Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
File: NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft (raw, json)
Hash identifier: onItc3gTAH4xbN9t2QGqGcbwO4G5PevLwbTBQ3yENlY=
Subject key identifier: B1:49:8E:A3:50:C9:7E:1C:6E:DA:6A:8D:F7:98:73:D8:9A:E9:BD:40
Authority key identifier: 35:3F:17:F4:BB:B1:93:46:DC:5A:FC:0C:23:58:79:FB:E6:35:7C:6D
Certificate issuer: /CN=353f17f4bbb19346dc5afc0c235879fbe6357c6d
Certificate serial: 019747B0A680167210C6F839516ABAC369AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
Manifest number: 0DFA
Signing time: Sat 07 Jun 2025 00:00:48 +0000
Manifest this update: Sat 07 Jun 2025 00:00:48 +0000
Manifest next update: Sun 08 Jun 2025 00:00:48 +0000
Files and hashes: 1: NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl (hash: DskJOMh+wx7XALgu6MkLxt26vFrVH0WxJJnUvHMGO8A=)
2: ZIEntIvRdoyNG_9f7umqM8GaOP0.roa (hash: fyIclvXxfmafIM00Oljz1bkGgUIAKrrEkFW8CDlF9q4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:b0:a6:80:16:72:10:c6:f8:39:51:6a:ba:c3:69:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=353f17f4bbb19346dc5afc0c235879fbe6357c6d
Validity
Not Before: Jun 7 00:00:48 2025 GMT
Not After : Jun 8 00:00:48 2025 GMT
Subject: CN=b1498ea350c97e1c6eda6a8df79873d89ae9bd40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ca:67:c0:7c:3a:13:8f:71:a7:79:7b:14:d2:
84:73:62:e0:27:4e:08:92:f4:2a:f2:b9:f2:17:b4:
f2:a0:ca:30:6e:ed:30:21:26:f4:13:8c:b8:a1:1f:
b9:23:28:03:e7:31:10:30:e5:b8:b3:d2:6c:fe:ff:
0b:19:4f:f6:de:89:f5:c2:c5:af:ea:1c:88:23:f9:
d0:38:dc:8a:4a:66:00:ff:b1:b7:3f:d5:d9:85:9d:
79:e4:fd:25:11:1e:4b:2c:97:c3:7d:b7:a1:97:10:
14:4f:3c:84:99:52:6e:1e:cf:f8:14:c8:94:41:20:
20:7e:a9:2f:81:74:b7:99:be:f3:00:b8:3d:44:ee:
dd:bf:f4:37:c4:3a:11:d7:b8:2a:c0:1b:d0:34:13:
f1:a3:35:f5:94:4f:d9:a4:49:a3:29:31:57:17:a2:
29:e0:9b:22:96:df:24:30:0b:a4:7b:9e:7e:f3:6a:
dd:ca:1d:45:9a:19:1f:b2:9c:47:1c:3f:dc:1c:5c:
26:75:d5:57:83:ff:3f:31:ea:18:6e:54:08:e0:77:
7e:9d:d5:fb:34:81:89:0a:31:10:5f:6b:7b:71:40:
1f:14:2c:49:c3:cc:ca:22:ec:e2:6f:2f:78:71:4f:
4a:67:ec:0b:67:43:d7:5a:73:d7:8c:d3:3a:a6:d9:
cb:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:49:8E:A3:50:C9:7E:1C:6E:DA:6A:8D:F7:98:73:D8:9A:E9:BD:40
X509v3 Authority Key Identifier:
keyid:35:3F:17:F4:BB:B1:93:46:DC:5A:FC:0C:23:58:79:FB:E6:35:7C:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:0b:15:51:24:dd:06:39:4e:de:e9:01:fa:3d:c2:ea:98:75:
3d:2d:6b:f5:04:f3:f1:8a:f9:c1:1b:97:72:80:00:c3:9b:46:
61:d9:09:05:b4:be:0c:8a:3b:5f:33:9f:6c:df:9e:13:11:63:
9d:a3:ea:1c:f7:38:63:3a:22:fb:1e:ca:2d:09:da:ca:1c:4f:
63:eb:70:64:a3:55:b4:9f:e6:ec:ae:d7:80:dd:ed:e0:06:30:
4b:ba:0d:ca:79:a1:07:92:db:7b:a7:fc:58:2b:8c:dc:7a:84:
b7:44:5c:91:d8:34:1d:e4:e9:f5:1f:61:c7:6c:53:37:67:4c:
b2:79:95:b6:99:04:98:0b:9c:49:e4:66:42:08:d9:48:17:f4:
75:ef:51:48:1f:94:b4:e0:ce:92:f3:e7:ac:c2:65:f6:80:da:
e1:ca:78:18:13:ea:25:46:80:76:bb:fe:f0:31:be:e2:4e:cf:
05:37:72:d7:e1:b4:71:f4:20:3f:ca:59:1b:5b:78:82:c4:95:
f5:b3:a0:a2:34:2b:1f:7a:42:aa:67:ef:5f:de:5c:f2:e2:ef:
4e:34:d0:3a:ac:24:15:05:9d:63:c2:72:35:3d:f8:8e:08:09:
fe:a7:2d:55:6d:99:ea:e5:43:d8:cc:f1:4d:69:e9:d3:92:06:
3d:6d:79:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:00:11 2025 by rpki-client