Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
File: nSAoCNH5FFVeG9WcFncof_mztZA.mft (raw, json)
Hash identifier: qq8cSAnDBa/xhmIfZyQcO1aqqgsGxNz21THmNq2nN7w=
Subject key identifier: 12:A4:44:7F:67:17:EC:97:55:AB:91:40:C7:A4:6F:4A:BE:02:54:09
Authority key identifier: 9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
Certificate issuer: /CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Certificate serial: 01974C9FB9A5B77F7BBABD585D21CC47F96E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
Manifest number: 0F88
Signing time: Sat 07 Jun 2025 23:00:25 +0000
Manifest this update: Sat 07 Jun 2025 23:00:25 +0000
Manifest next update: Sun 08 Jun 2025 23:00:25 +0000
Files and hashes: 1: nSAoCNH5FFVeG9WcFncof_mztZA.crl (hash: WO+OfINsImS68LbjkizOaWRdmaNnI70ek05ONLhqwtU=)
2: qztp8oOkrsOnZQZ-AVesJkd8gBA.roa (hash: w8j5kLnBBDJA6YAxwk7yr2iHlxdseJ2t5FGwhKWuj0I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:9f:b9:a5:b7:7f:7b:ba:bd:58:5d:21:cc:47:f9:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Validity
Not Before: Jun 7 23:00:25 2025 GMT
Not After : Jun 8 23:00:25 2025 GMT
Subject: CN=12a4447f6717ec9755ab9140c7a46f4abe025409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c9:9c:e9:5d:cf:3c:4d:cf:01:32:af:48:7a:
79:c3:92:3c:9f:ef:cd:69:55:20:2c:33:23:0d:4c:
2a:10:56:e8:fc:ed:4a:dc:7c:08:2d:a8:e8:3b:f8:
d5:fb:f8:6e:d7:de:0f:fd:db:8b:b7:ab:7e:09:18:
1f:d4:db:04:88:70:81:ab:74:8b:8e:cc:fb:82:85:
b6:d3:6e:fe:fb:fd:b1:81:6c:37:c0:de:ea:cd:9b:
5c:98:e9:70:7b:66:4d:31:1e:68:ec:d9:e8:a2:21:
18:2c:e3:59:aa:ef:e7:2d:55:d4:90:83:9f:14:f0:
a1:a1:1a:0c:97:b3:ad:f7:30:1c:9b:69:c0:87:69:
9f:0a:62:3c:48:f7:fc:6a:82:45:b3:da:df:2f:4c:
24:47:eb:3a:7e:8a:ef:03:21:43:bd:7f:26:15:01:
d6:00:66:d6:1a:e6:d0:18:ee:6e:5b:fd:eb:ed:e8:
49:0a:f9:5a:4c:83:bf:78:b0:13:8b:26:ed:fc:74:
46:56:58:c2:d1:1f:0e:ad:08:4a:84:3f:a4:4a:78:
f4:33:20:78:3a:96:ea:a5:08:e0:81:5d:49:43:28:
d4:d6:9c:f0:c9:7a:a7:d5:af:b7:5d:ea:69:ac:41:
f5:96:f0:b4:76:31:7b:34:e8:9f:04:27:ff:b9:10:
90:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A4:44:7F:67:17:EC:97:55:AB:91:40:C7:A4:6F:4A:BE:02:54:09
X509v3 Authority Key Identifier:
keyid:9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:93:ec:67:e1:a6:88:ea:71:85:97:75:1c:fd:83:c4:7c:3d:
fb:1b:71:40:d0:a2:c8:e2:4d:77:20:2e:ee:9f:46:17:eb:e2:
4c:9b:5d:7e:3f:40:6c:a2:e9:84:93:c9:0c:bc:b7:c4:71:f2:
b1:08:10:6e:7d:fd:13:9b:f0:63:d8:a2:af:f2:b5:fc:37:70:
62:b0:8b:5c:4e:d5:c9:91:da:b7:e3:12:c0:50:5f:53:82:f6:
c8:4f:2d:7a:76:3b:4b:91:8c:28:d9:fa:a4:83:46:8f:c0:43:
e7:1d:e3:1c:94:38:af:ef:d4:97:40:0b:8a:dc:86:8b:10:5b:
3c:a3:1a:84:9c:7b:eb:b8:8b:c4:0a:33:a0:d7:91:40:7e:40:
fb:65:a6:ea:93:be:c1:71:23:2b:7e:e5:70:15:e9:44:6c:cd:
48:4c:ea:0c:e6:2d:87:a7:4c:f1:59:43:b6:94:37:5a:d9:e0:
6b:5c:61:d2:8f:51:04:6d:8b:42:c5:73:cd:30:63:68:18:ea:
15:bb:42:24:7b:7b:fc:bf:e7:a6:5e:47:b4:af:06:f9:c4:d3:
df:d0:65:ad:04:eb:40:9a:c3:0c:96:48:a3:96:b1:cc:6d:27:
ac:ea:dc:c7:84:7a:ba:b5:b3:f6:64:30:1f:51:7d:3b:79:db:
1d:b9:f6:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:57:43 2025 by rpki-client