Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
File: NYx3zUAYPEEVsr8NznFuC8XQv9U.mft (raw, json)
Hash identifier: 7pnc6HzwhPbGV/sVqH2HQK9F3sUAPa+zRrFPWYDckME=
Subject key identifier: 73:84:B5:69:69:9C:44:D3:8B:E5:95:17:26:63:B1:E2:2A:1F:2D:2F
Authority key identifier: 35:8C:77:CD:40:18:3C:41:15:B2:BF:0D:CE:71:6E:0B:C5:D0:BF:D5
Certificate issuer: /CN=358c77cd40183c4115b2bf0dce716e0bc5d0bfd5
Certificate serial: 0196B6D948F9623B300913F517BB95D1D86A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
Manifest number: 029B
Signing time: Fri 09 May 2025 21:00:15 +0000
Manifest this update: Fri 09 May 2025 21:00:15 +0000
Manifest next update: Sat 10 May 2025 21:00:15 +0000
Files and hashes: 1: NYx3zUAYPEEVsr8NznFuC8XQv9U.crl (hash: gCKpeVnzUPBSXL1q5jYC0VSGg67+DXk6A/1WDFBx0FQ=)
2: zdd_itkr61DwlSbiF7xORGma-Mg.roa (hash: s7+y8n33Kdf5OFXebrrUAhH6tASSitV8ofo7STn/T1o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 17:53:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b6:d9:48:f9:62:3b:30:09:13:f5:17:bb:95:d1:d8:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=358c77cd40183c4115b2bf0dce716e0bc5d0bfd5
Validity
Not Before: May 9 21:00:15 2025 GMT
Not After : May 10 21:00:15 2025 GMT
Subject: CN=7384b569699c44d38be595172663b1e22a1f2d2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:8d:87:30:eb:2f:44:b8:9c:33:77:6a:5e:9c:
6e:74:1f:db:b6:2f:81:5f:48:a5:59:ee:1d:de:f4:
3d:74:34:78:82:4c:2e:1f:72:4b:e9:d4:67:04:1c:
2e:e9:6b:b6:7b:99:0d:80:65:30:8e:47:7c:03:b2:
58:a7:0a:03:b4:27:a3:0a:05:12:b3:55:e9:09:2e:
c7:5a:2e:32:53:ff:96:e1:6a:96:25:7c:52:88:dd:
1c:68:5c:65:4f:07:21:5c:56:6b:71:95:7d:48:17:
b5:94:f4:4f:e4:ad:f7:09:40:2e:07:43:1d:b0:dd:
5c:3f:0c:ee:f7:15:eb:9c:f6:bb:d0:91:f3:1c:3b:
f2:a0:0e:ee:a4:c3:23:65:f9:2d:0e:81:b8:6d:e8:
b8:71:f5:12:3d:19:d6:ae:b1:a8:9d:ec:c0:fc:71:
8c:dd:5f:1d:78:34:02:49:b4:cc:06:12:e6:e2:77:
0d:5f:cb:6e:56:ba:0a:66:e2:24:83:bb:2d:9c:71:
89:2a:14:46:08:8d:37:62:ce:21:64:9d:bc:7e:20:
e5:9f:ce:6d:90:0c:44:15:1f:5a:65:ad:17:15:3a:
e0:14:7b:09:0b:9f:62:fb:93:d0:6f:42:4b:6c:f7:
ec:59:f8:ba:ad:29:65:0b:8f:da:68:a9:05:2b:7a:
89:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:84:B5:69:69:9C:44:D3:8B:E5:95:17:26:63:B1:E2:2A:1F:2D:2F
X509v3 Authority Key Identifier:
keyid:35:8C:77:CD:40:18:3C:41:15:B2:BF:0D:CE:71:6E:0B:C5:D0:BF:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:e1:f8:14:b0:30:1d:9a:d8:7e:c3:a1:62:34:37:6b:da:cc:
ae:2f:a3:d8:89:83:71:c7:92:da:47:3c:1d:1f:e3:c6:2e:dc:
47:ba:d3:fd:7e:6d:a1:81:76:fb:0f:40:e7:18:0c:06:09:28:
b0:dd:29:5e:56:25:ec:7d:4c:36:04:e5:45:60:62:d4:15:42:
99:9c:8f:7c:b0:b3:5c:a2:ed:61:15:3a:64:11:2d:64:e2:9f:
86:df:72:24:c6:79:bc:f9:02:11:e9:da:ac:57:49:86:91:27:
cb:e4:50:dc:99:90:bb:e8:60:3c:da:9e:6f:45:39:9b:c7:59:
2c:46:d7:c2:a3:10:71:e3:b7:03:1b:ad:5f:9e:87:02:e2:34:
6c:e7:57:6f:11:11:c1:ac:8d:d6:9a:ae:52:b5:40:3b:9f:3f:
80:ce:27:8d:29:2d:26:35:03:bf:66:df:b4:f4:50:3f:b3:b7:
a3:52:bf:62:9d:65:df:84:7d:28:62:64:80:0b:49:c2:86:23:
8a:f9:16:ed:aa:0e:a9:a1:3d:92:fb:6f:59:79:4c:dc:28:0a:
44:0a:65:f1:8f:7d:89:79:2e:9e:4d:24:0c:37:9e:bd:cf:4c:
25:e0:41:ac:17:2d:82:be:39:de:4b:97:a6:80:a1:09:30:61:
8a:33:3d:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 01:41:01 2025 by rpki-client