Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
File: nlY8Qm0ark7R5_WVNnSQIgiehHk.mft (raw, json)
Hash identifier: MOTXSI4xFHuctXCQoNDaaPxnst/tp6qN/TeA87pLg8M=
Subject key identifier: 73:09:E0:1F:2A:B2:F4:12:31:73:BB:4B:EB:19:CC:27:52:70:C7:31
Authority key identifier: 9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
Certificate issuer: /CN=9e563c426d1aae4ed1e7f59536749022089e8479
Certificate serial: 0196BF00DED695ABFB5A8A4DC2EA2F9E819B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
Manifest number: 09F6
Signing time: Sun 11 May 2025 11:00:27 +0000
Manifest this update: Sun 11 May 2025 11:00:27 +0000
Manifest next update: Mon 12 May 2025 11:00:27 +0000
Files and hashes: 1: DLPCyIKM7jz79PsqVnrxNoMgYXE.roa (hash: +QgaTeTZpZ2fDtls8hcOtAF0lYWHQbDmqjy56TBm3AY=)
2: nlY8Qm0ark7R5_WVNnSQIgiehHk.crl (hash: eaPa2ob3OJyklIEuWxHw0wps4ILM/SGJLty2O62FsAo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 11:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:00:de:d6:95:ab:fb:5a:8a:4d:c2:ea:2f:9e:81:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e563c426d1aae4ed1e7f59536749022089e8479
Validity
Not Before: May 11 11:00:27 2025 GMT
Not After : May 12 11:00:27 2025 GMT
Subject: CN=7309e01f2ab2f4123173bb4beb19cc275270c731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:59:ea:22:7d:03:30:be:6f:bd:92:51:4b:7d:
1e:05:29:36:16:95:ae:65:31:f2:5b:f1:29:85:be:
ce:f8:f8:31:89:2b:a6:e9:a6:ff:77:b7:b8:d5:35:
70:5a:4d:8d:ba:4d:40:81:d2:31:6c:95:50:67:d1:
3a:ba:3e:e8:95:be:92:22:a3:88:de:ad:a9:71:ee:
37:d6:60:f7:63:25:cf:3b:6f:c3:c6:aa:cb:61:d1:
57:e8:39:66:d7:f4:63:ce:03:c5:77:8b:8d:c3:63:
fa:aa:db:64:7b:1d:fb:b1:4c:2b:9a:57:65:83:07:
92:44:b9:92:9e:8f:bd:4b:80:20:e2:36:55:cf:f3:
92:2e:96:de:90:12:3b:f1:09:42:7d:1f:6c:07:d3:
d1:ff:13:47:0c:77:d7:b8:d2:87:81:6d:f5:2c:b4:
e0:da:93:ad:46:0e:a2:91:f4:97:00:ec:7a:16:fd:
49:35:f0:aa:b1:b3:c0:c1:3a:ae:ab:63:b0:87:37:
9b:ca:a6:c0:6d:9f:df:19:d5:54:76:cb:a5:4a:61:
46:de:e2:b4:5c:b2:90:f3:0b:4f:2f:fb:4a:2b:42:
88:bc:41:23:04:e4:98:ea:95:84:d9:12:84:a0:fe:
56:05:3f:96:37:46:2a:2a:b1:ce:8c:7b:f2:2d:9a:
00:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:09:E0:1F:2A:B2:F4:12:31:73:BB:4B:EB:19:CC:27:52:70:C7:31
X509v3 Authority Key Identifier:
keyid:9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:ff:01:66:c7:a2:0d:dc:d4:4d:4f:08:63:a9:58:03:cf:7f:
57:03:f5:ca:2c:3c:3b:20:05:9d:be:6f:ae:f7:52:58:b2:0e:
6c:92:5d:85:f3:af:cf:6c:22:ac:51:be:8c:f9:a8:05:47:b7:
c1:ce:7d:62:74:be:28:2d:b9:81:9d:22:f7:f4:f8:c6:b1:5e:
2d:0c:20:2e:9c:cf:1e:d9:f6:83:a6:33:d1:b0:d8:1e:46:55:
66:1b:84:b4:35:36:9f:90:2b:8b:b0:e3:71:7a:fb:fa:e1:a5:
04:a3:b6:9e:8b:a0:83:cb:3c:87:63:c0:5a:a5:b6:a9:be:69:
58:a1:24:4f:5c:7c:b7:82:94:89:bc:1e:e7:34:ba:1b:ae:da:
f0:43:9d:51:b9:8b:5b:d2:cc:7b:f2:d2:0b:16:59:34:82:b9:
8a:c4:df:55:6c:73:f9:cb:d8:52:cb:37:17:8b:11:03:7e:69:
3a:bf:74:2b:47:77:70:ff:23:d8:70:9b:7c:da:6f:bd:d3:77:
3a:44:9f:b7:61:9d:42:86:11:14:9e:66:7a:e2:3a:a2:1d:01:
b7:98:86:84:58:62:3d:6b:f7:95:25:97:e7:3e:b5:ee:01:6a:
39:cc:63:82:2d:85:34:c1:92:61:6f:8e:87:83:ca:13:18:9a:
71:b6:cb:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 18:25:48 2025 by rpki-client