Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
File: ndrXzlnL6NGaA0EfocbJug1CAqI.mft (raw, json)
Hash identifier: jBo9gPnq5osmTpyLn+q0ac7MDLxFbMYSONiHHBtLO+0=
Subject key identifier: A7:4E:95:0C:31:20:A0:78:1B:E5:FD:8E:60:11:26:A4:80:57:95:AE
Authority key identifier: 9D:DA:D7:CE:59:CB:E8:D1:9A:03:41:1F:A1:C6:C9:BA:0D:42:02:A2
Certificate issuer: /CN=9ddad7ce59cbe8d19a03411fa1c6c9ba0d4202a2
Certificate serial: 0196BF6EFDAA4ACF499F7752B3AF18971F76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
Manifest number: 08A5
Signing time: Sun 11 May 2025 13:00:44 +0000
Manifest this update: Sun 11 May 2025 13:00:44 +0000
Manifest next update: Mon 12 May 2025 13:00:44 +0000
Files and hashes: 1: ndrXzlnL6NGaA0EfocbJug1CAqI.crl (hash: TnuYLBOQ4dQdrEMVTAdxlTnrFVw5PJPeNNIgpkN0NqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:6e:fd:aa:4a:cf:49:9f:77:52:b3:af:18:97:1f:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ddad7ce59cbe8d19a03411fa1c6c9ba0d4202a2
Validity
Not Before: May 11 13:00:44 2025 GMT
Not After : May 12 13:00:44 2025 GMT
Subject: CN=a74e950c3120a0781be5fd8e601126a4805795ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:df:aa:93:01:65:73:da:5c:2d:5c:11:f6:e6:
3c:0b:c1:85:28:a9:a5:39:20:24:9b:33:98:a2:78:
24:12:79:3e:33:0c:b0:a2:69:ab:74:07:3c:2a:56:
67:0e:b9:bc:f0:53:f2:7b:ab:3d:62:5e:2a:6f:57:
2d:fb:0f:e3:ce:91:0a:f4:4f:65:ea:43:16:27:d0:
77:10:d8:61:02:4e:14:97:f2:08:5c:90:9b:95:84:
d8:27:c6:66:49:3b:c4:bf:c7:cc:d0:0f:6c:c3:01:
f6:87:7a:9d:f3:87:2f:de:c7:32:d7:ee:b9:7d:a2:
33:cc:24:d8:b7:32:d5:b8:de:a1:9c:94:01:da:58:
50:07:3d:9f:ae:7b:8f:4e:b6:01:ba:cf:5e:52:ad:
cd:0f:6a:41:68:66:fb:71:fd:f4:57:01:7a:01:a3:
7f:e0:63:52:22:de:fa:42:18:7c:2e:94:b0:fb:53:
c6:bd:15:14:09:76:9d:3f:3b:45:d8:cd:ce:2e:c0:
b4:41:d7:c0:74:ff:4f:81:d9:c8:4e:5c:43:f2:24:
10:d1:b2:c0:ba:97:07:e2:ac:da:5c:8c:67:a8:5f:
8f:ae:0e:60:78:31:89:38:ae:d0:8a:15:90:e2:b7:
de:eb:2d:89:cd:ae:81:28:98:4e:51:50:2e:3e:f3:
9c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:4E:95:0C:31:20:A0:78:1B:E5:FD:8E:60:11:26:A4:80:57:95:AE
X509v3 Authority Key Identifier:
keyid:9D:DA:D7:CE:59:CB:E8:D1:9A:03:41:1F:A1:C6:C9:BA:0D:42:02:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:44:60:50:b5:4e:62:94:b0:d4:fd:92:85:7f:7c:f3:b2:16:
1d:3c:9d:77:ce:78:02:9b:2a:d7:6f:e1:1a:55:13:53:9b:18:
ab:0f:ad:7e:3b:c1:c2:3e:ab:b0:47:ad:60:6e:05:ab:34:cf:
c8:ed:72:40:b5:25:cc:df:42:97:0c:be:e9:f9:83:c0:6f:ac:
43:2b:bd:c8:63:21:34:39:5b:8a:7d:65:8f:7b:43:bd:21:84:
39:50:80:d3:b4:dd:73:c1:5f:6a:f0:f7:63:4e:ae:23:df:48:
cc:34:8d:17:15:5c:a1:a5:bd:cd:42:fc:eb:c0:ee:4d:87:60:
e8:2d:86:da:e9:7b:59:3d:bc:97:8e:21:62:17:f6:5e:c2:a7:
db:89:62:41:ab:da:8d:cd:8e:ce:5c:9e:e6:35:d0:40:f1:9d:
a7:11:1f:c8:41:8f:04:33:cc:1c:f4:a6:44:81:55:e3:3d:cb:
f1:47:2b:ec:7e:70:00:a9:f2:f8:cd:38:5c:50:42:bb:14:f3:
0f:8a:5e:59:98:fc:c7:06:7a:16:d5:39:8b:d0:5a:c1:69:02:
af:34:08:a9:68:df:35:f2:09:36:e3:90:ca:ec:d1:c1:48:1f:
bb:54:4f:d1:ce:9c:d2:8b:4a:ce:50:80:38:42:22:70:68:e8:
77:2e:f3:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 16:01:11 2025 by rpki-client