Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft
File: nj3BkwnmeMFIJfxyCDyh3seEP00.mft (raw, json)
Hash identifier: CHSe2YeQQDX0IZx2iUcERQl6bZvZaq6Qng1xYUlslwo=
Subject key identifier: 29:0E:FC:26:45:22:04:65:DB:D7:CD:18:79:E8:52:AE:06:B0:41:A6
Authority key identifier: 9E:3D:C1:93:09:E6:78:C1:48:25:FC:72:08:3C:A1:DE:C7:84:3F:4D
Certificate issuer: /CN=9e3dc19309e678c14825fc72083ca1dec7843f4d
Certificate serial: 0196DB541E42778C8578420E644B1B40E192
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nj3BkwnmeMFIJfxyCDyh3seEP00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft
Manifest number: 1360
Signing time: Fri 16 May 2025 23:00:45 +0000
Manifest this update: Fri 16 May 2025 23:00:45 +0000
Manifest next update: Sat 17 May 2025 23:00:45 +0000
Files and hashes: 1: JbUoXDLL57xF-6BVNBln0RftcZM.roa (hash: t8EC2530fZ+9x7+BNfg3gfNISOK9q19vZC97hYMQk9g=)
2: nj3BkwnmeMFIJfxyCDyh3seEP00.crl (hash: JD9FTR0QnuxqENw0z7fgCTc8dNKPFr5rYiq4hsKfUYk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft
rsync://rpki.ripe.net/repository/DEFAULT/nj3BkwnmeMFIJfxyCDyh3seEP00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 17:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:db:54:1e:42:77:8c:85:78:42:0e:64:4b:1b:40:e1:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e3dc19309e678c14825fc72083ca1dec7843f4d
Validity
Not Before: May 16 23:00:45 2025 GMT
Not After : May 17 23:00:45 2025 GMT
Subject: CN=290efc2645220465dbd7cd1879e852ae06b041a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:06:13:7f:da:c6:6a:b3:5d:fd:c6:f4:ac:c5:
13:6b:42:21:f6:3d:c8:c2:e7:f2:1f:1a:f2:5c:71:
c1:c6:d2:b0:ed:29:77:09:52:61:20:97:ee:6c:a7:
47:71:d9:d9:c2:2c:f8:16:b4:6e:e0:6f:7f:9e:5c:
d9:00:ee:a8:32:49:ba:3a:a2:15:84:7b:7f:c2:86:
d8:bd:fd:85:10:2e:be:59:9b:d2:17:0f:28:4b:19:
a0:72:e4:f2:83:d2:d6:9f:74:44:cb:30:c1:63:1e:
b1:e0:04:a8:38:77:b0:ea:20:4b:05:58:50:0b:66:
fc:ae:77:47:e1:06:44:a7:6a:a7:c8:9e:eb:c0:a1:
83:9e:99:1b:ba:e7:0c:f2:50:f3:2e:39:fb:2f:b3:
bb:50:04:49:a4:98:27:d8:1f:32:a0:61:89:04:73:
b1:ec:44:de:4c:00:88:2d:fa:d2:b2:c6:f2:21:78:
a1:6a:fb:d0:6f:ea:c6:39:ba:22:9f:22:ce:9c:9f:
68:93:5c:38:07:39:8e:b3:a0:48:75:02:3f:95:e0:
f8:e9:7c:42:19:c7:fc:23:e0:a8:a2:3c:45:78:17:
5f:3a:b4:1f:9f:4b:b8:2a:29:69:af:3f:45:c0:8d:
88:9f:4f:d1:f7:13:e4:46:8b:7c:1d:e4:1f:f8:f6:
d7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:0E:FC:26:45:22:04:65:DB:D7:CD:18:79:E8:52:AE:06:B0:41:A6
X509v3 Authority Key Identifier:
keyid:9E:3D:C1:93:09:E6:78:C1:48:25:FC:72:08:3C:A1:DE:C7:84:3F:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nj3BkwnmeMFIJfxyCDyh3seEP00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:d6:7e:74:f5:b6:18:23:d4:4a:97:1d:41:8f:04:bc:6d:5e:
fc:29:a5:41:7e:0b:ab:de:58:bd:e0:38:3d:e3:af:4e:62:a2:
d6:e8:39:6d:22:a3:7c:06:d6:3e:11:0e:96:f4:44:66:99:96:
0b:31:4f:3f:0e:57:d9:34:10:96:07:ef:b1:cb:95:7b:a4:cc:
7e:6e:76:65:bb:66:c4:fe:ff:33:62:bf:9b:66:b2:54:67:f2:
76:f5:70:88:6d:5f:be:4f:c5:84:4c:df:a7:93:5b:4e:e5:47:
a4:e9:22:00:46:b9:a2:a8:c2:48:53:d3:33:d6:6c:7e:68:d5:
e5:2c:24:08:07:fe:d3:c8:6e:f1:62:e7:52:8d:7a:24:39:28:
86:3a:e7:46:5f:97:cc:c7:ed:bc:4e:73:d0:f5:34:6c:1f:14:
ff:78:c7:1d:67:98:cf:73:ed:86:df:29:51:66:3d:d7:86:20:
92:4b:36:c6:38:ca:75:96:34:54:64:1d:b5:07:ea:ca:f0:c9:
51:17:94:13:d9:95:5b:d3:82:c1:79:72:0e:e6:d0:f5:fb:7d:
0c:b3:9c:48:a3:c3:2c:95:db:1f:f3:f6:ee:82:5d:ea:ea:b3:
2a:4e:41:8b:59:19:fc:fc:e6:01:8a:e0:44:e6:df:f4:00:ab:
42:50:7a:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 02:30:29 2025 by rpki-client