Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.mft
File: NT4_KOZH6SrIpxDDBcLiG2I-3Bw.mft (raw, json)
Hash identifier: LOyjv1MS5OegKzyCxpmWzB+T93+1IEMB/IPE6raauHs=
Subject key identifier: 54:8B:70:E4:1A:CA:F9:48:F6:A7:43:9E:66:89:D4:F9:0E:64:E4:48
Authority key identifier: 35:3E:3F:28:E6:47:E9:2A:C8:A7:10:C3:05:C2:E2:1B:62:3E:DC:1C
Certificate issuer: /CN=353e3f28e647e92ac8a710c305c2e21b623edc1c
Certificate serial: 01974C68F4597DDB86AE06912A8D62CA5BC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.mft
Manifest number: 1580
Signing time: Sat 07 Jun 2025 22:00:35 +0000
Manifest this update: Sat 07 Jun 2025 22:00:35 +0000
Manifest next update: Sun 08 Jun 2025 22:00:35 +0000
Files and hashes: 1: Jhw9faAWoEdqP1e__8w7b6zkmPk.roa (hash: TQENvT9b218+4xF+VAk4clIU0JMsKTFbzJxIDRXuwJ4=)
2: NT4_KOZH6SrIpxDDBcLiG2I-3Bw.crl (hash: WM6Kl9LaN7u1/JPDFdYQhp8yD1MkbZ6grqgjVWuflyE=)
3: fubcea_39IkkaWowT_0PbtN75oM.roa (hash: b26RPXGBBJCeMiSKu69amdDTbZc6gUFdxgY2Yx3wVnw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:68:f4:59:7d:db:86:ae:06:91:2a:8d:62:ca:5b:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=353e3f28e647e92ac8a710c305c2e21b623edc1c
Validity
Not Before: Jun 7 22:00:35 2025 GMT
Not After : Jun 8 22:00:35 2025 GMT
Subject: CN=548b70e41acaf948f6a7439e6689d4f90e64e448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a0:57:42:0c:5a:02:4b:0e:d6:3c:e9:6d:14:
ff:7e:c3:c3:61:1b:0c:c4:b5:c1:e1:9f:5c:a1:4a:
dd:61:57:60:72:87:9d:66:3a:4a:ed:67:19:22:d5:
bc:9c:0b:07:5b:f3:a8:c4:84:e9:cc:d2:58:03:54:
d4:11:2d:d9:c0:b4:d8:f3:fd:37:22:7f:78:31:a7:
ab:d5:81:97:62:08:fa:a0:c5:4a:34:aa:ba:fc:cf:
b1:2c:9c:f9:cb:ba:66:15:51:9e:24:52:f4:8b:c4:
51:d7:99:60:24:de:da:c8:16:39:65:fa:d1:e0:e4:
fd:76:a1:06:4b:70:9a:3b:bc:d5:ab:e8:6f:f4:6a:
75:ce:2e:7e:f6:80:24:c8:17:77:ce:06:09:76:57:
0f:b5:d3:90:79:0f:b7:9a:f8:4a:6d:2c:94:e9:de:
c7:33:a9:05:cf:ef:62:4c:d0:c6:37:e7:cd:98:fa:
66:ed:88:64:c5:9c:c6:9e:35:12:44:83:4b:d7:28:
ef:3f:9c:eb:fd:51:e9:d4:f7:8c:37:4b:06:d6:44:
c3:b7:cb:48:99:08:f7:5c:72:be:9c:dc:b9:8a:0c:
2b:ba:75:11:05:9d:c6:85:b0:76:57:9f:21:7b:28:
e7:41:36:8b:dd:d7:d4:40:b8:48:94:a4:df:18:6b:
f5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:8B:70:E4:1A:CA:F9:48:F6:A7:43:9E:66:89:D4:F9:0E:64:E4:48
X509v3 Authority Key Identifier:
keyid:35:3E:3F:28:E6:47:E9:2A:C8:A7:10:C3:05:C2:E2:1B:62:3E:DC:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:e9:23:f3:25:7d:db:38:ff:1b:7a:ef:cd:7e:d1:dd:5c:b6:
89:e3:6d:0e:a7:07:8c:2c:06:1c:7b:2e:c7:1e:cc:60:7e:a2:
d5:cc:92:02:16:c5:66:f7:59:f9:42:c6:89:86:b2:e5:eb:89:
bf:87:cc:fb:be:12:b5:07:8e:7b:96:3d:e0:03:ce:93:ec:4a:
82:83:b1:94:7b:ed:e7:62:0d:cc:f4:1a:20:22:26:3b:0a:bc:
72:d6:f9:3f:e4:06:55:1e:d4:df:d1:6e:21:38:94:80:ee:ca:
3b:14:dd:75:8b:66:2a:d7:4a:ad:88:e9:10:41:ae:92:9d:83:
a1:06:db:1e:18:03:b9:29:b3:14:df:b0:c8:bb:b1:80:34:c8:
b6:c4:03:df:fa:77:12:bb:7b:82:0e:d0:32:3d:62:fe:cc:ea:
cb:97:d0:67:a0:20:13:46:21:4e:ed:09:4d:21:b7:de:44:b0:
18:9a:f5:00:2f:46:ff:5a:7c:95:e3:04:6c:ed:c7:04:fe:5f:
33:47:77:be:0d:74:c1:50:5a:c2:b7:9b:80:9d:05:1e:38:38:
21:22:01:db:07:55:8f:bd:1d:f3:6f:df:7b:18:52:73:ff:c8:
75:2d:f1:7c:8e:4b:a3:53:a1:be:c7:bc:74:e5:45:df:8b:0a:
f4:5f:b9:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:19:53 2025 by rpki-client