Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
File: nEswhmFPR4OKPoCj5uBR09imkvk.mft (raw, json)
Hash identifier: r/evcYAOba2rpW3CWQdRcu6Bhnn6+IlAI/BQI0mnKhg=
Subject key identifier: A5:49:68:2D:C5:4A:DB:88:6F:E8:EA:81:55:35:64:E7:29:CC:49:1D
Authority key identifier: 9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
Certificate issuer: /CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Certificate serial: 01969E634CB1C32BEE1D32CC97E1A8495E11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
Manifest number: 0570
Signing time: Mon 05 May 2025 03:00:29 +0000
Manifest this update: Mon 05 May 2025 03:00:29 +0000
Manifest next update: Tue 06 May 2025 03:00:29 +0000
Files and hashes: 1: a_Q0Oj2hhJ8gyCrgqERD5VjhULo.roa (hash: ix5ZmIac7PSSZ8cbH+U6PyHdhcxmOIX450xPjZ8S6o0=)
2: nEswhmFPR4OKPoCj5uBR09imkvk.crl (hash: IpvVi6HdzNJrzLh8CKU2DDFggga07wWgH/IexuTnswI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:63:4c:b1:c3:2b:ee:1d:32:cc:97:e1:a8:49:5e:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Validity
Not Before: May 5 03:00:29 2025 GMT
Not After : May 6 03:00:29 2025 GMT
Subject: CN=a549682dc54adb886fe8ea81553564e729cc491d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:bb:a0:55:65:0d:19:7a:a7:45:1e:98:41:cd:
94:54:6e:85:d2:e5:1a:3d:7e:40:7a:58:e5:16:0c:
41:a6:91:b4:79:b6:e9:e9:88:5e:06:ef:e4:f2:97:
08:59:7a:f4:aa:8c:74:a1:4c:df:2f:dd:c8:3b:f3:
d3:db:4f:33:0a:ce:da:1b:34:7b:ed:43:4a:03:43:
74:44:24:bd:52:76:f2:13:10:29:95:11:ec:a8:a2:
9c:fc:26:41:3a:24:95:9b:cb:c6:38:47:42:30:47:
ab:e8:59:c9:58:76:94:50:0a:e8:7a:56:cd:3a:f3:
8c:22:b5:2f:f5:27:86:ed:b1:c3:39:40:12:2f:3d:
d0:0e:3a:00:e2:7e:83:0c:d9:b8:59:71:9e:d2:4f:
7c:0b:f5:6b:c8:e6:3b:ad:93:42:fc:b8:16:cf:49:
0e:9f:00:95:d4:ab:10:22:3e:bc:d6:14:0c:91:1d:
c5:4f:bc:d9:b3:f8:37:1c:c2:a6:4b:9e:21:07:5c:
e2:1a:b0:7a:67:6f:77:ce:d0:03:99:8d:8a:f9:3e:
bf:91:a0:04:8d:1a:20:15:bf:4b:26:f9:8e:4d:5d:
b7:8c:94:74:39:54:f3:16:97:89:51:ca:87:3f:37:
7d:b1:ea:ed:fc:d1:da:fc:52:45:c0:5b:d3:11:7e:
d9:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:49:68:2D:C5:4A:DB:88:6F:E8:EA:81:55:35:64:E7:29:CC:49:1D
X509v3 Authority Key Identifier:
keyid:9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:52:d3:35:bd:e1:a1:9b:a7:71:6a:ac:50:86:53:b0:61:5e:
2f:ca:1c:5f:c8:b0:2a:82:a0:27:95:53:01:df:d6:1a:1e:6c:
00:16:d2:ee:ee:fd:39:9b:16:d4:f5:b5:a9:2d:1c:59:ec:7d:
a1:12:51:00:45:bf:46:15:e4:e0:d8:ed:2a:e8:5c:7e:b0:ac:
4c:94:4e:81:8b:ed:a5:4b:03:aa:c6:ad:1c:0f:0d:ac:f5:ee:
f1:59:31:9e:41:76:29:0f:88:4d:35:3b:6f:83:07:95:8b:ae:
e3:cc:ab:b6:bf:d3:78:7b:05:70:20:f5:dd:e0:cd:e4:65:40:
43:36:fb:dd:8f:59:d8:58:d7:8f:05:ad:74:92:93:c0:d7:70:
2a:0d:e1:85:bd:37:b3:de:d7:62:a6:97:be:d1:b9:e7:e1:57:
fa:73:4f:50:da:bd:2c:ff:5e:06:f8:fe:40:a8:08:3c:23:a2:
8a:d5:78:bd:a5:c6:80:b0:31:ee:3b:98:06:f3:b4:13:02:a6:
0b:4e:6e:2d:74:61:76:06:58:50:19:1c:a2:67:46:26:79:f2:
7c:64:4c:8f:c0:0f:64:4c:28:3d:77:84:3e:31:55:f4:01:29:
74:87:f2:15:3a:15:76:dd:ec:0f:ef:f5:c5:f2:7c:d9:f3:72:
34:db:4f:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 07:40:55 2025 by rpki-client