Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
File: nzbQijzYpC9Goslt_XLtjO4nlHc.mft (raw, json)
Hash identifier: A5Khu5eff+p96mRJqEfih95YFT4HrOthXb+F7PEYC04=
Subject key identifier: 76:EF:35:BE:D7:15:51:DE:FC:B0:7B:68:65:2B:F4:10:07:00:B2:4B
Authority key identifier: 9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
Certificate issuer: /CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Certificate serial: 0196C4953B7A2409999CD1E0DF524824A485
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
Manifest number: 0B3F
Signing time: Mon 12 May 2025 13:00:36 +0000
Manifest this update: Mon 12 May 2025 13:00:36 +0000
Manifest next update: Tue 13 May 2025 13:00:36 +0000
Files and hashes: 1: nzbQijzYpC9Goslt_XLtjO4nlHc.crl (hash: CPicU3Uw/XofgvjuV1HhO2fymHbfb/ATtcfZJdmGK4k=)
2: twzQnUgBAT35ET2oNZWOjjEoBE4.roa (hash: HIWNIMTAhxf1Wnub1ymBGmdU28kJ6snFsV9+PWAEB7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 13:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:95:3b:7a:24:09:99:9c:d1:e0:df:52:48:24:a4:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Validity
Not Before: May 12 13:00:36 2025 GMT
Not After : May 13 13:00:36 2025 GMT
Subject: CN=76ef35bed71551defcb07b68652bf4100700b24b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:01:89:75:48:12:a6:6e:a1:cb:a0:b0:55:f7:
ec:ca:0f:f5:f7:cf:23:4a:a1:1f:02:fb:e1:f9:ec:
83:55:19:3f:e3:e4:17:58:1f:60:89:89:01:69:49:
a0:65:c6:e9:af:71:9a:9c:92:57:50:d9:7e:83:d4:
97:42:3a:bf:b5:e2:77:23:86:0e:4a:f8:84:53:e2:
9f:3c:35:4f:e4:64:6b:04:db:c3:b1:e6:da:0b:13:
fa:2b:4e:bc:57:cb:4e:14:64:b8:6b:df:37:2b:56:
83:d5:47:57:d8:72:44:64:cf:9a:27:6e:f0:a8:06:
d5:d5:6f:4a:5c:2d:53:31:3c:44:0b:ac:1a:fb:a7:
f4:c9:84:c0:5a:17:65:a0:39:8f:d3:b8:a4:b1:27:
6a:11:09:6b:7d:08:c6:d5:22:23:e4:55:82:75:7a:
47:df:3a:24:11:b9:82:71:b7:46:ae:09:b3:a5:c0:
b8:66:bc:67:e7:d5:d4:47:80:34:14:12:d8:fc:a5:
83:a8:e6:61:8e:67:45:4b:23:14:c8:f9:6c:32:07:
c5:49:9c:35:59:ff:e4:eb:2f:da:a0:9b:e2:f6:6f:
5f:98:69:1f:4c:48:8b:7b:90:56:48:09:9c:98:92:
e7:5e:b7:5f:14:d2:f7:dd:ae:58:d7:6d:3a:46:61:
4c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:EF:35:BE:D7:15:51:DE:FC:B0:7B:68:65:2B:F4:10:07:00:B2:4B
X509v3 Authority Key Identifier:
keyid:9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:7d:8c:f0:01:fb:8b:a7:3f:e3:e6:bf:6e:dc:ad:d7:7c:13:
e0:d3:6b:64:ca:e7:8c:ed:59:36:11:92:26:0f:92:c4:d2:cd:
35:4e:04:08:c2:70:f1:e0:56:f1:0c:b0:94:74:84:0f:b7:7d:
05:5c:d6:64:38:4c:ee:58:1e:52:78:11:a2:1f:e7:dc:cd:1c:
f5:f6:46:d1:b1:66:7c:fb:00:a0:99:79:ea:39:d4:6f:13:fc:
d6:b2:fe:20:03:06:3b:7b:8b:28:3f:30:d8:dd:b2:8e:04:de:
61:05:03:74:71:0b:82:05:d5:7d:42:bf:f5:5e:c9:e3:87:31:
14:05:ec:a1:bb:32:77:67:99:57:1f:8a:93:93:8f:30:3e:4a:
75:51:a7:73:81:87:78:f5:cd:bb:b9:73:a9:65:51:98:e5:19:
58:54:0c:34:de:5f:f0:8c:fb:2e:d5:43:7a:ed:78:16:a3:4a:
90:96:29:29:c9:de:74:61:e9:56:47:3e:f6:3e:f4:01:fb:18:
04:04:66:f9:fe:cf:c3:8c:b9:f7:52:bf:09:7f:89:21:19:3f:
ae:eb:6d:56:0c:c7:8f:2a:c7:c4:31:f2:3e:ea:76:e4:17:25:
da:d3:64:65:da:d0:55:58:e3:ee:2c:7b:2d:64:ef:de:2f:ef:
7a:2b:9c:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 19:53:06 2025 by rpki-client