Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
File: nGfqNKARpHc4cVg-w5VOeR2MAo0.mft (raw, json)
Hash identifier: mv/gbi8sFsmr6AM9pt94yF54Gs/vwTtIuHP7xGBBjpQ=
Subject key identifier: DD:27:C2:7F:D3:39:22:BA:63:9D:1C:25:63:42:29:11:DC:58:1F:1D
Authority key identifier: 9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
Certificate issuer: /CN=9c67ea34a011a4773871583ec3954e791d8c028d
Certificate serial: 0196C8045B7D2A2493E7EA61113E0A82EC6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
Manifest number: 0C1E
Signing time: Tue 13 May 2025 05:00:50 +0000
Manifest this update: Tue 13 May 2025 05:00:50 +0000
Manifest next update: Wed 14 May 2025 05:00:50 +0000
Files and hashes: 1: NCPzn1GpZq4vT4gRDeBcmpEUhRQ.roa (hash: Vq8Q1+OKJnlcLx/yX0O6NcYNdeQRXSpw2T1WMWL6+Zw=)
2: nGfqNKARpHc4cVg-w5VOeR2MAo0.crl (hash: +r0nZ/BNBTAVlgpxp3IzMnNx++n91eD409ogArKzx0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 05:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c8:04:5b:7d:2a:24:93:e7:ea:61:11:3e:0a:82:ec:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c67ea34a011a4773871583ec3954e791d8c028d
Validity
Not Before: May 13 05:00:50 2025 GMT
Not After : May 14 05:00:50 2025 GMT
Subject: CN=dd27c27fd33922ba639d1c2563422911dc581f1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a3:91:c1:e7:a3:66:90:09:67:2e:32:46:99:
8e:f7:1c:de:5b:ef:1b:b2:cb:97:34:9c:c9:0e:8b:
db:e6:aa:77:15:40:65:65:e4:04:1d:96:83:f0:de:
a7:7d:24:60:c7:4b:37:67:35:a6:a8:e4:b4:8a:07:
5b:eb:91:73:3f:ed:7b:9c:29:72:21:de:b4:21:1a:
96:15:14:4c:90:c3:2f:ae:f9:0b:22:b2:e9:8e:bb:
ea:17:98:6e:46:f3:c9:70:0e:da:e0:70:22:e6:36:
f0:1b:c0:01:e9:ad:75:f8:e8:aa:ad:fa:a2:8a:29:
7f:bb:b9:ab:77:db:e3:fc:52:62:d0:49:26:ea:76:
3e:7e:4e:a8:cc:20:e1:78:d3:b1:31:ed:17:f6:af:
09:b1:ac:37:90:ca:f3:52:cf:5f:65:e8:ee:e4:d0:
57:a8:f9:a0:08:09:41:7a:00:17:c7:9b:8c:47:1f:
a3:25:67:f4:8a:59:06:a6:46:d0:ed:ed:81:88:31:
9c:06:86:78:39:62:21:d4:7f:4d:d1:a5:4e:ef:d8:
17:e9:48:db:0b:83:30:3a:f8:53:64:97:77:7e:a0:
dd:13:8e:58:0b:54:8c:0c:0b:e2:79:fc:2b:93:6e:
36:cf:a1:15:80:20:a3:74:94:d2:1e:72:3b:61:97:
c3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:27:C2:7F:D3:39:22:BA:63:9D:1C:25:63:42:29:11:DC:58:1F:1D
X509v3 Authority Key Identifier:
keyid:9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:c0:69:46:a3:e4:21:f6:11:3e:36:64:19:01:63:e2:e0:7e:
07:df:b7:55:7f:01:13:c6:8b:ad:3c:4d:c2:db:78:4d:e2:c9:
38:2c:a6:78:cc:90:ee:26:24:36:f1:15:ff:c9:0c:42:85:8b:
b8:c0:3a:86:2c:f5:3c:bc:f2:52:0c:d8:66:eb:07:9f:65:87:
20:d8:62:8b:04:75:c6:5f:3b:41:e3:ac:f4:e5:94:3a:50:13:
55:64:20:78:ba:a5:ef:7c:3d:d9:12:24:9b:16:d4:a1:9a:5f:
e3:f6:b4:4e:c3:93:77:25:f1:80:a8:7e:26:6d:37:1c:0b:a5:
8b:96:31:70:d7:61:e8:71:31:21:89:67:9c:b3:5b:28:cf:9b:
7f:61:c0:ae:ed:71:1a:2e:08:5f:02:e0:3d:65:6f:6e:1e:cb:
56:f3:3e:dc:96:14:61:b8:1b:ae:b3:2f:d7:70:1f:03:da:9e:
c4:fe:ab:75:b5:2b:5c:47:e3:c0:03:1c:81:fc:bc:ed:ec:38:
06:7b:33:7d:03:28:4a:83:55:5a:89:bb:38:d5:1a:ae:18:ca:
3a:8a:28:4f:68:ab:c7:1a:93:eb:ea:b5:87:e7:08:c7:53:c5:
7f:8e:61:66:cd:dd:a9:a8:67:80:0c:ee:52:7e:69:ff:30:65:
f3:10:25:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 13:40:30 2025 by rpki-client