Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
File: NADZSQmD598yx88Xyh6tTwX3lkY.mft (raw, json)
Hash identifier: q8D77epUfZ8Od0V2t65xttKqkfsq2tuvm/9NWj8yYdE=
Subject key identifier: 0B:3C:AF:FA:15:70:28:24:96:8C:50:7F:65:E3:00:89:A5:2D:43:8F
Authority key identifier: 34:00:D9:49:09:83:E7:DF:32:C7:CF:17:CA:1E:AD:4F:05:F7:96:46
Certificate issuer: /CN=3400d9490983e7df32c7cf17ca1ead4f05f79646
Certificate serial: 0196C2A69610715E7A62871139BBDD64C2DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
Manifest number: 06A9
Signing time: Mon 12 May 2025 04:00:19 +0000
Manifest this update: Mon 12 May 2025 04:00:19 +0000
Manifest next update: Tue 13 May 2025 04:00:19 +0000
Files and hashes: 1: NADZSQmD598yx88Xyh6tTwX3lkY.crl (hash: rspPNS3wTxwq0NpxO9Ah16nOt3GMerVAqgpW9zdOlCM=)
2: wGV9gdNmWFtWWUn9dwqAU6O3Xlw.roa (hash: e5ewBGv57i41ziAigHZZOeL98kqI4hYVQ5SbzM8SjnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 04:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:a6:96:10:71:5e:7a:62:87:11:39:bb:dd:64:c2:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3400d9490983e7df32c7cf17ca1ead4f05f79646
Validity
Not Before: May 12 04:00:19 2025 GMT
Not After : May 13 04:00:19 2025 GMT
Subject: CN=0b3caffa15702824968c507f65e30089a52d438f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:79:dd:14:de:b0:db:36:f8:fb:6c:af:aa:78:
5e:8b:90:0f:d6:bb:d5:47:36:fa:12:94:20:36:c0:
2d:08:15:8e:3f:be:67:75:2b:01:b4:17:26:5a:48:
4b:1c:e6:ba:0b:4f:e1:1f:c7:00:2b:38:17:de:48:
4a:de:a9:06:0d:db:b2:b0:4c:99:9b:2a:10:96:a0:
0d:59:22:e7:d8:70:49:43:67:61:d6:8e:c3:e0:ee:
b8:94:87:0c:97:5d:f5:48:b5:b4:9a:ba:11:1d:70:
aa:fc:2b:b2:6f:8a:0d:b0:c8:3f:87:fd:47:92:9b:
02:74:7f:2b:1c:3d:66:20:33:66:a8:98:ce:37:68:
28:e3:26:ae:7e:86:ab:5a:61:be:c6:02:57:9a:ee:
27:25:d5:b6:a3:f1:ab:72:0d:4c:b4:d1:ef:5e:93:
e5:86:3c:89:89:6e:e3:28:9c:e8:8d:2f:00:a4:9c:
29:a8:56:13:91:38:e5:67:cc:86:4d:63:fc:ed:4b:
be:1c:c7:84:b0:7a:49:99:09:32:aa:92:a9:a9:0c:
b1:26:18:dc:05:8d:e0:7d:1a:78:e4:97:21:99:99:
37:3c:20:95:d8:e1:63:1b:3a:fe:c7:f9:30:eb:5d:
ee:97:6b:11:ef:fa:1c:c8:f0:15:aa:38:20:ef:71:
ce:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:3C:AF:FA:15:70:28:24:96:8C:50:7F:65:E3:00:89:A5:2D:43:8F
X509v3 Authority Key Identifier:
keyid:34:00:D9:49:09:83:E7:DF:32:C7:CF:17:CA:1E:AD:4F:05:F7:96:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:a6:39:d7:42:0a:a9:68:b1:91:29:6f:c9:56:af:a4:5a:94:
a6:24:dd:72:20:4c:41:37:9c:7d:66:b8:64:86:57:5c:a1:86:
e6:1a:78:45:90:ea:c5:fb:26:61:5a:17:5a:85:4b:a3:54:c9:
2d:6a:9f:d7:7a:39:f0:01:bc:33:a1:09:7e:ad:2b:c0:ff:f1:
1b:3c:4f:57:03:ed:9d:03:aa:a1:cc:1b:84:2d:88:9c:c7:79:
1e:c1:a6:d7:22:91:a9:ff:66:57:db:f2:b6:25:8a:ba:dd:ba:
96:07:97:3d:09:57:4f:65:a8:07:62:d7:1b:1d:43:6e:a9:b8:
8f:7d:24:48:37:6a:40:0c:d9:ed:56:44:62:74:6e:40:b1:97:
fc:95:80:8f:da:4e:92:33:2f:80:92:e1:50:64:64:69:e7:fd:
9c:0c:fa:28:a1:b2:5a:5f:b1:f6:db:ca:0d:a1:56:41:a4:18:
34:bb:70:84:35:2a:da:75:5f:43:a7:22:cb:36:68:50:4c:d3:
20:aa:24:38:cd:2c:8e:05:28:76:8e:a9:56:15:fe:e7:10:de:
b4:78:42:00:68:54:ed:a0:a1:99:d4:69:f8:46:77:76:c8:12:
a5:cd:2e:e7:05:c9:ef:fc:99:61:23:af:0e:2d:63:d3:86:93:
be:de:97:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 12:56:04 2025 by rpki-client