Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft
File: pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft (raw, json)
Hash identifier: bLSyJk2WalFaZra/e4/x075VuaT1+cAzpdQ60dK+NBI=
Subject key identifier: F2:C5:CF:FE:37:CE:C8:7C:A3:BF:DC:E8:66:07:1C:FC:03:A6:00:A1
Authority key identifier: A4:D3:22:69:30:2E:1C:BC:CB:AA:C0:E0:E5:AF:8A:86:44:98:A1:35
Certificate issuer: /CN=a4d32269302e1cbccbaac0e0e5af8a864498a135
Certificate serial: 0197496852EE938A51FDE3266BE2A99E415F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pNMiaTAuHLzLqsDg5a-KhkSYoTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft
Manifest number: 0E62
Signing time: Sat 07 Jun 2025 08:01:02 +0000
Manifest this update: Sat 07 Jun 2025 08:01:02 +0000
Manifest next update: Sun 08 Jun 2025 08:01:02 +0000
Files and hashes: 1: WhtcuJJ0NSWsio8f8rQNMbqqeD8.roa (hash: uBIazeW9ZJrIEfawzpjRmH4sNuGdOT1AiFSbiZsPXDU=)
2: pNMiaTAuHLzLqsDg5a-KhkSYoTU.crl (hash: sLgLNHVH/e9pM6EjvS628qMb5HVgZ5ZfOHkVJIOUNo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/pNMiaTAuHLzLqsDg5a-KhkSYoTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:52:ee:93:8a:51:fd:e3:26:6b:e2:a9:9e:41:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4d32269302e1cbccbaac0e0e5af8a864498a135
Validity
Not Before: Jun 7 08:01:02 2025 GMT
Not After : Jun 8 08:01:02 2025 GMT
Subject: CN=f2c5cffe37cec87ca3bfdce866071cfc03a600a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c9:b4:89:4e:27:61:7c:7a:47:1f:68:c5:eb:
39:ee:84:c2:5b:1e:84:f8:76:b2:83:84:f5:96:ef:
a6:9d:81:80:d7:a7:b8:b3:67:24:8c:7c:c8:95:80:
be:bb:05:f3:cc:24:93:b8:06:79:1e:54:94:9a:b1:
23:86:17:32:c9:8f:ae:52:1e:b0:97:a4:07:2b:2b:
e8:2c:55:5d:08:44:b2:51:60:14:28:87:67:07:c6:
ae:60:00:a5:11:76:ed:75:d2:8c:de:8c:6e:b5:17:
1c:23:bf:a0:f8:33:8c:a2:a6:91:b7:d6:62:9a:64:
d6:4c:2b:24:fd:61:eb:4b:54:5a:c6:c3:29:12:9a:
d0:dc:93:0a:1d:bf:69:69:8c:b6:87:b1:f8:9e:8e:
cd:34:90:d8:3c:be:dd:e6:39:75:d6:47:6a:69:81:
7f:05:9d:ac:9f:5e:a0:aa:8d:df:03:23:0a:ec:dd:
23:f4:57:b2:36:10:4b:67:9b:40:5b:2b:27:e2:c4:
07:8f:b1:b4:da:e3:53:2b:21:20:25:5e:7d:e5:a0:
3e:86:a0:cf:f7:dd:26:e2:b1:7e:cb:42:4f:a7:80:
5c:c1:7a:1e:15:ca:39:52:17:bf:95:20:5f:f5:fb:
06:fc:d2:2c:c5:dc:be:35:e3:c2:57:ee:65:e2:aa:
70:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:C5:CF:FE:37:CE:C8:7C:A3:BF:DC:E8:66:07:1C:FC:03:A6:00:A1
X509v3 Authority Key Identifier:
keyid:A4:D3:22:69:30:2E:1C:BC:CB:AA:C0:E0:E5:AF:8A:86:44:98:A1:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pNMiaTAuHLzLqsDg5a-KhkSYoTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:77:42:55:37:fa:54:e8:2d:ea:36:00:a7:e8:12:7e:35:8c:
ba:4b:26:0f:32:b7:42:47:79:fb:b7:9d:6b:21:b2:91:e2:0a:
fa:74:a6:10:8d:5a:9f:de:d0:58:36:e5:e8:21:ed:d6:be:48:
06:58:37:14:da:49:e7:b1:5f:18:bf:7d:10:49:83:36:9e:6a:
93:d0:74:7d:f3:2e:92:b5:e6:e4:fb:43:9e:36:22:ff:77:a5:
9e:da:4c:f8:81:70:0b:eb:e5:1d:22:8e:1b:e0:ea:26:27:a1:
59:5c:09:6b:55:f2:40:05:4c:67:e0:44:77:fb:4f:77:ec:5b:
59:e9:54:14:63:ac:84:cb:18:85:4b:cc:a4:db:67:3d:8a:81:
75:ea:09:bc:bd:17:99:82:4e:a8:fa:37:11:7d:92:ce:07:8d:
61:db:c0:ac:4a:87:0e:81:81:41:7c:bd:2e:19:d6:f4:44:d5:
ff:cd:f2:d6:e4:ca:0b:4d:61:77:8d:94:1b:00:00:81:19:65:
2b:66:c8:69:69:86:22:a5:78:a2:58:c8:ea:64:90:e2:13:b7:
39:f0:2b:80:a4:5c:7b:33:e3:ae:78:09:2a:62:44:28:18:0c:
2b:11:c7:29:35:4c:13:19:ff:e7:e8:c3:81:1f:9d:85:28:3a:
4d:23:5c:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:36:50 2025 by rpki-client