Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
File: nFVnZyAcUPayqVXbah5uAR36XUQ.mft (raw, json)
Hash identifier: WrJi40ZTAbaa4/ShtuKfsm+10mEQxNXpUOc++W55fuQ=
Subject key identifier: 94:49:AD:81:44:40:83:EA:95:A1:E6:0E:80:FB:65:06:20:D4:C8:16
Authority key identifier: 9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44
Certificate issuer: /CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44
Certificate serial: 0197500E948CDBC6D1779B07C7CD9227C4B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
Manifest number: 0AA8
Signing time: Sun 08 Jun 2025 15:00:22 +0000
Manifest this update: Sun 08 Jun 2025 15:00:22 +0000
Manifest next update: Mon 09 Jun 2025 15:00:22 +0000
Files and hashes: 1: cmsoMlIRCcbLziNipTUjZc3lrew.roa (hash: a1CFCcY0jADOuS6DTKGkRSmsv5gzH4GzUcir7HG6pUE=)
2: nFVnZyAcUPayqVXbah5uAR36XUQ.crl (hash: lYMuS0SPKmPXzgIkj6RETXFTql0fyarCnwvEP3+1dQw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:0e:94:8c:db:c6:d1:77:9b:07:c7:cd:92:27:c4:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44
Validity
Not Before: Jun 8 15:00:22 2025 GMT
Not After : Jun 9 15:00:22 2025 GMT
Subject: CN=9449ad81444083ea95a1e60e80fb650620d4c816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:cf:b3:7b:b3:bf:66:74:35:f2:59:30:ed:b7:
09:b6:5a:88:8b:00:c3:94:c6:c0:8f:16:b1:4a:ab:
c6:bc:02:28:2f:45:aa:b1:e1:8d:89:8d:10:5a:0b:
c8:61:21:a9:ed:16:ca:5d:d7:68:33:97:38:c8:29:
89:48:76:7a:66:25:11:6a:5b:48:1b:c2:85:b5:24:
ca:ea:b7:d5:d9:74:04:bf:05:36:ee:a9:b2:32:aa:
fb:b4:8a:53:1a:5e:b9:b6:cb:6e:65:3f:b3:be:8f:
a3:41:af:26:02:ca:be:c5:1e:52:2c:08:d1:b0:18:
41:65:e7:ea:1e:e2:e1:f3:ee:05:57:b8:10:92:69:
b0:3e:6c:5d:77:6a:1e:f9:15:7e:b4:c5:34:89:fa:
90:4f:d0:00:fe:a2:5e:e0:3a:92:3d:ea:df:f7:d9:
f1:e3:7f:cb:96:81:f2:cd:ae:8e:c9:45:3d:12:00:
df:2b:d6:a0:cc:ed:d4:cc:b3:95:30:1c:d7:cb:ff:
67:7e:e2:2a:75:fc:bb:22:68:08:83:65:5a:09:31:
cd:01:93:2f:d6:4e:7c:d7:52:43:0c:86:02:f9:2d:
ec:d5:ea:74:f2:80:c6:7c:37:91:07:31:ed:be:7c:
0a:fc:a3:93:a7:1f:b0:37:5a:57:2c:7c:8c:cb:c6:
84:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:49:AD:81:44:40:83:EA:95:A1:E6:0E:80:FB:65:06:20:D4:C8:16
X509v3 Authority Key Identifier:
keyid:9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:2b:dc:e6:17:76:ee:f0:66:50:e2:86:93:d7:59:0b:e3:43:
3d:fe:50:1d:08:09:f5:c3:3b:d7:fd:78:d9:76:eb:52:5f:0c:
55:51:6a:e2:ff:5a:09:03:e6:ae:5f:ae:50:d5:ff:7a:c8:e8:
96:1e:59:a9:fd:e0:54:5b:f3:17:5f:4e:32:29:d3:eb:9e:7a:
98:db:be:1b:19:e0:60:ea:02:82:8c:69:b0:e0:7b:02:5b:f0:
86:36:3f:8e:20:c7:99:de:9e:21:a7:b2:bf:3d:36:54:05:7f:
12:2b:92:e3:50:92:aa:f6:97:1d:fa:5b:eb:1c:a9:86:a6:99:
78:fc:08:60:f5:dc:17:78:90:54:2e:e2:dd:87:27:f8:50:a7:
b8:90:8e:fa:34:08:5b:72:6d:f9:a0:5c:26:00:82:77:b2:21:
d5:6e:8f:ec:d1:9b:6c:ad:ed:1b:68:df:f5:59:c4:b4:72:ee:
3c:16:cd:e2:e2:d5:09:cc:3f:bb:f1:24:05:68:60:63:da:49:
82:29:d8:9b:e2:b5:f5:42:35:f7:ce:8e:ed:5a:79:e0:04:f1:
51:a6:d6:ae:8a:2f:9b:fd:40:76:5f:a9:cd:b9:0d:c9:00:b5:
24:ad:1d:36:a3:40:5d:b1:0b:e7:3b:77:41:fd:78:21:7e:92:
f7:b7:d3:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 20:42:33 2025 by rpki-client