Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
File: nlaYDUienFO8gp8-jWPTg_ONDeM.mft (raw, json)
Hash identifier: Dr2PuqbtQLKvsOwetfO5ngHRsVGVmulewOPiCOWSa2U=
Subject key identifier: 17:55:52:43:69:68:21:E2:90:18:DB:BC:C1:4D:96:47:C8:F5:D2:EE
Authority key identifier: 9E:56:98:0D:48:9E:9C:53:BC:82:9F:3E:8D:63:D3:83:F3:8D:0D:E3
Certificate issuer: /CN=9e56980d489e9c53bc829f3e8d63d383f38d0de3
Certificate serial: 0197499F36F8977D586482EADB6F6AB2B4D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
Manifest number: 14D9
Signing time: Sat 07 Jun 2025 09:01:00 +0000
Manifest this update: Sat 07 Jun 2025 09:01:00 +0000
Manifest next update: Sun 08 Jun 2025 09:01:00 +0000
Files and hashes: 1: 5LKnYfYeN0M1IwSjOCfaAZydc0E.roa (hash: R6rY8mHoFXXwwf30CLdp4brLxdq1SUoGP6TPbyDWGN8=)
2: nlaYDUienFO8gp8-jWPTg_ONDeM.crl (hash: kF4U/nXtm1UPCEOVq6JhCqa4do3bs4+jbj3Bkf7KS14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:36:f8:97:7d:58:64:82:ea:db:6f:6a:b2:b4:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e56980d489e9c53bc829f3e8d63d383f38d0de3
Validity
Not Before: Jun 7 09:01:00 2025 GMT
Not After : Jun 8 09:01:00 2025 GMT
Subject: CN=17555243696821e29018dbbcc14d9647c8f5d2ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6f:4d:9c:de:45:80:1c:e7:ba:9c:8b:fd:81:
08:c6:ec:7b:f5:4e:9f:b9:55:4a:45:08:81:cf:c0:
c6:08:ba:75:77:a6:fa:b6:67:6a:99:0b:ee:0f:28:
cc:5c:00:70:c4:6d:6e:aa:c8:e2:bd:bf:73:e4:45:
c9:14:ef:08:0a:bc:31:f1:a6:3e:b6:56:fd:75:c2:
55:d9:6b:0d:95:bd:66:6d:11:a1:ed:bf:49:cd:9d:
87:41:67:01:cf:ca:71:74:9c:3e:85:22:0b:75:84:
48:d7:a7:42:3c:06:b0:c0:6e:a3:47:cd:50:cf:bd:
96:c1:2b:0a:1d:26:dd:4c:e2:b5:7a:6d:d3:e5:87:
b9:dc:03:41:13:a5:78:bc:70:cc:8e:53:bb:84:7d:
b1:f7:c3:b8:ed:68:e2:53:21:a2:e8:1f:80:22:57:
d4:f4:32:9d:47:2b:a1:23:8b:91:02:92:7f:56:34:
c6:3c:24:5d:ca:12:cb:04:02:ef:9f:d5:4b:4f:70:
e2:1f:15:6e:21:04:a1:0f:15:04:d8:f8:7f:29:78:
dd:f2:83:a8:ff:59:fc:68:15:f0:79:c1:4e:bd:4a:
f4:c7:51:b6:d2:0c:8a:12:e9:c8:41:54:9c:4d:fe:
3c:95:5b:df:47:61:a5:39:6a:c3:77:72:d0:cd:94:
8f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:55:52:43:69:68:21:E2:90:18:DB:BC:C1:4D:96:47:C8:F5:D2:EE
X509v3 Authority Key Identifier:
keyid:9E:56:98:0D:48:9E:9C:53:BC:82:9F:3E:8D:63:D3:83:F3:8D:0D:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:a2:65:05:c4:29:e9:1c:9a:91:2d:45:25:65:85:f0:bd:60:
9a:be:be:94:da:32:9c:2b:07:93:d7:25:f4:39:61:d6:a7:55:
f2:35:f2:16:c9:87:ba:84:7d:ac:3d:41:f3:4e:22:15:67:59:
1c:e9:46:b6:a6:bf:65:4a:05:f8:ca:82:f8:28:ee:1c:be:3b:
2d:d1:9a:38:89:8a:20:92:4c:a0:12:bc:0b:0e:e4:80:1d:35:
ad:16:25:85:14:36:7f:79:9a:f5:6d:8f:20:ce:d2:1b:da:a3:
5c:d5:a8:ad:ca:ef:54:e9:b8:99:64:4c:f3:83:4f:ed:4e:7b:
15:b7:18:59:2d:8c:86:0a:5b:69:59:c0:c4:4e:4d:cf:a5:0f:
96:c9:99:3e:3c:b8:96:12:01:a7:42:fd:f2:2d:32:27:d8:e3:
6a:65:28:59:bc:ac:1f:22:07:4c:73:62:07:cc:36:3d:c4:50:
2d:04:a3:04:61:18:de:32:36:52:45:a1:a3:d7:63:a2:c6:c2:
d1:f3:36:80:6d:e0:de:41:29:d5:ef:74:7f:a5:27:eb:da:5a:
4a:0b:a3:fb:15:4b:28:09:f2:26:c1:64:89:ec:d4:31:4c:e9:
a6:02:4f:36:97:b2:b6:75:83:90:8c:7c:d0:60:24:b4:75:69:
66:f9:3e:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:01:21 2025 by rpki-client