Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.mft
File: niX4djqjUWiba6M2JpqyHE4BILM.mft (raw, json)
Hash identifier: IvpG2hz1TC5niDVngGDH3Kpvk0SLdBBP6OIS3YsbytA=
Subject key identifier: 5D:E0:CA:B8:ED:77:5B:B5:E5:09:8B:19:F0:F5:F5:5C:0B:60:27:A2
Authority key identifier: 9E:25:F8:76:3A:A3:51:68:9B:6B:A3:36:26:9A:B2:1C:4E:01:20:B3
Certificate issuer: /CN=9e25f8763aa351689b6ba336269ab21c4e0120b3
Certificate serial: 01974CD6AF3A12527E151B81340743B403E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/niX4djqjUWiba6M2JpqyHE4BILM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.mft
Manifest number: 03A2
Signing time: Sun 08 Jun 2025 00:00:27 +0000
Manifest this update: Sun 08 Jun 2025 00:00:27 +0000
Manifest next update: Mon 09 Jun 2025 00:00:27 +0000
Files and hashes: 1: 3lv0MS0KMvs2NqTlqtd3HvxtHfA.roa (hash: Jn8Yd6x4goPshXFFHZFFSl5WpHb8SXFgvxZ7Lsgfvu4=)
2: niX4djqjUWiba6M2JpqyHE4BILM.crl (hash: AmunqggPnz1fpUwKvCzhcJmlpNWj4IjN6I6TGuOpldI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.mft
rsync://rpki.ripe.net/repository/DEFAULT/niX4djqjUWiba6M2JpqyHE4BILM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 00:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:d6:af:3a:12:52:7e:15:1b:81:34:07:43:b4:03:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e25f8763aa351689b6ba336269ab21c4e0120b3
Validity
Not Before: Jun 8 00:00:27 2025 GMT
Not After : Jun 9 00:00:27 2025 GMT
Subject: CN=5de0cab8ed775bb5e5098b19f0f5f55c0b6027a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:74:ec:55:7c:3a:ed:42:67:e1:b6:7c:50:f1:
db:9b:47:6c:c7:0f:9a:f9:90:a6:89:2e:5f:f1:93:
50:80:54:da:44:d9:17:10:49:76:8b:02:dc:66:14:
ed:b1:55:42:ba:77:5c:7f:10:86:0b:9e:66:56:0d:
64:96:b4:19:d6:17:aa:db:e4:dc:c0:cd:8c:2c:33:
dd:6a:b4:f6:f3:8c:fb:2e:57:83:83:81:a1:a1:e3:
d3:f3:c3:1b:fb:6d:59:0d:05:6a:be:64:7b:3c:07:
ec:d7:51:18:a2:86:6d:e7:98:cf:44:e4:1c:90:d5:
f5:63:29:3b:9e:c1:c4:8e:3a:76:ce:90:1e:4a:01:
78:ef:0a:ab:cc:4f:0f:1d:66:ce:bc:cb:75:8f:32:
ff:b3:22:b2:4b:7a:26:45:8f:34:ee:07:50:ea:1a:
b4:b0:91:d2:10:c5:bb:5b:26:47:a3:3b:92:48:32:
c3:73:1b:a0:3d:cc:fd:18:71:e6:7d:59:5f:d1:b1:
58:89:2e:6e:27:c1:4b:f4:5b:68:7c:82:b9:59:d4:
b7:3d:70:a2:e8:9d:fd:c1:a7:a4:b1:22:5e:34:11:
62:f0:c4:33:88:64:21:86:8c:83:aa:26:d7:33:ea:
bb:7c:cb:51:91:ab:ba:be:28:03:07:3d:89:f4:68:
1a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:E0:CA:B8:ED:77:5B:B5:E5:09:8B:19:F0:F5:F5:5C:0B:60:27:A2
X509v3 Authority Key Identifier:
keyid:9E:25:F8:76:3A:A3:51:68:9B:6B:A3:36:26:9A:B2:1C:4E:01:20:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/niX4djqjUWiba6M2JpqyHE4BILM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:53:59:4b:7d:72:e2:d3:c8:03:d0:b0:cb:f7:f1:cf:ca:70:
01:1c:23:f2:81:4d:7c:cc:63:55:b5:5e:bc:e7:c1:8f:95:22:
26:fb:ac:d4:66:20:33:d4:b5:01:2a:81:48:69:7e:59:90:9f:
64:fc:32:64:b4:33:c0:71:2f:97:57:2a:da:1c:0a:35:f2:6d:
3a:f8:0d:54:1e:ae:a9:6f:85:3e:5f:8c:56:11:50:72:70:a2:
d1:c3:bf:83:66:be:19:e9:ce:c8:23:fb:96:f7:ba:81:5f:82:
0f:3a:c0:81:65:be:df:70:de:67:af:7c:4b:3c:1d:1c:50:45:
5c:ce:8d:6a:89:a4:49:23:7b:b3:9f:21:cc:1a:eb:57:08:bd:
f2:c2:1a:99:d0:63:3f:0f:25:61:02:4e:7d:56:a6:c0:4f:b6:
e0:f2:f5:9f:b0:6b:07:e4:f6:bb:c7:bd:0c:2c:89:c3:19:a6:
ae:0c:7a:e9:10:62:be:21:6a:5b:e1:b1:a9:d9:48:5f:8a:76:
8c:2a:3c:43:44:ad:65:58:db:85:e5:0b:74:9f:33:a2:5b:b9:
46:f4:89:c6:27:00:3b:46:71:d2:db:0c:12:34:fa:15:a9:f8:
53:29:fd:e4:b4:54:89:70:f6:7c:a2:c6:76:d8:f4:d2:3f:ef:
fe:e9:d5:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 08:00:46 2025 by rpki-client