Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
File: nhuhZT_KfIAXI8pG_0Qua6wekaA.mft (raw, json)
Hash identifier: dSWQ3VgZuk+x6JOdO3r0QPmIqef2uGEaeS7xDxRMEz8=
Subject key identifier: 5E:E6:8A:A3:0D:0D:5F:C9:A4:A8:6F:9B:14:F7:41:B2:37:F3:B0:EB
Authority key identifier: 9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
Certificate issuer: /CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Certificate serial: 01976B4F0FB55D88706B81F8F8BB674FD833
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
Manifest number: 0806
Signing time: Fri 13 Jun 2025 22:00:32 +0000
Manifest this update: Fri 13 Jun 2025 22:00:32 +0000
Manifest next update: Sat 14 Jun 2025 22:00:32 +0000
Files and hashes: 1: cb8dWgekdgTmGEn_puzoSrtajs0.roa (hash: klMt7aeT4NJnkoShXspgSHaq5Jk7n53EuU54bLRTaLc=)
2: nhuhZT_KfIAXI8pG_0Qua6wekaA.crl (hash: RlQVFeqvysUkb+jzyU8+A7Xqgrs1pmnISwTvzvJc+x0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:4f:0f:b5:5d:88:70:6b:81:f8:f8:bb:67:4f:d8:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Validity
Not Before: Jun 13 22:00:32 2025 GMT
Not After : Jun 14 22:00:32 2025 GMT
Subject: CN=5ee68aa30d0d5fc9a4a86f9b14f741b237f3b0eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:30:e8:09:13:00:03:d4:f4:e6:db:64:87:b5:
e2:f9:32:26:8f:de:fa:96:63:5d:bb:59:8c:dc:8f:
a2:47:d0:8b:e4:bf:0e:25:81:af:78:9a:bd:b7:8c:
48:84:10:41:8a:a7:7c:1a:db:73:6e:93:25:c2:12:
ad:cc:c1:82:76:7b:c0:66:d9:f8:11:dd:e0:dd:76:
62:33:a1:e4:59:58:58:27:6e:0c:a9:d4:2e:c2:91:
23:bb:94:74:15:3c:92:db:1e:cf:9e:5d:3f:9e:d9:
e0:21:c3:c5:15:be:a2:d8:39:8c:db:39:fa:b5:5c:
9a:75:ff:bb:44:b6:29:26:d7:f9:a5:bb:58:e9:d4:
93:16:ca:e0:5f:8f:2b:c3:49:05:25:f9:b9:d7:79:
9a:c2:c8:38:2a:8c:0a:b3:c7:e9:8d:bb:65:26:ab:
6a:fb:50:f9:ea:aa:ed:c3:24:1d:c9:31:20:cf:de:
65:ab:22:df:4e:f7:31:61:25:0b:4b:62:29:a8:42:
b5:b2:58:81:0a:78:93:b8:55:d7:36:58:07:3b:16:
fc:b4:9e:69:19:9f:cb:bd:21:bb:d4:fd:d6:78:bf:
8a:d4:41:2b:e3:d3:82:ec:7f:ec:b3:50:2c:0d:df:
70:83:9f:4b:ed:ab:87:48:0c:2a:21:4d:f1:47:47:
f4:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:E6:8A:A3:0D:0D:5F:C9:A4:A8:6F:9B:14:F7:41:B2:37:F3:B0:EB
X509v3 Authority Key Identifier:
keyid:9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:b4:2b:dd:85:27:43:8a:d7:17:86:12:5e:3c:d5:c6:b2:14:
81:00:03:cc:0c:fd:8c:95:6e:6d:27:92:7a:f9:21:a7:d9:18:
c2:89:2a:a5:ec:79:10:27:f7:b3:12:24:f7:33:08:ce:da:be:
a9:a8:6d:06:f3:01:fc:71:86:42:70:f1:c3:bc:89:eb:de:3a:
7c:aa:09:df:7e:a7:e9:44:c0:6f:9c:d1:fb:01:3f:6b:d7:6c:
15:97:0d:3b:f0:cf:be:9c:08:40:57:23:a7:53:67:d1:b9:09:
4a:f5:4c:67:c1:62:7c:75:27:b8:06:ba:7a:76:98:22:c1:5b:
f8:b4:1c:18:a6:c5:c8:4e:a1:f1:a6:12:ee:8a:6d:99:80:3d:
66:51:69:5d:70:d5:9b:60:df:07:f8:01:70:7e:19:44:5f:4e:
71:48:da:94:8e:2b:3e:8a:2a:38:54:e5:b0:75:25:e7:80:ba:
d6:46:65:9b:73:a7:83:31:f3:23:b5:6b:6b:3a:ca:af:54:08:
a6:eb:ab:bd:19:eb:0a:74:99:3e:9c:84:3e:7f:d8:a4:bf:ab:
59:29:4c:c1:5e:2a:36:a5:91:37:96:3e:5c:31:ab:f9:c0:38:
36:b1:7c:b2:9b:25:2a:09:4e:fc:92:e3:db:f6:3d:a0:bb:81:
1d:2a:63:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 23:40:29 2025 by rpki-client