Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
File: nAMai2oolAx5NrpueCuUoJYr-yc.mft (raw, json)
Hash identifier: TfyEQpYH/Et641qmQgjM4R4xq4BTxOZZPiyshVDwqLY=
Subject key identifier: 48:C3:94:41:96:48:F4:3E:3C:4D:39:67:55:B5:05:3F:AA:17:74:59
Authority key identifier: 9C:03:1A:8B:6A:28:94:0C:79:36:BA:6E:78:2B:94:A0:96:2B:FB:27
Certificate issuer: /CN=9c031a8b6a28940c7936ba6e782b94a0962bfb27
Certificate serial: 0196B96CA24DA3C80EED5A346FF2A26B5809
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
Manifest number: 02C1
Signing time: Sat 10 May 2025 09:00:26 +0000
Manifest this update: Sat 10 May 2025 09:00:26 +0000
Manifest next update: Sun 11 May 2025 09:00:26 +0000
Files and hashes: 1: nAMai2oolAx5NrpueCuUoJYr-yc.crl (hash: OIVEYSzgA/YgauB5Ve+UMAVXiN4cBOzQNk0CZP+oWcs=)
2: sazfzVz6q9bIns0N5tJ_KIxOhyU.roa (hash: 7Dx7RnLHW4HsXUHgAbio+tOs+19yMbUTjmWX8tX1e1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:6c:a2:4d:a3:c8:0e:ed:5a:34:6f:f2:a2:6b:58:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c031a8b6a28940c7936ba6e782b94a0962bfb27
Validity
Not Before: May 10 09:00:26 2025 GMT
Not After : May 11 09:00:26 2025 GMT
Subject: CN=48c394419648f43e3c4d396755b5053faa177459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:75:53:5c:3b:7d:eb:b8:be:cd:1a:fd:12:8a:
7f:8c:bf:ea:fa:c8:56:b8:7f:b9:8e:16:70:51:ef:
f8:01:bf:d1:54:db:c5:ed:75:12:5c:40:86:3a:9b:
3d:66:d5:bf:df:c1:db:4b:92:43:f5:cb:0f:50:ea:
68:3e:43:4b:dc:79:aa:62:9f:b1:6b:c0:47:99:80:
f9:a0:ab:f9:4c:e6:52:7e:e2:1a:10:1b:62:fa:58:
74:3b:5e:f5:1e:e0:53:5b:83:0d:da:0e:13:bf:42:
d4:c2:8e:3a:83:8e:29:be:8d:82:6b:73:45:82:41:
62:bb:10:75:d9:53:f5:bb:54:99:e1:94:f2:6b:73:
c3:a8:3a:1a:f0:48:20:3a:5a:81:f5:d9:4b:13:89:
62:81:2b:52:51:f7:63:46:4c:e4:34:da:0c:d2:e4:
84:2f:b0:15:44:b0:50:fc:14:72:96:7c:74:de:55:
d0:f1:40:21:30:c8:c4:47:5a:20:76:a8:f0:da:7d:
3f:86:27:45:ef:57:37:e9:bf:29:e7:f9:a1:16:cd:
6c:95:f5:5c:7b:7d:a0:61:01:1a:4e:81:bb:45:ee:
30:a3:72:a3:d0:7f:54:73:3d:2d:3c:fe:31:15:6d:
65:a3:ba:43:92:0b:a2:4e:8d:f4:f6:3a:dd:62:40:
4c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:C3:94:41:96:48:F4:3E:3C:4D:39:67:55:B5:05:3F:AA:17:74:59
X509v3 Authority Key Identifier:
keyid:9C:03:1A:8B:6A:28:94:0C:79:36:BA:6E:78:2B:94:A0:96:2B:FB:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:4c:5b:f6:31:31:77:ea:f7:2e:b5:00:bd:d7:d5:95:f1:03:
cd:59:3f:a0:c1:e5:df:48:13:47:60:6f:2e:8f:4d:fb:d3:59:
25:70:87:23:75:7d:8a:d1:1c:4e:11:10:2c:f8:00:ef:5e:fc:
e8:82:1e:73:90:c4:a3:20:71:be:ec:c5:9e:4b:56:01:f8:6e:
49:c7:a5:9d:3c:2a:1c:da:d2:9c:47:fb:57:3c:01:8b:85:ca:
11:36:e0:84:bf:83:a5:13:37:35:b8:95:4a:b8:0a:71:44:7b:
93:bb:09:c1:fe:5f:aa:5d:f2:bd:10:4c:62:8a:56:ff:11:d0:
91:2f:4a:33:ef:4f:07:78:d0:1c:6f:25:4c:3b:ae:63:1a:fe:
97:35:06:97:79:b7:92:85:54:ab:04:d5:b1:19:86:ac:7a:9f:
b9:da:60:2d:c0:15:22:fc:45:1f:43:a6:14:49:3d:61:ba:ae:
57:1b:6d:ef:24:eb:6d:73:d8:87:3f:19:72:9c:1c:85:67:af:
1d:23:29:52:71:c7:69:04:25:11:3b:1f:eb:c1:e0:65:86:7a:
63:5d:14:0b:62:cb:cc:71:f5:cd:0e:a5:e7:08:ca:28:e8:e2:
aa:5d:99:8a:b5:01:38:dc:94:9d:d2:eb:82:56:a1:f0:8e:fd:
dc:ae:90:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 13:24:45 2025 by rpki-client