Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/fb7864-5795-4208-abe0-08542454d16b/1/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.mft
File: nlBfLmeh5gSz-WPOTDZ9GVi9S3g.mft (raw, json)
Hash identifier: hLBUgwij42G9lOPNtIrUOcOYPli7aBg6rVQ8OLlE3L8=
Subject key identifier: 09:9E:95:F8:81:87:7F:D9:65:41:01:67:34:31:93:D8:8C:6D:A6:ED
Authority key identifier: 9E:50:5F:2E:67:A1:E6:04:B3:F9:63:CE:4C:36:7D:19:58:BD:4B:78
Certificate issuer: /CN=9e505f2e67a1e604b3f963ce4c367d1958bd4b78
Certificate serial: 0196C3BA0351B1815944C71788B1961D3DE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/fb7864-5795-4208-abe0-08542454d16b/1/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.mft
Manifest number: 153A
Signing time: Mon 12 May 2025 09:01:09 +0000
Manifest this update: Mon 12 May 2025 09:01:09 +0000
Manifest next update: Tue 13 May 2025 09:01:09 +0000
Files and hashes: 1: 9v5VLNQmHUC6c_AtiguXiv9VBlw.roa (hash: iNy4HwSBG8Jz28fsrZBO8bxra5HKthytWN8pQ51S61o=)
2: nlBfLmeh5gSz-WPOTDZ9GVi9S3g.crl (hash: Dfa+TIO1TmxzlVBY2+sUaTwRsmLdpL4m82NGJRjo1lo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/fb7864-5795-4208-abe0-08542454d16b/1/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/fb7864-5795-4208-abe0-08542454d16b/1/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 09:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:ba:03:51:b1:81:59:44:c7:17:88:b1:96:1d:3d:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e505f2e67a1e604b3f963ce4c367d1958bd4b78
Validity
Not Before: May 12 09:01:09 2025 GMT
Not After : May 13 09:01:09 2025 GMT
Subject: CN=099e95f881877fd965410167343193d88c6da6ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0b:99:98:7b:a0:fb:9e:3b:14:70:e9:df:77:
29:42:2d:c8:15:31:9a:10:85:8c:4c:00:d5:d2:18:
dc:21:9c:8e:dc:26:19:5d:48:4c:90:93:2a:0e:b9:
4a:b0:f3:86:0b:f4:2c:2a:9f:b1:23:4e:7b:63:3b:
2e:3e:c6:62:56:c4:e3:75:f9:ad:ae:69:60:d6:a6:
e9:4f:75:db:c9:fa:8a:fa:53:55:aa:a4:56:15:3e:
7b:45:ed:76:c1:ad:79:78:2e:d4:18:f0:8f:14:01:
98:30:6a:d4:27:8d:72:bc:23:40:48:26:4f:54:50:
79:47:04:22:04:65:15:da:36:c9:6f:8d:50:62:e7:
67:2e:2a:85:03:95:d1:bb:fa:87:87:d7:10:93:fa:
6b:ed:da:e7:e2:19:2b:fa:a1:f0:93:35:3a:d3:88:
59:00:bf:1b:68:96:d8:ad:f0:ce:b3:b7:d8:8d:b1:
ec:f6:02:af:63:6e:7f:59:7d:45:74:e7:3b:37:1d:
ad:63:72:26:da:48:a9:e5:dd:37:a1:1b:ab:1e:d0:
27:50:8c:c0:44:00:12:e5:8a:29:51:e0:15:49:b3:
35:47:86:bb:b2:07:1b:31:38:13:8d:5d:73:ab:d7:
c2:ec:eb:81:4d:63:14:18:06:ce:01:50:f5:77:bd:
83:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:9E:95:F8:81:87:7F:D9:65:41:01:67:34:31:93:D8:8C:6D:A6:ED
X509v3 Authority Key Identifier:
keyid:9E:50:5F:2E:67:A1:E6:04:B3:F9:63:CE:4C:36:7D:19:58:BD:4B:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/fb7864-5795-4208-abe0-08542454d16b/1/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/fb7864-5795-4208-abe0-08542454d16b/1/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:e9:f6:08:70:1b:25:38:92:0d:ee:7b:b7:03:39:f5:f4:09:
3b:bc:e0:7d:88:57:bf:e4:3a:a3:66:10:55:64:76:50:f0:41:
88:3d:43:ec:65:42:dd:3e:98:12:56:e7:f3:32:75:89:13:ac:
50:11:ac:f8:cc:84:88:29:c6:7f:49:4e:a5:56:f8:29:dc:3e:
42:44:2c:5b:b1:39:13:5f:02:5e:6f:cb:c3:ed:8a:57:e3:c1:
e8:91:87:65:42:d2:06:20:a4:6d:d4:d0:0f:65:22:04:b1:79:
f0:64:ea:43:02:34:f3:c6:e7:fc:bc:03:72:19:f6:d1:60:22:
6d:68:c8:a2:80:17:84:73:5d:2c:f6:6f:05:55:36:bc:de:e5:
c1:b2:d8:2f:14:80:3d:cf:dd:7c:9a:ec:33:e3:f6:0b:46:b3:
07:41:69:73:13:fd:91:ee:de:2d:15:aa:8f:84:d7:9c:1f:cb:
f7:06:0e:be:c4:04:22:85:d8:22:07:be:d7:c9:76:27:4b:dd:
96:98:50:60:f0:3d:bd:39:d4:fd:85:ab:1a:2a:13:78:d2:6c:
95:0d:f0:17:21:ae:c6:50:06:4b:cb:c2:0c:5d:17:60:f5:08:
81:6c:9d:fc:ca:07:1a:c1:29:e3:0a:82:77:c1:37:b5:66:9d:
43:bc:0a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 19:12:55 2025 by rpki-client