Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft
File: NawwjJT1exHO4bqE7xJ4RHxnhes.mft (raw, json)
Hash identifier: OoYDdLvZo/byEn+OtFyAqhESrm81FPUN97kzA7J5Q7k=
Subject key identifier: 25:6F:5F:BB:37:79:E8:51:9A:72:6C:AD:4B:F8:19:F0:0D:7F:5B:06
Authority key identifier: 35:AC:30:8C:94:F5:7B:11:CE:E1:BA:84:EF:12:78:44:7C:67:85:EB
Certificate issuer: /CN=35ac308c94f57b11cee1ba84ef1278447c6785eb
Certificate serial: 0196BA486F2708E2B02F552319B436F91C94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NawwjJT1exHO4bqE7xJ4RHxnhes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft
Manifest number: 1534
Signing time: Sat 10 May 2025 13:00:31 +0000
Manifest this update: Sat 10 May 2025 13:00:31 +0000
Manifest next update: Sun 11 May 2025 13:00:31 +0000
Files and hashes: 1: NawwjJT1exHO4bqE7xJ4RHxnhes.crl (hash: rZHsJ2s86PYieZk5xYm/WXwSy9kg/7G0nwWiCEFE8+E=)
2: ge72rIVKenfFe0v5asZR_PaxIp4.roa (hash: o9engqettqOIJ9n8PYQ/SXW11G8NZE3fZOewqKwRqSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft
rsync://rpki.ripe.net/repository/DEFAULT/NawwjJT1exHO4bqE7xJ4RHxnhes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:48:6f:27:08:e2:b0:2f:55:23:19:b4:36:f9:1c:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35ac308c94f57b11cee1ba84ef1278447c6785eb
Validity
Not Before: May 10 13:00:31 2025 GMT
Not After : May 11 13:00:31 2025 GMT
Subject: CN=256f5fbb3779e8519a726cad4bf819f00d7f5b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9d:7e:8e:90:69:7f:35:50:fb:9d:bc:d8:d0:
30:f3:55:57:ce:db:b9:23:39:8a:67:71:ce:63:3e:
3a:bf:65:54:ca:b0:74:e3:bd:cb:02:e7:4c:46:01:
dc:16:c8:92:18:cf:ac:24:69:89:6a:7a:b4:4e:d0:
e5:c7:ef:7d:7b:6c:eb:1d:b9:fa:ed:88:de:cf:34:
83:a2:d2:b0:1f:32:2f:cf:1e:c6:1b:50:a8:02:36:
6f:d8:6f:39:a4:69:15:6c:5e:dd:4c:38:0f:ed:c4:
b1:52:8d:2d:fb:73:00:7f:65:5b:63:58:f7:8d:1a:
56:4a:c7:3b:4b:bb:7e:d6:1b:9c:17:e8:b8:a6:ed:
83:da:8b:54:ef:0e:2a:a5:f9:d2:4b:b5:c4:d1:74:
78:6f:8c:e3:4f:11:4f:b8:fb:92:93:51:fb:23:87:
78:7c:13:73:f8:83:0a:95:bd:ac:f6:57:a7:e7:0b:
a4:ce:f5:1d:15:de:57:ef:fe:11:43:f3:57:a7:17:
da:40:35:04:30:fb:05:29:cf:a6:ba:6f:83:07:35:
ab:a1:4d:09:73:1e:1a:06:12:f1:2d:dc:66:ca:99:
da:92:68:04:6a:b9:c6:98:dc:ac:ed:7f:94:95:b7:
05:60:d6:83:44:ff:f1:a6:d5:f2:0e:b9:d7:bd:9d:
25:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:6F:5F:BB:37:79:E8:51:9A:72:6C:AD:4B:F8:19:F0:0D:7F:5B:06
X509v3 Authority Key Identifier:
keyid:35:AC:30:8C:94:F5:7B:11:CE:E1:BA:84:EF:12:78:44:7C:67:85:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NawwjJT1exHO4bqE7xJ4RHxnhes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:e0:17:50:3b:2e:46:69:c9:f1:f1:35:6e:64:67:fe:69:ff:
fb:58:e9:ee:a4:fe:8b:ec:cd:e3:a5:fd:cb:58:72:c4:e6:ac:
1b:e4:5e:b6:cd:b1:74:dd:d0:5a:ff:18:d6:c7:67:7c:46:7f:
ca:60:fb:e7:fc:1a:19:07:03:db:af:e5:f7:4e:4d:37:ea:e4:
9a:30:47:73:2a:70:5e:21:94:37:0d:1a:b7:87:78:3c:15:4f:
e0:1e:bc:85:db:a6:29:1d:14:20:f2:1f:90:84:4c:fb:d7:ec:
d2:18:9c:ce:bd:32:eb:ef:f3:9a:15:32:8c:52:0f:2d:d2:0c:
db:4b:9b:f3:79:60:14:5f:3f:0f:61:cf:d4:49:9d:ec:73:6d:
93:e4:8c:ce:8b:37:93:50:62:52:e0:bc:c1:1a:f5:2f:da:c6:
b6:aa:4a:a2:f2:b5:2a:ff:9a:30:ae:ac:db:bb:b6:1e:41:2c:
a0:51:fe:3f:bc:91:47:84:3c:d3:85:c2:e4:0b:c9:c4:17:98:
d8:41:20:c1:45:6b:db:58:b5:9c:34:05:9d:d0:20:9e:6b:11:
8f:cc:22:bd:d7:09:77:55:49:5c:1c:ae:cc:b5:74:d1:f4:a5:
ec:03:7d:9d:98:7c:e3:55:42:c5:9b:62:14:49:7e:fa:73:9e:
9a:59:67:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 22:17:20 2025 by rpki-client