Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/76f462-ad81-4f02-898b-a96f61c0c1da/1/nyHqqnvQ7mfKYwLj16quZNcpQC0.mft
File: nyHqqnvQ7mfKYwLj16quZNcpQC0.mft (raw, json)
Hash identifier: /hoTwOMBZI4P5UBHutJ4i/pL1Z8lSn2yQRDL1hZmQ+g=
Subject key identifier: F6:58:8D:AB:87:88:64:1B:72:53:1F:EC:C2:2E:A6:6F:54:D1:D3:FE
Authority key identifier: 9F:21:EA:AA:7B:D0:EE:67:CA:63:02:E3:D7:AA:AE:64:D7:29:40:2D
Certificate issuer: /CN=9f21eaaa7bd0ee67ca6302e3d7aaae64d729402d
Certificate serial: 0197477978FFE0B656F0982FA55F98C18AC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyHqqnvQ7mfKYwLj16quZNcpQC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/76f462-ad81-4f02-898b-a96f61c0c1da/1/nyHqqnvQ7mfKYwLj16quZNcpQC0.mft
Manifest number: 0660
Signing time: Fri 06 Jun 2025 23:00:32 +0000
Manifest this update: Fri 06 Jun 2025 23:00:32 +0000
Manifest next update: Sat 07 Jun 2025 23:00:32 +0000
Files and hashes: 1: nyHqqnvQ7mfKYwLj16quZNcpQC0.crl (hash: soIqUQn4JAYAeMuaELrsO0h1yX/vF2CH0Fa4j04hY+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/76f462-ad81-4f02-898b-a96f61c0c1da/1/nyHqqnvQ7mfKYwLj16quZNcpQC0.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/76f462-ad81-4f02-898b-a96f61c0c1da/1/nyHqqnvQ7mfKYwLj16quZNcpQC0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nyHqqnvQ7mfKYwLj16quZNcpQC0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 23:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:78:ff:e0:b6:56:f0:98:2f:a5:5f:98:c1:8a:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f21eaaa7bd0ee67ca6302e3d7aaae64d729402d
Validity
Not Before: Jun 6 23:00:32 2025 GMT
Not After : Jun 7 23:00:32 2025 GMT
Subject: CN=f6588dab8788641b72531fecc22ea66f54d1d3fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2a:d7:7f:fa:c8:c4:05:14:7e:ea:be:e2:d6:
ff:f3:80:88:e4:f7:ad:94:7e:0b:90:10:c0:68:04:
2f:05:eb:f3:cc:ba:f9:70:d3:f5:40:b9:53:8e:a4:
0c:78:27:aa:68:99:4d:aa:02:7b:91:a3:dc:ba:2c:
aa:4c:ae:c1:31:e4:46:bb:99:56:95:f8:7a:8c:e2:
13:ae:79:ff:3a:91:a7:c1:2e:f7:3d:e0:4d:9a:74:
a7:1b:3b:e5:c0:f3:a7:f9:4e:2f:de:c6:e5:9b:52:
4d:a4:a0:29:5e:f2:44:11:0f:79:87:c1:d3:58:6c:
80:f4:23:dc:25:c9:10:01:cd:c5:b1:1d:a9:af:8a:
a8:28:f8:a3:b8:94:78:16:18:3e:6f:4d:b5:c9:d5:
48:9d:2b:4c:fb:e8:80:a6:eb:cb:de:43:31:0a:35:
27:3b:0a:8c:7e:62:46:4a:ab:97:03:21:c0:9f:97:
ff:cc:c0:92:5e:07:48:f7:84:e8:dd:12:09:02:c0:
29:d3:5d:f8:d2:77:49:39:d6:bc:22:5e:bc:ae:6e:
8b:fc:19:20:e9:99:56:42:2a:2d:32:d3:25:52:40:
4f:99:fb:0c:28:40:dc:37:97:fb:82:4f:e7:f2:ee:
f7:a5:bb:b7:db:d6:f6:d8:9f:3a:83:a8:09:ea:d2:
55:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:58:8D:AB:87:88:64:1B:72:53:1F:EC:C2:2E:A6:6F:54:D1:D3:FE
X509v3 Authority Key Identifier:
keyid:9F:21:EA:AA:7B:D0:EE:67:CA:63:02:E3:D7:AA:AE:64:D7:29:40:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyHqqnvQ7mfKYwLj16quZNcpQC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/76f462-ad81-4f02-898b-a96f61c0c1da/1/nyHqqnvQ7mfKYwLj16quZNcpQC0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/76f462-ad81-4f02-898b-a96f61c0c1da/1/nyHqqnvQ7mfKYwLj16quZNcpQC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:5c:5f:71:b4:9c:4f:7f:27:cc:fe:be:ae:4a:3e:33:f9:49:
51:10:cb:6a:b5:1a:69:64:d6:fa:80:be:f6:8a:7a:94:6a:61:
8a:a1:5f:59:db:f1:5e:1e:b0:e9:24:9d:46:8a:31:9f:e0:cf:
17:3e:8e:88:d3:b8:c0:79:45:44:bf:a5:62:a0:c8:2a:39:d9:
40:a0:bc:5e:bc:43:ff:c8:3a:51:ad:04:f6:89:a6:21:b5:55:
fb:d7:50:8d:9a:6e:64:78:cc:a1:f9:9a:e1:93:78:f3:89:9d:
9b:f8:a8:92:af:91:0c:6a:e5:ec:ba:35:69:c6:40:35:11:18:
40:8c:01:22:d2:98:5f:17:da:ba:ae:80:20:96:96:0f:42:84:
cf:87:b4:f7:d0:60:84:c6:f6:01:54:70:fb:bb:f3:31:f3:be:
ba:2e:b7:75:cb:01:61:fa:7b:bf:46:9b:7d:f2:78:b6:18:3e:
2e:7a:68:ce:08:03:6f:7d:76:40:b3:46:48:43:76:c8:4e:c8:
71:51:30:5e:18:79:ca:d6:7b:1c:1b:d1:5e:9a:1b:b8:d0:ba:
8e:8b:ea:24:48:0c:ad:43:77:9a:9d:ab:e2:a7:fa:27:5b:10:
5c:f0:58:db:10:2a:40:d8:f9:ef:f1:70:3d:0f:d7:68:63:d9:
cc:3e:61:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:24:57 2025 by rpki-client