Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft
File: NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft (raw, json)
Hash identifier: IliIXaO6w20S++EXmQwvWEDFSbA3HPoBm3xKwjcU+Uk=
Subject key identifier: AD:8B:FB:CC:B0:FB:2A:B6:EF:9B:44:83:9C:7F:27:7E:2A:9E:B4:96
Authority key identifier: 35:14:FF:67:F3:B8:D4:F6:F6:BD:A2:3E:CB:BC:7B:0F:09:FE:60:80
Certificate issuer: /CN=3514ff67f3b8d4f6f6bda23ecbbc7b0f09fe6080
Certificate serial: 0196C7293FA5EED6CCDB21F2E9C9478D1A4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft
Manifest number: 0E9E
Signing time: Tue 13 May 2025 01:01:31 +0000
Manifest this update: Tue 13 May 2025 01:01:31 +0000
Manifest next update: Wed 14 May 2025 01:01:31 +0000
Files and hashes: 1: NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.crl (hash: 4ydvvnyBtkVcT1WDkjvTc59jEr1s8Qq5hrkga6O52N0=)
2: j7uIJiPhcZxIrIipfuK1rqo935Y.roa (hash: 7J2YXXzcaOGsarNoeRvp5q8jGItI0Hy8Dxn5tPP/JpQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft
rsync://rpki.ripe.net/repository/DEFAULT/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 20:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:29:3f:a5:ee:d6:cc:db:21:f2:e9:c9:47:8d:1a:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3514ff67f3b8d4f6f6bda23ecbbc7b0f09fe6080
Validity
Not Before: May 13 01:01:31 2025 GMT
Not After : May 14 01:01:31 2025 GMT
Subject: CN=ad8bfbccb0fb2ab6ef9b44839c7f277e2a9eb496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3a:7c:af:d9:e3:ad:de:d4:9f:a4:8f:12:fc:
5c:2c:b2:95:94:fd:07:7e:2a:8c:63:dd:72:54:73:
d4:70:a2:87:ed:9c:11:cc:f8:af:ce:80:2e:e6:41:
fb:16:b5:cf:35:1c:e2:85:72:75:fb:16:bd:06:6f:
07:66:af:ba:14:5d:4e:b3:f5:2c:2d:ec:7e:41:5e:
08:f7:81:fd:05:14:b5:bc:df:8e:28:46:21:84:19:
20:89:8f:4a:4f:69:2a:83:27:f5:37:1f:c8:9b:c3:
ac:90:32:e9:0f:1f:30:99:30:c4:27:88:e5:76:de:
19:48:2d:50:27:53:90:79:a3:70:cb:51:88:63:fd:
90:15:30:8e:83:b7:33:24:97:42:5d:de:ec:ce:c9:
06:98:5f:bc:70:1c:b1:32:b4:08:48:a3:44:ea:8d:
8e:2b:02:e9:8b:9d:4d:ed:4e:5d:b5:7e:df:8a:51:
31:54:0c:90:c0:7e:c5:1a:f7:2e:e8:5c:c8:03:60:
8c:84:f7:a1:6e:0a:02:d3:03:2c:ab:b3:c7:62:0a:
ca:39:d4:d0:1b:31:3a:24:fb:f2:71:32:5b:ea:9d:
29:5d:a2:67:c6:fc:69:b9:6e:fa:db:ee:7b:6f:78:
b0:e9:85:6b:79:b5:0c:0d:90:3e:aa:9c:f0:94:72:
8c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:8B:FB:CC:B0:FB:2A:B6:EF:9B:44:83:9C:7F:27:7E:2A:9E:B4:96
X509v3 Authority Key Identifier:
keyid:35:14:FF:67:F3:B8:D4:F6:F6:BD:A2:3E:CB:BC:7B:0F:09:FE:60:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:c2:b5:31:92:86:8f:32:7d:02:02:eb:33:a8:bc:d9:a9:27:
53:3c:8a:3a:b7:45:bb:f4:24:c2:db:39:44:5f:6f:b5:af:e5:
45:bb:76:61:dc:d1:6c:35:ac:fa:16:a9:8d:69:04:0b:a1:0e:
93:4d:a0:7b:30:45:5d:f6:07:25:4e:a0:5b:eb:de:82:a6:ab:
dd:6f:32:6f:cc:49:ce:08:da:10:36:0b:da:1d:c3:fb:c3:69:
06:9f:3f:4c:e4:bb:8b:01:2a:90:7a:d3:8c:fe:e3:8d:0e:cd:
8f:ae:5c:59:67:41:c6:d7:e9:00:b6:85:9f:84:f3:55:d0:bd:
f6:f3:8a:d5:6a:94:78:0e:a6:af:cb:d6:4e:54:44:c7:ca:03:
2c:a5:c1:f7:d4:ba:94:85:fc:bd:c4:00:42:bc:f6:d6:82:33:
5f:c5:99:19:5c:0f:fc:c8:1d:ed:ac:14:57:79:7a:a5:03:dd:
ce:75:13:f4:be:a8:ee:6b:b7:f4:f3:39:52:45:e7:7b:51:c9:
84:1e:d3:cb:35:d7:7a:2a:27:4b:0a:91:b1:47:69:c1:6b:81:
d7:60:cf:dd:47:cf:cc:23:cb:4f:a4:a2:2d:58:e6:81:a2:7b:
11:56:2a:30:ae:f2:fa:ce:e0:28:ae:94:a5:05:88:8a:fc:bc:
72:60:9f:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 06:16:27 2025 by rpki-client