Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft
File: nLt3urQ4qT002dXAqOC57zKuXaA.mft (raw, json)
Hash identifier: cHz9Y7sgoAC8SeSMO1MEcCAVL9opOWI1RmojNa5yMZg=
Subject key identifier: 3F:EE:1B:51:51:83:C7:9E:F8:08:4F:F8:B2:36:30:62:C1:50:A9:16
Authority key identifier: 9C:BB:77:BA:B4:38:A9:3D:34:D9:D5:C0:A8:E0:B9:EF:32:AE:5D:A0
Certificate issuer: /CN=9cbb77bab438a93d34d9d5c0a8e0b9ef32ae5da0
Certificate serial: 0197C9F1AB808EB0ECF70B6E70AFC3F03015
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft
Manifest number: 0745
Signing time: Wed 02 Jul 2025 07:02:27 +0000
Manifest this update: Wed 02 Jul 2025 07:02:27 +0000
Manifest next update: Thu 03 Jul 2025 07:02:27 +0000
Files and hashes: 1: TAsOnRZq8fiVm7IgWJUxtwQKXQw.roa (hash: uvW+4Cm/xTtLLngk0h3md/Re7mjqyVC2fS5xyiOuuj4=)
2: nLt3urQ4qT002dXAqOC57zKuXaA.crl (hash: mHWva2yAfzgp4FY7H9WTWcnJLnkJASykyKgxWT/uQUI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 07:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:f1:ab:80:8e:b0:ec:f7:0b:6e:70:af:c3:f0:30:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cbb77bab438a93d34d9d5c0a8e0b9ef32ae5da0
Validity
Not Before: Jul 2 07:02:27 2025 GMT
Not After : Jul 3 07:02:27 2025 GMT
Subject: CN=3fee1b515183c79ef8084ff8b2363062c150a916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:40:62:e7:bf:34:99:86:43:ca:cf:22:d0:48:
72:3a:d4:85:e6:47:fc:89:77:19:bb:9b:a7:56:55:
9f:8d:8e:78:16:24:9d:cf:a4:e9:e9:08:d2:2e:cd:
03:22:bf:2f:e0:35:e5:b9:38:56:3d:c1:21:ca:53:
68:9e:96:a5:a8:26:1d:4d:d7:28:84:c4:33:7e:96:
4f:d9:8b:cf:d1:5b:5a:a9:c7:65:36:e5:77:4e:e4:
e2:2c:31:85:f8:0f:70:0a:2f:1e:ca:9c:2c:f9:6c:
ee:29:01:9f:8e:8d:4f:61:43:9e:c2:c5:36:9f:ac:
c1:7f:24:17:d8:38:28:6b:04:96:3b:b5:fd:05:a6:
61:76:a0:48:d2:ef:7f:97:6b:65:a8:18:fe:24:76:
93:45:2b:7f:68:3e:64:bb:75:14:57:cd:d2:f8:02:
6d:5d:11:70:ca:1d:7a:f0:35:db:bf:55:98:61:3d:
f3:cc:0e:ab:3f:32:d5:32:44:56:16:00:41:16:ad:
3d:15:76:d8:83:16:2b:92:10:97:87:43:04:57:ca:
e2:c7:2b:c2:8e:a6:dc:c3:01:16:66:5a:0a:71:d7:
c1:eb:fe:e4:90:9c:06:5d:d5:1d:3b:9a:39:42:2c:
7b:8a:b1:fb:39:c8:87:c1:53:18:5d:cb:ad:8f:22:
bb:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:EE:1B:51:51:83:C7:9E:F8:08:4F:F8:B2:36:30:62:C1:50:A9:16
X509v3 Authority Key Identifier:
keyid:9C:BB:77:BA:B4:38:A9:3D:34:D9:D5:C0:A8:E0:B9:EF:32:AE:5D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:6e:14:5a:d6:c4:5b:fd:f4:af:c7:23:98:18:bb:1f:45:fa:
22:96:01:b5:bd:27:b8:7e:d1:d6:65:33:5c:57:68:26:02:94:
a4:a3:03:17:e7:a1:43:44:71:9f:9d:39:06:ea:b0:ab:1e:c9:
72:16:94:78:07:d2:a8:11:d4:7c:5b:a2:36:09:ca:b1:80:f3:
38:47:f8:5b:5b:4c:4a:43:d0:b4:4f:5b:3d:b6:8b:a0:d6:2e:
2d:86:79:c5:fe:bc:f8:b8:bd:7e:b0:4d:ee:06:ed:b2:8c:c8:
7e:eb:3b:68:ab:f5:da:a1:3a:ae:27:d8:40:bf:e1:55:74:32:
00:e4:dc:d3:bc:dc:b3:89:46:4c:df:14:9c:a3:28:65:95:b7:
72:77:2c:c9:e6:e3:30:d8:45:83:47:6f:cf:83:a6:58:57:02:
39:38:a9:51:b3:7a:77:c0:17:38:75:6e:71:20:d2:1b:49:4f:
a2:a2:42:ba:0a:8b:af:d3:2c:8e:8b:51:a8:44:ca:04:15:76:
a0:8d:07:8d:f3:92:be:69:65:ee:f9:40:3e:3b:1d:8c:fa:eb:
a9:01:a4:26:f1:cb:36:fe:29:16:fd:36:5f:fb:83:0d:f3:57:
9c:47:84:6d:1e:ef:c7:7c:7e:aa:9e:39:a5:f4:f3:2d:86:ac:
e9:64:70:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 13:19:11 2025 by rpki-client