Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
File: nhuhZT_KfIAXI8pG_0Qua6wekaA.mft (raw, json)
Hash identifier: p7Ol7l6I8hjHKTxVD37AGNBE81xXEXwN5oMjGohQL+8=
Subject key identifier: E0:42:80:67:46:E4:A5:60:4A:BA:0E:FA:04:D8:D4:7F:F1:E0:CC:90
Authority key identifier: 9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
Certificate issuer: /CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Certificate serial: 01975FB8B8FA1C4EA4149F56F33463670057
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
Manifest number: 0800
Signing time: Wed 11 Jun 2025 16:00:30 +0000
Manifest this update: Wed 11 Jun 2025 16:00:30 +0000
Manifest next update: Thu 12 Jun 2025 16:00:30 +0000
Files and hashes: 1: cb8dWgekdgTmGEn_puzoSrtajs0.roa (hash: klMt7aeT4NJnkoShXspgSHaq5Jk7n53EuU54bLRTaLc=)
2: nhuhZT_KfIAXI8pG_0Qua6wekaA.crl (hash: SC1BwIhxeddadjfODr/K5dBDw6dZhy1DtJLlgSEgk+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 15:40:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5f:b8:b8:fa:1c:4e:a4:14:9f:56:f3:34:63:67:00:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Validity
Not Before: Jun 11 16:00:30 2025 GMT
Not After : Jun 12 16:00:30 2025 GMT
Subject: CN=e042806746e4a5604aba0efa04d8d47ff1e0cc90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:72:9d:79:8e:9b:7f:fc:86:de:e1:e3:71:50:
3c:bd:b8:0f:12:fd:2f:64:0a:ba:2c:fd:7d:f4:26:
34:87:13:9e:0c:13:2a:ce:1f:02:82:70:57:bc:3c:
34:cf:98:6e:f6:da:96:0e:82:40:ae:d0:2a:10:28:
80:8b:31:45:fa:07:9c:85:8a:43:5d:9e:c0:82:e4:
06:25:43:20:c0:67:10:32:d1:14:cb:e5:2c:d5:6a:
1e:4d:ae:40:af:92:42:f9:44:6a:ed:cc:b1:16:c0:
53:d5:f1:28:9f:50:c5:d4:4a:41:c7:f3:31:ff:5e:
58:bd:0c:e1:04:ff:96:18:fd:5a:58:ef:ac:7c:47:
1e:13:97:e3:17:63:f5:4f:38:4a:5e:91:69:19:0f:
0b:a4:77:af:88:f6:b0:f4:da:d5:b7:ce:2f:a5:07:
e6:ec:a6:79:78:b8:03:b7:60:ba:2d:59:e6:7a:d9:
0b:d0:76:b3:2b:1b:96:86:a9:52:f6:80:e2:75:d8:
16:92:28:9c:0b:5b:4f:26:31:95:39:78:42:d1:8a:
52:93:d4:28:1d:bc:6d:66:20:1a:fb:18:d4:95:bf:
46:2a:e8:a0:b9:f1:f3:76:ae:b4:cf:18:a4:01:df:
36:11:d0:3f:93:42:a1:fe:92:72:90:3c:67:ec:68:
e7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:42:80:67:46:E4:A5:60:4A:BA:0E:FA:04:D8:D4:7F:F1:E0:CC:90
X509v3 Authority Key Identifier:
keyid:9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:63:c8:fe:0e:32:17:d2:46:c0:62:c2:44:8b:3c:2f:73:ba:
56:70:3d:b3:2d:2f:10:aa:7e:d2:8b:1b:2c:bb:17:0b:41:6e:
62:65:0b:07:e2:88:93:c5:93:2b:d4:9b:6a:6b:9c:a0:da:93:
7a:64:ca:dd:6e:4e:58:f8:f3:d5:6c:45:62:64:47:19:74:e1:
99:19:e1:2b:7e:6f:03:6b:66:8b:c7:70:9a:96:14:69:e1:b3:
73:b5:15:9f:26:f1:49:4f:8a:0b:6b:c9:29:a9:3b:19:5d:8f:
92:5e:c1:c3:a6:3b:c1:db:a9:ab:a0:9a:17:3d:b0:88:ab:86:
8a:e1:52:6d:67:d8:68:40:10:a1:6b:67:01:04:46:66:d5:83:
b1:ac:4c:e4:49:c4:60:c1:19:35:25:4f:2a:58:d5:95:09:c3:
17:cd:4e:db:3d:e3:96:52:57:d3:cf:0b:9b:6a:ad:90:c4:72:
9a:13:3c:05:40:f6:15:86:2e:5e:ab:c4:f9:30:55:6d:14:ff:
db:40:f0:a4:bc:66:e4:c8:6b:08:2f:42:75:20:05:33:cd:8c:
27:7b:4b:13:5f:a3:4c:3c:c4:47:ae:6f:0f:4d:1b:a5:0a:38:
b4:2f:0c:f0:62:8a:5b:d1:b1:09:5d:4b:99:2d:9b:f2:e7:77:
7e:11:e0:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 23:52:02 2025 by rpki-client