Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
File: nSAoCNH5FFVeG9WcFncof_mztZA.mft (raw, json)
Hash identifier: 5S/8FPp1nU+vP73GExtLzWV9Sm8XW3hORNjUw+rpHCU=
Subject key identifier: 30:99:FF:E2:B1:11:E3:52:FF:D4:2C:23:9D:C0:C5:E3:BD:76:5D:CC
Authority key identifier: 9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
Certificate issuer: /CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Certificate serial: 0198364C6D1CA59B8968413007A4E7C5BADF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
Manifest number: 1001
Signing time: Wed 23 Jul 2025 08:00:35 +0000
Manifest this update: Wed 23 Jul 2025 08:00:35 +0000
Manifest next update: Thu 24 Jul 2025 08:00:35 +0000
Files and hashes: 1: nSAoCNH5FFVeG9WcFncof_mztZA.crl (hash: FHUTuHPgDutyBLDdE0biwZweC/3I9nLlhwmPqhGHd5Y=)
2: qztp8oOkrsOnZQZ-AVesJkd8gBA.roa (hash: w8j5kLnBBDJA6YAxwk7yr2iHlxdseJ2t5FGwhKWuj0I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 24 Jul 2025 07:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:36:4c:6d:1c:a5:9b:89:68:41:30:07:a4:e7:c5:ba:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Validity
Not Before: Jul 23 08:00:35 2025 GMT
Not After : Jul 24 08:00:35 2025 GMT
Subject: CN=3099ffe2b111e352ffd42c239dc0c5e3bd765dcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7e:e7:82:ae:85:1e:51:3a:49:f7:d9:84:30:
df:c1:f1:ed:c4:c2:5f:33:98:85:07:b7:78:ae:5d:
45:54:5b:89:d7:78:89:b9:4b:ca:33:5c:df:e7:e1:
6c:00:f1:5c:7b:83:3f:b1:2b:99:2f:3e:51:41:5c:
41:53:3f:6e:7f:89:3e:fb:51:18:47:0c:51:c6:d6:
6f:4c:5f:db:6a:b7:10:e5:9b:5c:3e:db:47:5f:a4:
fa:8c:d8:c0:13:36:7f:b8:b8:16:af:aa:db:fe:6c:
f7:05:e5:9a:04:3a:c4:45:71:0a:c4:39:b3:27:ae:
3b:af:01:af:ab:eb:26:ab:96:d8:40:5f:f4:4d:e0:
e0:ac:39:48:df:a0:ab:2d:f2:e0:ff:84:53:e5:6c:
ef:5a:91:79:98:fd:f4:db:58:be:69:71:07:2e:a5:
be:8f:a2:de:50:de:d8:37:58:c8:46:2f:06:a2:aa:
68:e1:c9:5c:39:90:4c:ee:f1:a8:fe:cc:9a:7a:84:
32:c5:96:62:bb:f2:9f:92:a6:ca:68:f2:77:8b:09:
c6:8a:13:90:8b:88:31:ee:62:ae:c9:b2:76:4b:28:
19:30:b8:e9:cd:20:f9:2d:8d:40:f5:f8:bc:f8:d1:
8a:2b:cb:49:50:81:9f:27:d2:d4:a3:a0:a0:90:60:
a0:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:99:FF:E2:B1:11:E3:52:FF:D4:2C:23:9D:C0:C5:E3:BD:76:5D:CC
X509v3 Authority Key Identifier:
keyid:9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:2e:9c:91:99:5e:47:d2:60:1a:95:30:03:44:da:1d:31:1a:
d1:a4:56:d0:88:56:b6:5f:09:0d:41:3c:d0:0d:36:66:03:8b:
76:08:1f:60:bf:6a:94:34:00:38:1d:b1:0a:c9:ca:a8:78:25:
2b:c2:b6:5b:40:2f:ab:95:6b:b5:35:b2:37:e3:0a:ad:e5:64:
0f:63:5a:95:89:5d:d5:77:1e:f3:67:42:3f:cc:86:4b:ea:8b:
94:8d:0d:b4:d3:79:e9:21:dc:3a:18:da:ba:c2:70:28:22:aa:
d4:3a:5e:31:bb:b0:7d:9e:e4:fa:a0:eb:b1:10:c1:45:d1:f7:
58:bd:41:73:45:dd:79:00:f7:48:5f:d6:b3:6a:41:72:00:74:
40:9f:b6:66:fe:9e:88:bf:e9:00:73:da:2d:a2:b7:ce:67:ab:
b0:10:79:f8:27:60:63:1f:7b:3b:ae:63:80:57:18:05:60:53:
3c:ad:b5:f6:45:9b:13:44:f6:f4:bc:a4:87:24:2f:d2:ea:19:
0e:f1:9c:4a:84:e3:df:77:8e:21:a6:e5:c6:0d:ee:ed:90:a0:
08:08:b8:cc:e8:e9:02:59:99:b6:ba:e4:e0:3d:21:a0:c8:32:
bb:6e:c7:cc:7c:4a:6e:ae:f4:d0:6b:98:4c:40:0b:42:ba:56:
e8:c8:cd:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 12:01:01 2025 by rpki-client