Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
File: nGfqNKARpHc4cVg-w5VOeR2MAo0.mft (raw, json)
Hash identifier: crXCDRbBcqoligGajG85zouL0z4cuZxXL4OGbUd32qQ=
Subject key identifier: 5B:3A:6F:AC:80:7B:5D:E3:43:B3:27:7A:30:05:45:79:56:E8:F5:96
Authority key identifier: 9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
Certificate issuer: /CN=9c67ea34a011a4773871583ec3954e791d8c028d
Certificate serial: 01975121C2540626FA2E5DFBDE0D12BC77B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
Manifest number: 0C65
Signing time: Sun 08 Jun 2025 20:00:56 +0000
Manifest this update: Sun 08 Jun 2025 20:00:56 +0000
Manifest next update: Mon 09 Jun 2025 20:00:56 +0000
Files and hashes: 1: NCPzn1GpZq4vT4gRDeBcmpEUhRQ.roa (hash: Vq8Q1+OKJnlcLx/yX0O6NcYNdeQRXSpw2T1WMWL6+Zw=)
2: nGfqNKARpHc4cVg-w5VOeR2MAo0.crl (hash: vOdA04HJ5M8dfsCDA1SyXJvNxsy3VKTtA1HXr89Wl38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:21:c2:54:06:26:fa:2e:5d:fb:de:0d:12:bc:77:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c67ea34a011a4773871583ec3954e791d8c028d
Validity
Not Before: Jun 8 20:00:56 2025 GMT
Not After : Jun 9 20:00:56 2025 GMT
Subject: CN=5b3a6fac807b5de343b3277a3005457956e8f596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0e:01:c7:f0:94:d8:f4:2a:a3:33:9e:a7:a9:
89:3a:c1:fb:37:36:53:8b:85:97:d6:59:a9:98:99:
e7:69:fb:cf:36:17:84:ee:25:62:94:54:95:56:fc:
2d:a1:7b:d0:7f:d8:77:43:64:27:27:c9:61:00:23:
21:72:09:10:ed:e6:08:58:33:c0:2e:db:3d:94:a2:
bb:a1:ed:cc:70:9e:4c:c9:2c:ce:c8:21:c3:0d:8c:
66:a4:03:ee:38:3a:3f:03:7b:c8:52:c1:c7:3a:c1:
3c:fd:59:64:3f:20:72:fc:6b:b6:38:eb:29:82:7f:
c0:4f:01:a6:6d:12:75:07:ab:02:62:73:9a:ad:51:
22:52:7a:78:b1:e2:71:e9:f5:8a:49:85:07:a8:09:
ce:8e:77:49:72:c9:41:26:cc:f1:0c:dd:fc:ea:9e:
c6:bb:8c:98:b5:00:1c:eb:7e:6e:10:53:17:50:ea:
bf:bf:44:af:aa:9e:6c:6e:39:e4:a6:f5:79:33:ed:
5c:5d:f6:4c:f0:f3:b1:d4:f0:d7:40:d1:53:4b:d5:
f9:37:f6:90:2a:60:de:03:89:58:1b:2e:41:92:4a:
30:0e:f1:13:f2:af:43:60:7e:20:2b:0f:50:a6:df:
9a:2f:bd:0e:c8:e9:28:47:21:52:db:5d:00:ef:84:
37:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:3A:6F:AC:80:7B:5D:E3:43:B3:27:7A:30:05:45:79:56:E8:F5:96
X509v3 Authority Key Identifier:
keyid:9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:e1:8b:34:47:50:f7:bd:2c:87:6a:ef:a8:fc:b6:91:34:78:
be:b5:df:bd:27:78:a5:2a:d4:6c:da:7a:81:d9:e0:e9:50:6f:
bf:94:4f:17:03:3f:e8:39:7b:94:1a:5d:cf:93:8b:93:66:31:
58:e2:3b:b3:05:7a:c3:fb:18:59:08:a0:ec:8b:e3:a3:88:d4:
67:d8:a5:25:8f:b7:7b:65:c7:eb:d4:3f:c6:f6:d2:a0:48:0a:
c0:81:86:a1:a6:5f:25:ef:d0:62:2e:60:33:1d:df:64:ae:24:
f1:09:69:05:16:ed:93:fd:ab:01:d3:46:03:ec:db:e6:b1:cd:
bb:98:74:be:72:0f:13:aa:07:24:2b:fa:ae:f4:89:42:2e:b2:
a7:89:34:7f:df:22:34:9b:07:ec:98:dd:4d:24:2d:e2:bc:70:
e1:37:8b:8e:76:82:1b:34:2f:5f:e1:a8:50:4d:58:8b:7c:3b:
82:12:3f:5c:24:3a:7d:02:8c:fe:d6:a8:34:e2:74:78:c8:76:
79:11:58:e6:2c:a6:e6:02:ae:08:9d:e0:9c:d9:a4:cd:fe:95:
a7:0c:a2:35:b7:f2:cf:25:27:35:ed:8a:91:6b:6c:9b:0b:51:
c4:b8:b6:10:a9:43:11:de:38:15:31:02:fe:15:8e:f1:e7:7d:
3b:e8:1d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:22:24 2025 by rpki-client