Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
File: nzbQijzYpC9Goslt_XLtjO4nlHc.mft (raw, json)
Hash identifier: NkA7tHwLKM3olCccUbn70TJNGZ2JTT4KFxK6FliNm/g=
Subject key identifier: FF:60:3F:21:22:9B:F2:3C:C7:3A:9B:C8:1C:4D:47:BD:B5:38:2F:99
Authority key identifier: 9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
Certificate issuer: /CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Certificate serial: 019922FA45028FA4DB74D6F29BE1F509ABAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
Manifest number: 0C79
Signing time: Sun 07 Sep 2025 07:00:50 +0000
Manifest this update: Sun 07 Sep 2025 07:00:50 +0000
Manifest next update: Mon 08 Sep 2025 07:00:50 +0000
Files and hashes: 1: nzbQijzYpC9Goslt_XLtjO4nlHc.crl (hash: hFf8atQvTirvum0S0/MYhD2hHmr78jWywYCYFsWL+Kk=)
2: twzQnUgBAT35ET2oNZWOjjEoBE4.roa (hash: HIWNIMTAhxf1Wnub1ymBGmdU28kJ6snFsV9+PWAEB7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:45:02:8f:a4:db:74:d6:f2:9b:e1:f5:09:ab:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Validity
Not Before: Sep 7 07:00:50 2025 GMT
Not After : Sep 8 07:00:50 2025 GMT
Subject: CN=ff603f21229bf23cc73a9bc81c4d47bdb5382f99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:92:b7:a7:67:17:fe:ed:e2:1a:7e:0d:c6:21:
a8:ac:28:2b:52:c3:f3:54:d0:30:2c:1c:a5:8c:b3:
2c:3e:de:4d:97:52:d4:59:5e:bc:94:4b:c7:f2:82:
b8:28:10:73:86:f0:d7:cf:5c:3e:7a:d4:6a:fe:61:
d1:ca:13:22:a4:44:9d:aa:6f:2e:1a:9e:66:5c:a5:
79:e4:0c:6f:27:de:4a:c3:d3:49:25:56:24:e3:d4:
c3:e0:35:36:f1:9d:4e:04:dc:0d:03:e6:10:25:f4:
e7:ea:fe:53:cf:df:21:b6:95:8e:ed:b3:72:16:56:
c6:cf:06:8a:81:0b:ad:81:f5:5f:fe:80:1f:9b:33:
0d:d1:47:12:09:a8:a4:43:0d:2a:10:ad:fc:5e:9f:
ed:f2:28:f4:da:a6:fc:9a:b2:a4:1f:17:fa:c3:7c:
8c:ae:3c:55:6b:ce:14:18:cf:44:87:33:84:9d:01:
fa:98:d5:15:3c:2f:b7:37:18:93:65:bf:b1:56:32:
a0:c5:d4:8a:bd:33:ed:ce:d8:c6:41:5f:52:40:6e:
55:b8:9d:d2:bf:2e:36:71:1f:30:cd:52:0d:c9:94:
61:60:2f:34:8c:e7:c1:bb:8d:c3:36:fd:4d:2e:c6:
93:9e:c4:46:50:f4:c3:e1:30:1d:f2:58:f9:90:ef:
19:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:60:3F:21:22:9B:F2:3C:C7:3A:9B:C8:1C:4D:47:BD:B5:38:2F:99
X509v3 Authority Key Identifier:
keyid:9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:cb:0f:6c:82:31:cb:19:de:8e:67:c2:e9:3f:69:da:42:49:
cd:d1:e1:e1:16:0f:6e:92:c9:ed:79:5a:94:3b:13:86:cb:6b:
d6:33:68:9d:87:88:70:00:0f:66:3b:dc:8a:7f:d3:e8:43:7e:
76:bd:0a:6f:7d:15:d5:57:7e:5f:ee:f8:08:36:c3:b4:9f:8d:
d2:1c:a0:34:55:1c:ce:c1:51:de:cf:30:01:91:ee:2a:72:e1:
fe:5a:96:5e:ac:13:58:4c:bc:8a:ac:63:d0:98:66:13:d4:53:
b7:35:75:79:a2:45:bb:67:3a:e0:0c:bc:05:a9:ff:58:1f:ec:
e4:b2:20:ee:08:e3:5d:70:f3:d9:09:f7:45:81:94:e3:19:e8:
fd:54:b8:e4:17:d4:10:54:75:69:ed:15:4b:b0:7b:07:cc:36:
7d:d5:37:ce:ed:91:44:e6:60:44:59:32:0f:32:36:ef:06:f9:
d2:f4:e8:c3:4d:a1:0e:d5:fe:1d:f8:9b:e2:b3:d3:fc:d7:dd:
9e:e1:71:0d:e7:68:31:06:fc:2a:fb:bc:48:25:d2:6e:06:0e:
60:6c:ab:7b:cc:7a:a7:ee:04:c0:a4:45:41:7d:92:34:b5:b8:
83:1a:ab:03:45:47:e4:8b:9f:db:ba:9f:69:83:4b:cc:bc:c7:
08:fe:4f:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:57:05 2025 by rpki-client