Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
File: nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft (raw, json)
Hash identifier: TYPTmxm5hXuPf5DfUGBXTFYA0wNn54RFTVb/VLclm4o=
Subject key identifier: 7F:D2:FE:30:54:21:40:AE:94:58:AA:8F:93:6E:76:19:27:04:F7:85
Authority key identifier: 9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
Certificate issuer: /CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Certificate serial: 019747431B59542310E1A2DF2CF16C7EFC19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
Manifest number: 157B
Signing time: Fri 06 Jun 2025 22:01:09 +0000
Manifest this update: Fri 06 Jun 2025 22:01:09 +0000
Manifest next update: Sat 07 Jun 2025 22:01:09 +0000
Files and hashes: 1: 8vJ7ABj3xVyEwXenD9W0ncMrU1A.roa (hash: 5gnWjjNTmQRrWBLMz2vS6KZph20DEPN6rQfmfIVo1TE=)
2: 95tOWT20XUkoFBLGQGdVcwDGE0s.roa (hash: Qa6N16B2kLdBJuSQoLOln9hPwf+0/JSY++MAPTIofBc=)
3: D2QorAtAGpZ4DSilBt-gZlYU1WU.roa (hash: vpJGRRZzUNjxMRhoSrLA2Ov0y70mAO/SHEjk1etazfE=)
4: nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl (hash: kzgERppI8eszqRriJp5sIlksPdl7HIOugjNDLgduqfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:43:1b:59:54:23:10:e1:a2:df:2c:f1:6c:7e:fc:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Validity
Not Before: Jun 6 22:01:09 2025 GMT
Not After : Jun 7 22:01:09 2025 GMT
Subject: CN=7fd2fe30542140ae9458aa8f936e76192704f785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a8:79:da:e9:40:46:ef:22:aa:2f:89:a6:c7:
ba:c0:f5:2c:20:8c:5f:47:d1:4c:cc:4e:ca:34:0b:
c6:d0:4b:94:b6:12:55:a9:d2:44:1a:3a:f0:6e:42:
97:d8:00:0f:a3:72:c1:a6:e5:91:18:d4:3a:85:47:
21:00:0c:4d:18:32:92:13:83:4c:f1:00:b8:f4:8b:
22:e5:40:1e:7f:3d:3d:84:b8:08:69:09:9e:23:11:
52:fb:14:d8:7d:f7:72:45:9f:62:69:a2:0b:ff:44:
53:cf:60:78:06:d1:f6:90:eb:c9:77:de:2f:aa:83:
69:93:02:5f:a1:8c:fd:e5:39:7a:6f:a3:a4:5c:8b:
49:f0:4d:d7:3f:76:fd:05:25:3a:f4:99:02:06:eb:
ca:24:a5:b1:ae:7f:6d:4f:66:d2:e0:91:2e:a7:00:
5e:b5:1a:30:8a:26:69:76:84:ef:52:bc:52:36:35:
56:a4:06:f0:f2:b2:04:99:eb:d7:7b:23:c3:44:58:
44:1c:c8:d3:70:b2:6e:30:fb:ba:2d:99:3e:9a:b8:
0e:ed:8c:8d:cc:e7:ef:ee:da:40:8a:ad:0d:a1:64:
ad:97:b2:6e:9e:29:8c:f4:7d:a1:1f:04:50:69:64:
bb:6f:56:5f:11:6f:13:59:08:f3:47:83:97:ca:72:
09:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:D2:FE:30:54:21:40:AE:94:58:AA:8F:93:6E:76:19:27:04:F7:85
X509v3 Authority Key Identifier:
keyid:9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:fa:95:7a:72:57:51:cc:9b:bd:b0:a4:b4:72:ad:4e:ad:59:
8d:a9:85:f9:48:c5:4c:0b:37:4c:36:8c:77:94:09:33:d7:df:
a0:fc:24:95:2c:0c:85:9c:98:d5:85:a6:13:e0:0b:b8:93:cd:
28:df:5f:61:98:73:c4:1c:ac:87:45:f5:09:c8:7e:7a:81:04:
9d:18:52:ae:49:f2:80:80:98:a9:15:2e:a7:9f:9d:f4:a4:f7:
34:d4:c8:59:5f:89:5c:22:ea:3a:56:d0:79:fe:b6:2e:cf:3a:
93:93:d9:73:47:c7:65:47:9e:ff:5a:10:3f:2d:37:1c:79:8a:
5f:35:f2:35:09:10:cd:44:16:ef:dc:33:54:3b:85:a1:a8:b6:
64:ad:cf:80:c8:c1:ac:82:f8:6a:fe:d3:3d:f8:26:ad:75:7a:
7e:bd:ea:3d:1c:9a:60:16:5d:37:00:8a:95:da:6f:0d:1d:b8:
5b:f2:8d:82:fd:fd:d4:15:d8:f5:45:d9:24:f9:50:4c:92:44:
1d:15:83:23:c3:17:14:34:87:d3:c1:34:b9:f1:fe:56:02:42:
dd:85:41:4d:a5:30:f6:70:7e:20:8b:0e:aa:49:c0:94:8c:6e:
b8:23:c9:da:75:4d:db:25:1f:9d:c7:f7:e6:3d:1d:09:75:21:
84:5b:c6:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:03:41 2025 by rpki-client