Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft
File: NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft (raw, json)
Hash identifier: B0o9ulXnRe9pWD6BoqFN1MrhgTlHwU55DLztJycTdU0=
Subject key identifier: 79:1A:5E:C4:83:50:A1:C8:7C:CC:B4:F5:AD:5F:21:19:8F:C2:53:73
Authority key identifier: 35:01:77:24:57:E0:F8:27:B9:E9:20:B0:0C:D1:14:82:4A:5F:A6:21
Certificate issuer: /CN=3501772457e0f827b9e920b00cd114824a5fa621
Certificate serial: 0197466722EF464BD3DD7F88A45259492E1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQF3JFfg-Ce56SCwDNEUgkpfpiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft
Manifest number: 157B
Signing time: Fri 06 Jun 2025 18:00:53 +0000
Manifest this update: Fri 06 Jun 2025 18:00:53 +0000
Manifest next update: Sat 07 Jun 2025 18:00:53 +0000
Files and hashes: 1: NQF3JFfg-Ce56SCwDNEUgkpfpiE.crl (hash: 4DBZWtqfk/Vwvdi9EE2tWvTJTPgdc/AEVyIUC+9fGKQ=)
2: f-luTA_tx0v0TH5JKilbt6SzcJU.roa (hash: +LXN4TEg0fwtohb1kuvdLScMnEdA9CiLPdalbBVCXxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/NQF3JFfg-Ce56SCwDNEUgkpfpiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:67:22:ef:46:4b:d3:dd:7f:88:a4:52:59:49:2e:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3501772457e0f827b9e920b00cd114824a5fa621
Validity
Not Before: Jun 6 18:00:53 2025 GMT
Not After : Jun 7 18:00:53 2025 GMT
Subject: CN=791a5ec48350a1c87cccb4f5ad5f21198fc25373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9a:14:8c:5f:54:3d:9e:5a:f9:8c:13:c1:48:
74:64:de:d4:18:81:3b:5d:8c:f4:c0:95:0f:13:92:
dd:8c:42:04:b6:33:91:0e:73:f8:9a:77:ff:e8:cf:
02:15:df:e7:e9:8f:df:63:53:04:1c:5d:0d:32:f0:
b2:55:64:55:00:82:8d:ad:b3:fe:b1:8a:cc:41:f6:
d4:95:43:1b:be:ea:8e:59:7d:a1:21:a0:ae:79:fa:
88:1f:08:0e:b4:48:06:ee:0d:aa:21:7d:0b:f7:54:
f0:02:8b:c3:27:ef:74:4c:0b:98:b1:57:14:59:ee:
28:c2:f9:e2:3d:86:23:87:4f:97:26:f2:0d:0d:e9:
8b:a3:4c:14:8c:60:fc:2f:03:1c:8f:f8:93:dd:e9:
7d:f0:89:f6:4b:18:bc:7d:54:ef:be:63:ab:95:e6:
68:5b:14:be:c6:34:c2:1f:28:be:ee:3c:1a:89:9a:
0e:51:42:7c:7d:76:aa:cf:bb:ad:ef:82:7b:ea:83:
48:13:c9:c7:b3:f9:39:38:f1:b1:ea:cd:9e:ea:e9:
84:20:55:36:e7:e1:db:98:50:40:a1:d3:b7:b6:7b:
8d:aa:25:9b:77:49:f5:48:16:2f:d7:75:32:36:eb:
97:2d:3c:da:83:3b:c9:94:1e:e8:da:87:af:fc:07:
8a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:1A:5E:C4:83:50:A1:C8:7C:CC:B4:F5:AD:5F:21:19:8F:C2:53:73
X509v3 Authority Key Identifier:
keyid:35:01:77:24:57:E0:F8:27:B9:E9:20:B0:0C:D1:14:82:4A:5F:A6:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQF3JFfg-Ce56SCwDNEUgkpfpiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:dd:5b:c9:a5:38:c6:2c:7f:d4:a0:c2:f8:45:c0:e6:7a:a7:
31:d8:85:04:5a:de:88:0b:cd:07:7e:ab:d2:10:18:f2:19:f2:
6a:b0:67:a9:10:f5:5f:6f:5c:07:8f:b7:0a:ee:97:6f:85:c1:
47:81:4e:ea:3a:6b:e0:ee:17:ea:c6:fb:d1:93:f4:67:57:e9:
85:5a:03:9b:b5:a5:4c:4f:eb:69:ae:11:58:89:bd:3f:ee:8a:
f4:3d:b5:9a:42:ea:d9:fc:a4:e9:0f:04:2c:01:35:83:73:81:
3a:8f:b8:a3:94:75:1a:85:13:50:62:a0:4b:bb:84:cb:26:d3:
91:02:53:10:ab:10:c7:bb:3d:37:2d:08:82:d7:07:54:11:60:
5c:6e:c3:2f:60:6a:20:d0:71:d4:7a:9e:40:4c:7d:b2:79:48:
05:e1:db:ec:d5:4c:14:d3:7d:38:4f:6e:a2:2a:09:f2:23:c5:
ee:56:d6:6a:4b:90:b6:24:0e:66:a0:67:1a:fb:4b:81:34:49:
c2:41:ec:cf:a3:ff:d2:9c:e0:5d:b9:4c:6b:68:d5:4e:98:bf:
d5:56:6c:53:9f:c0:04:84:0c:39:2e:76:38:11:d4:be:74:64:
bb:91:57:bc:05:08:74:2d:f6:52:92:a2:cb:65:ee:4f:44:68:
45:52:9a:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:18:56 2025 by rpki-client