Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft
File: NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft (raw, json)
Hash identifier: uaW2JSaU+ecAQk9ezO/sKUB0jIqV+fTbKa9PD4EuZOI=
Subject key identifier: 80:0C:55:48:EC:2E:6A:B3:BE:C1:A8:5A:4F:92:6A:EC:76:DB:02:3B
Authority key identifier: 34:DD:40:26:D2:90:F3:20:1D:28:EF:68:4D:3C:5A:C1:3C:96:EC:6D
Certificate issuer: /CN=34dd4026d290f3201d28ef684d3c5ac13c96ec6d
Certificate serial: 0197466734C81C6F8295366B01BCACDB6633
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft
Manifest number: C9
Signing time: Fri 06 Jun 2025 18:00:58 +0000
Manifest this update: Fri 06 Jun 2025 18:00:58 +0000
Manifest next update: Sat 07 Jun 2025 18:00:58 +0000
Files and hashes: 1: NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl (hash: ikiuYzUVyfhI+Vi5yV5ukbXQYhRGmzeCRf2RqTZRa/Q=)
2: NkwYBQBRVrFsj-xUN7Cv_m6lwSA.roa (hash: gjr66sRTq1kait53s7UP3QklI69yHhHqmsXxB/qlKCc=)
3: V4v-VxZ-7OAHRrY5C50VFKZqDnc.roa (hash: 6nRk9oygeeOeb7rjfRo1H5M200eI6zr7Rlb7ujC3GZM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft
rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 18:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:67:34:c8:1c:6f:82:95:36:6b:01:bc:ac:db:66:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34dd4026d290f3201d28ef684d3c5ac13c96ec6d
Validity
Not Before: Jun 6 18:00:58 2025 GMT
Not After : Jun 7 18:00:58 2025 GMT
Subject: CN=800c5548ec2e6ab3bec1a85a4f926aec76db023b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ea:02:f9:c8:7f:d4:5a:3e:67:17:b6:d9:11:
d0:95:de:76:20:90:6c:61:a0:16:b1:4d:d5:da:1c:
5c:f2:23:b3:35:4d:c9:0c:ef:db:c2:39:71:e1:00:
4c:a7:44:68:b8:4b:3d:be:dc:03:92:8e:96:8b:ef:
47:a7:dd:7c:4e:8e:ab:f5:9c:e5:4e:cc:83:3a:11:
aa:b3:61:3d:50:6b:12:aa:64:d7:c4:75:8a:5b:81:
28:88:8d:e5:6b:9f:9a:9c:85:40:db:16:23:14:e8:
20:2b:4c:d5:11:de:e1:e1:8c:60:ab:3e:a1:7f:be:
0f:06:83:1e:df:46:24:d0:98:8e:80:f7:44:49:04:
d0:7a:8f:ee:dd:4d:c4:fe:8e:7e:cf:df:ee:81:b1:
48:55:37:72:b4:31:aa:60:54:fb:ea:e6:8c:68:4d:
51:a4:27:73:20:c2:6d:9f:a4:aa:dc:4c:0a:89:fe:
c1:75:f0:c3:8a:f7:9d:23:2c:50:85:98:e4:e7:77:
9f:12:16:ee:ed:ae:ef:2a:c6:7d:8d:39:ec:81:23:
65:37:a4:b3:f2:bb:dc:e8:c5:5e:62:94:40:ca:9e:
9e:18:d9:f1:ba:5a:09:50:b0:05:be:78:74:b0:c5:
a7:f3:68:21:b1:50:84:84:87:ac:b9:fa:1d:4e:c0:
a4:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:0C:55:48:EC:2E:6A:B3:BE:C1:A8:5A:4F:92:6A:EC:76:DB:02:3B
X509v3 Authority Key Identifier:
keyid:34:DD:40:26:D2:90:F3:20:1D:28:EF:68:4D:3C:5A:C1:3C:96:EC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d9:e8:16:37:28:70:b0:5f:78:79:8e:b5:24:8a:41:01:bd:84:
0c:56:bc:79:50:f7:5a:18:85:0c:61:81:df:63:d8:24:05:4b:
a6:c5:61:79:a9:fb:af:7a:b7:4e:40:6e:bb:53:55:c9:46:55:
6e:40:1a:7a:6d:ae:41:83:c0:2c:47:72:0a:a0:5a:09:46:fd:
a4:aa:05:83:d7:9b:bd:5d:34:a2:18:7d:95:8a:8d:ec:8d:54:
79:76:80:22:3f:c4:49:8f:c9:7c:eb:69:c5:d8:af:2b:d5:5e:
56:00:95:90:af:0a:e3:79:42:84:9a:f3:a7:94:1b:1c:6d:6a:
98:35:f3:45:b9:4f:d2:89:59:cb:9e:99:03:41:3d:16:f1:e1:
d1:ac:1b:c8:0e:4a:71:77:d0:4c:b0:04:77:3e:64:17:03:af:
85:07:8d:19:d1:48:36:66:24:0a:6d:1a:aa:ae:fd:d5:78:90:
6b:5b:d0:28:02:8e:fc:5c:d0:2b:bf:ac:c6:52:ea:a5:90:d9:
25:b9:d5:07:f1:2b:56:b3:c5:ad:b2:d1:c7:8f:58:ba:b9:d9:
60:99:a6:b5:f7:96:e0:7e:46:69:90:02:d3:22:62:ec:5d:3b:
cd:8b:aa:c2:63:bb:52:c2:b2:66:6f:35:85:71:f3:60:42:4f:
e7:a9:27:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:57:27 2025 by rpki-client