A7:2E:60:85:A9:C6:F3:F5:73:BA
X509v3 Authority Key Identifier:
keyid:9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:00:c3:36:bc:8b:8d:66:b0:1d:78:db:33:42:65:9a:24:b0:
5a:8d:5d:64:d9:a7:58:e1:dc:32:60:59:ee:ba:bf:56:f1:cd:
3f:13:cb:b4:0d:02:5a:06:b5:ba:43:81:6d:82:52:97:5c:2f:
82:32:8c:8f:64:9b:2c:9d:9a:b7:65:b2:48:af:94:d0:16:c4:
c0:4f:62:f3:65:34:5d:c9:fb:4d:5c:90:4a:c3:a4:ac:15:7f:
c6:66:ad:10:9b:49:a4:a1:d0:31:08:02:8b:95:34:d5:7c:55:
42:ff:2d:16:9f:0f:a6:ba:4b:ce:ba:6f:22:18:ea:c2:5f:d0:
99:3c:87:3c:d1:2c:9d:fd:6b:94:6a:7e:60:67:36:6a:f7:b1:
ac:07:78:cb:c5:14:b2:85:88:46:07:53:38:4c:cb:11:cf:64:
8b:cf:42:25:e8:88:0c:b3:6b:31:a3:be:12:4f:e1:df:4c:52:
15:d6:2d:66:e9:7d:cb:01:1c:d5:53:da:d7:3a:89:e7:d8:ae:
d2:98:2f:c6:9a:92:6a:ce:7e:ab:8f:d3:a3:9d:fb:f9:0b:9d:
9e:84:35:cc:e4:3b:6b:d7:bc:2a:6f:68:78:ce:d8:7f:35:ac:
c9:d1:04:16:66:c7:c7:a6:b8:23:7f:c0:96:48:5b:a3:71:d0:
05:17:21:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 08:21:48 2025 by rpki-client