Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
File: nfToC0ytTlC3iO3xaXZxLe7_bA0.mft (raw, json)
Hash identifier: Jr1qVYhDSqTVQmdcJ/CPXgbuaAu4fTu6iO18jhEKLnY=
Subject key identifier: 02:08:16:46:0E:D1:72:32:FB:D3:7C:5B:7B:F9:6C:09:EA:BC:73:E7
Authority key identifier: 9D:F4:E8:0B:4C:AD:4E:50:B7:88:ED:F1:69:76:71:2D:EE:FF:6C:0D
Certificate issuer: /CN=9df4e80b4cad4e50b788edf16976712deeff6c0d
Certificate serial: 019748FA139A59D8E1559911CDC986F578BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
Manifest number: 0E50
Signing time: Sat 07 Jun 2025 06:00:37 +0000
Manifest this update: Sat 07 Jun 2025 06:00:37 +0000
Manifest next update: Sun 08 Jun 2025 06:00:37 +0000
Files and hashes: 1: mTtxU7O_lRz_UT2tjl3cUWas7pA.roa (hash: lHDy75xFNayt8SROCAEJF8vDi//tAi35Yjt2Fy8OX04=)
2: nfToC0ytTlC3iO3xaXZxLe7_bA0.crl (hash: kqhDFfQyBn6oKuF/hX5SQtkseWOavAqblhU7Wdc0TFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:13:9a:59:d8:e1:55:99:11:cd:c9:86:f5:78:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9df4e80b4cad4e50b788edf16976712deeff6c0d
Validity
Not Before: Jun 7 06:00:37 2025 GMT
Not After : Jun 8 06:00:37 2025 GMT
Subject: CN=020816460ed17232fbd37c5b7bf96c09eabc73e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f7:06:48:af:38:fd:00:74:47:ce:55:23:52:
bc:20:7e:04:61:3b:15:44:3f:62:7c:e8:a7:e2:9e:
60:0f:d4:63:3f:66:7b:6b:da:1a:fb:f4:d0:87:59:
cc:0e:b7:ab:78:3c:66:1f:71:63:7e:9c:39:bd:dd:
ad:1a:80:ad:75:1a:b7:19:2b:30:a6:f9:8c:80:bd:
f0:1d:b0:6b:f2:73:6d:5f:51:28:b2:4f:0d:aa:2f:
55:97:40:c6:db:cf:7f:d2:b9:fa:84:af:b8:13:6c:
73:c7:da:4b:eb:3d:27:f4:83:bb:f4:ff:5f:5a:b1:
e4:bc:e7:8a:ca:01:33:33:4c:e7:ab:0d:d0:ec:62:
06:0c:18:25:1c:dc:84:99:bc:79:16:db:3c:c2:b0:
b1:46:d9:16:ae:cd:fe:2d:6d:29:1e:03:03:d8:1f:
c9:89:2c:0f:2a:9d:ca:83:fd:86:56:66:88:9b:1c:
23:e1:7c:01:37:26:3e:e0:d7:04:57:42:20:85:80:
00:1c:fd:6e:e3:8a:10:1f:fe:94:52:d9:4a:25:8d:
67:f7:6b:31:24:35:95:b3:04:68:e3:af:03:cd:36:
54:29:65:b3:5e:42:46:0b:d7:81:16:ad:c1:1b:68:
8e:1b:e9:66:e7:3d:de:64:58:28:ea:0d:8f:ec:cb:
e1:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:08:16:46:0E:D1:72:32:FB:D3:7C:5B:7B:F9:6C:09:EA:BC:73:E7
X509v3 Authority Key Identifier:
keyid:9D:F4:E8:0B:4C:AD:4E:50:B7:88:ED:F1:69:76:71:2D:EE:FF:6C:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:04:31:24:8a:3e:5c:39:a0:a7:93:5a:d5:c1:79:05:e9:c2:
da:7c:5e:3a:a2:3f:f1:50:0a:af:94:a9:bd:0a:5b:c6:5a:9e:
88:7e:db:e8:52:e5:82:80:5a:3d:c9:ab:34:a0:6c:b2:ac:0e:
c9:5d:7d:f7:be:45:2c:98:ef:15:cd:c2:87:4a:33:c3:83:94:
31:46:d4:8e:15:2d:d5:dc:5e:e5:d8:93:5b:32:72:c5:a7:38:
35:07:e1:28:56:7b:1c:d9:6f:fb:b9:37:53:11:7c:a2:ff:66:
c9:67:70:ad:5b:22:86:ee:02:1b:98:38:cc:c3:8b:64:d1:8f:
59:0a:cd:08:64:32:c7:4a:31:6e:df:95:0e:f2:0d:0c:d0:a5:
64:0a:34:a1:19:d0:c4:63:95:1e:fb:8a:73:cb:d5:93:8f:ea:
74:f1:29:47:a3:11:84:e6:51:b5:9a:9a:73:11:67:97:1b:f4:
60:a9:27:79:73:9d:47:f8:2d:99:e0:4c:f6:cb:33:27:60:c0:
e3:88:a8:9d:65:0d:67:c9:c1:9e:95:5d:12:37:e9:a2:59:0f:
25:02:1c:0b:c2:f2:7e:ac:50:4b:82:ee:43:0c:9d:08:5d:83:
ad:99:43:f2:24:7f:34:79:ed:64:d8:3e:03:cc:d1:55:6b:27:
d3:6d:d3:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:49:53 2025 by rpki-client