Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
File: NutRbqkC2WStsqptytmh3A9bfv4.mft (raw, json)
Hash identifier: zbGHk9G7fNiiDbslk3JuFrdEOTeeH9Hp/+3TOT0LPUo=
Subject key identifier: 07:CC:84:6C:65:8D:86:BD:D9:C8:61:C8:BE:5E:5C:47:FD:AE:23:88
Authority key identifier: 36:EB:51:6E:A9:02:D9:64:AD:B2:AA:6D:CA:D9:A1:DC:0F:5B:7E:FE
Certificate issuer: /CN=36eb516ea902d964adb2aa6dcad9a1dc0f5b7efe
Certificate serial: 01974BC4549F6387E2635EDE9B025196CFB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
Manifest number: 150F
Signing time: Sat 07 Jun 2025 19:00:47 +0000
Manifest this update: Sat 07 Jun 2025 19:00:47 +0000
Manifest next update: Sun 08 Jun 2025 19:00:47 +0000
Files and hashes: 1: NutRbqkC2WStsqptytmh3A9bfv4.crl (hash: NKRpGZKiw3QfJ3ZsPe110QrYyJ/ThFtf5ALSHxmdoT8=)
2: XdAh2iIkdXAUuE10m0pcdADM_3Q.roa (hash: lEtjV/lSmPRly69ux6s/y/s94dr1ooRNJ7kAyfLCuys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 19:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c4:54:9f:63:87:e2:63:5e:de:9b:02:51:96:cf:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36eb516ea902d964adb2aa6dcad9a1dc0f5b7efe
Validity
Not Before: Jun 7 19:00:47 2025 GMT
Not After : Jun 8 19:00:47 2025 GMT
Subject: CN=07cc846c658d86bdd9c861c8be5e5c47fdae2388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6e:44:eb:57:9f:c7:ec:f5:26:05:8f:ec:de:
26:99:5c:e7:63:9e:48:47:46:1b:89:77:b0:00:a0:
23:d3:af:40:7f:91:f4:5c:62:37:8a:4a:d5:72:49:
74:7b:67:c1:b1:d8:c2:f8:50:c1:c0:3a:c0:96:97:
f8:2c:74:d4:44:d1:94:5e:a2:d8:a4:fd:7b:b1:f8:
70:8f:94:34:45:d7:14:e7:5b:db:e6:a9:a8:f4:ca:
86:05:59:04:1d:a2:10:63:43:1f:05:6e:0a:cd:ca:
c3:ce:04:d7:5c:74:d9:12:fc:ca:22:3c:5a:71:13:
fc:4c:a7:82:1d:88:be:a7:2e:2e:c2:85:7b:2c:d0:
42:85:24:24:f7:2d:f9:0a:2e:19:e3:54:a6:fb:ee:
1b:1c:da:42:ff:b4:ae:e7:9e:ff:67:ec:f6:63:2f:
4a:72:22:f3:6a:f0:5f:e3:45:a0:04:af:e8:b1:01:
c1:d0:ec:ab:31:b6:87:b3:7b:ff:18:78:29:4f:d9:
68:96:99:49:24:a8:fd:3f:b6:f2:68:4c:f3:1f:3a:
02:7b:67:56:a5:05:a2:2d:7a:2f:34:c0:d6:9e:34:
aa:5a:4b:19:43:a5:f5:64:95:d4:73:50:42:04:3b:
7f:b9:01:6a:b5:99:2e:58:79:2c:e3:9d:84:75:f4:
0e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:CC:84:6C:65:8D:86:BD:D9:C8:61:C8:BE:5E:5C:47:FD:AE:23:88
X509v3 Authority Key Identifier:
keyid:36:EB:51:6E:A9:02:D9:64:AD:B2:AA:6D:CA:D9:A1:DC:0F:5B:7E:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:2a:af:e4:a1:99:37:2e:d8:47:ac:a6:4c:58:0b:fe:5d:26:
f0:a9:0f:06:ac:35:68:2a:00:e1:68:62:08:da:28:f7:22:8c:
9c:a6:d3:d1:e7:ca:64:69:d4:8b:c8:35:5b:4d:42:bc:69:85:
2b:ea:e0:a5:89:2c:b5:76:75:99:b9:a3:96:c8:9d:10:76:71:
01:a9:04:9a:8e:f4:2f:d8:e6:5c:10:2a:bb:8a:40:ca:2f:fe:
f3:b6:b7:27:cb:0e:76:fd:00:70:1a:15:2e:53:09:2f:31:5f:
8e:0d:5d:9f:66:c0:35:a0:be:d4:d3:0c:e0:c1:92:da:89:07:
a2:a5:70:9d:64:0a:03:c6:07:fe:ef:c5:29:15:73:2e:0c:48:
c4:6f:0a:72:a6:fd:7c:97:ba:99:6e:e0:5b:d3:db:0e:eb:9b:
e7:a5:e5:ad:4f:ce:a2:46:d2:c9:98:97:dc:7b:a5:b2:f0:68:
47:4f:7f:29:f1:ef:95:10:d0:3d:34:0c:6a:fa:7d:be:59:11:
62:03:47:29:61:1b:55:81:b5:b5:15:24:f1:2c:06:0c:9d:4f:
4d:19:83:79:02:43:c0:ae:17:0a:b8:d1:62:e0:26:8a:1d:c6:
fa:34:5b:f7:1a:e2:01:f0:57:fe:b5:bc:ad:50:ea:0c:7e:53:
af:d3:fa:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:35:23 2025 by rpki-client