Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/afd71b-0268-4409-a383-584a76399414/1/NJxIN9k5hA1fbHSqwINm70v-SHQ.mft
File: NJxIN9k5hA1fbHSqwINm70v-SHQ.mft (raw, json)
Hash identifier: bAAel2FRGUfAt1VcjEE0hGtFlhKRfYxmLxcCxHIhOnY=
Subject key identifier: E3:EA:46:71:AB:06:3C:D7:77:2D:3C:A9:77:85:8C:F3:2A:1F:BF:12
Authority key identifier: 34:9C:48:37:D9:39:84:0D:5F:6C:74:AA:C0:83:66:EF:4B:FE:48:74
Certificate issuer: /CN=349c4837d939840d5f6c74aac08366ef4bfe4874
Certificate serial: 0196BF6F831E05D51CCD8570190D06F68A44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJxIN9k5hA1fbHSqwINm70v-SHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/afd71b-0268-4409-a383-584a76399414/1/NJxIN9k5hA1fbHSqwINm70v-SHQ.mft
Manifest number: 0121
Signing time: Sun 11 May 2025 13:01:18 +0000
Manifest this update: Sun 11 May 2025 13:01:18 +0000
Manifest next update: Mon 12 May 2025 13:01:18 +0000
Files and hashes: 1: NJxIN9k5hA1fbHSqwINm70v-SHQ.crl (hash: x5M8e/ecyvQvU9qwIUKGqpnI2qCX1jOe6wPKjM+2NCc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/afd71b-0268-4409-a383-584a76399414/1/NJxIN9k5hA1fbHSqwINm70v-SHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/afd71b-0268-4409-a383-584a76399414/1/NJxIN9k5hA1fbHSqwINm70v-SHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/NJxIN9k5hA1fbHSqwINm70v-SHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:6f:83:1e:05:d5:1c:cd:85:70:19:0d:06:f6:8a:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349c4837d939840d5f6c74aac08366ef4bfe4874
Validity
Not Before: May 11 13:01:18 2025 GMT
Not After : May 12 13:01:18 2025 GMT
Subject: CN=e3ea4671ab063cd7772d3ca977858cf32a1fbf12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:66:87:f9:a8:bc:59:91:64:9b:b3:30:25:bc:
1c:7b:42:b8:29:70:c1:bd:bc:2c:87:41:75:34:20:
df:60:e4:d4:3e:6d:f8:e6:be:d2:58:4b:c0:b6:1e:
9b:94:eb:60:49:50:88:a8:b2:b3:38:46:77:e2:3e:
b0:f2:a8:7f:e3:c7:2c:22:fd:65:ae:d9:6d:8e:77:
c2:e4:0a:c8:81:cc:a0:f6:5b:52:fb:06:62:42:9b:
89:79:61:24:8b:11:02:d3:61:43:9c:41:c1:ed:a5:
3f:82:64:24:63:ad:44:81:06:32:b9:35:e7:6c:f5:
8d:f0:72:a7:d4:ef:9a:0c:6b:56:07:0e:14:e9:41:
8f:27:3a:9b:71:4f:e9:90:80:16:2f:02:2c:2d:87:
8a:8a:0d:87:0f:04:0c:3a:7d:eb:03:76:ca:fa:9c:
c7:0c:78:e1:26:91:42:bf:81:59:05:ad:15:b9:90:
2a:95:f7:f7:3c:9e:b3:b4:a7:d0:6d:15:bc:18:a5:
70:05:7a:59:f4:86:fc:3a:b7:d4:0f:28:de:75:21:
8b:34:0f:c5:d2:82:63:22:70:05:80:1d:8e:06:cd:
ad:13:1d:11:1f:44:58:f3:03:24:10:50:fa:25:86:
11:3d:58:6a:31:55:91:f5:8d:ff:9c:2e:a9:f5:d9:
1c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:EA:46:71:AB:06:3C:D7:77:2D:3C:A9:77:85:8C:F3:2A:1F:BF:12
X509v3 Authority Key Identifier:
keyid:34:9C:48:37:D9:39:84:0D:5F:6C:74:AA:C0:83:66:EF:4B:FE:48:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJxIN9k5hA1fbHSqwINm70v-SHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/afd71b-0268-4409-a383-584a76399414/1/NJxIN9k5hA1fbHSqwINm70v-SHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/afd71b-0268-4409-a383-584a76399414/1/NJxIN9k5hA1fbHSqwINm70v-SHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:2d:1a:b0:8a:47:1d:5a:73:52:e8:80:13:9d:de:09:2b:23:
bd:b9:a0:e9:5c:61:18:b7:87:9c:8a:da:6e:0a:6a:66:14:5d:
c1:90:a9:f9:ce:20:e8:5f:06:fc:ad:d1:42:7f:59:c8:d9:43:
9b:6f:e0:e4:45:f8:40:ed:ca:93:eb:bf:79:d7:7d:46:87:29:
9c:35:47:6d:f1:56:89:cd:8f:15:36:80:f3:fa:be:b1:19:2b:
65:59:02:16:44:4a:e4:fc:a9:93:0c:0c:02:6c:18:61:4f:31:
9c:c0:3f:d0:7f:6d:63:f5:f4:56:02:10:47:de:e6:46:b7:2f:
fb:78:24:75:f3:b1:c6:ea:d9:b2:82:d4:c7:e7:e6:a9:27:a4:
7c:1d:78:ba:bd:54:7b:25:38:a7:2c:cd:9c:c1:83:81:aa:e9:
03:75:30:9b:c8:e6:cc:69:1e:da:37:af:08:3f:0e:da:1e:b5:
aa:a4:4e:1b:7c:50:40:3f:97:1d:b0:23:fa:14:50:2e:e1:16:
67:56:f3:52:ac:83:13:cf:ca:24:51:ed:b6:1d:28:0c:df:e3:
62:e7:7c:d9:d9:50:f2:6f:df:c4:b4:3d:da:cd:86:ef:f6:29:
f5:6b:26:4b:cc:99:a7:df:d1:5e:e3:2e:83:f0:56:51:3c:72:
b3:03:1c:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:13:06 2025 by rpki-client