Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft
File: NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft (raw, json)
Hash identifier: 0y9qbXEDCptAPCSuK+H6u48BV+O6YdAa6X13zjb3m8I=
Subject key identifier: 21:95:B2:92:01:7F:60:93:0A:A9:85:1F:6F:7F:0F:02:BE:BB:31:F6
Authority key identifier: 34:DD:CB:C8:F6:1B:26:0F:D3:F3:E7:8B:6B:86:87:7C:B9:5F:D8:3E
Certificate issuer: /CN=34ddcbc8f61b260fd3f3e78b6b86877cb95fd83e
Certificate serial: 01974AB1A9E53EB78F776E438A721B0A0227
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NN3LyPYbJg_T8-eLa4aHfLlf2D4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft
Manifest number: 115D
Signing time: Sat 07 Jun 2025 14:00:46 +0000
Manifest this update: Sat 07 Jun 2025 14:00:46 +0000
Manifest next update: Sun 08 Jun 2025 14:00:46 +0000
Files and hashes: 1: NN3LyPYbJg_T8-eLa4aHfLlf2D4.crl (hash: 4LJzgyrPIweZVVBJFQ64vaPShMMmxSMlvoh60ER5wdA=)
2: aPFNqKZrV_epMPFvc-8vIsgJFgg.roa (hash: 83I0vKl1m5ZTxLcVY4fj2guNAuZT35HFxx/AGVAfz8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NN3LyPYbJg_T8-eLa4aHfLlf2D4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:a9:e5:3e:b7:8f:77:6e:43:8a:72:1b:0a:02:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34ddcbc8f61b260fd3f3e78b6b86877cb95fd83e
Validity
Not Before: Jun 7 14:00:46 2025 GMT
Not After : Jun 8 14:00:46 2025 GMT
Subject: CN=2195b292017f60930aa9851f6f7f0f02bebb31f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4c:e5:44:f6:f2:4c:06:de:bb:c6:c0:d6:61:
fa:07:71:c1:68:48:30:1f:24:7b:bb:ca:6f:c7:42:
79:44:65:6e:a8:46:14:f9:b0:5b:a8:14:3c:d4:15:
af:1d:2d:ca:9f:e1:21:5f:7b:50:57:62:ba:70:ef:
08:db:46:7c:60:63:28:bb:5a:37:2f:cb:20:9e:74:
31:1c:ed:e7:1e:ee:c5:7e:22:c7:a5:96:48:1a:f0:
27:0c:51:14:20:d8:3a:46:b4:2f:a9:01:25:1a:62:
2e:a6:85:5c:e2:d6:d5:be:98:35:86:0b:22:b2:9e:
59:19:60:f1:ec:7e:7f:51:7d:83:9e:9b:d5:06:f7:
f1:ca:1e:4e:ae:f7:ee:a6:a6:85:74:d0:32:01:dc:
10:03:9e:ba:4e:26:5f:57:d0:5f:42:4b:24:47:30:
79:e0:99:07:cd:09:ed:36:fa:41:5a:54:c8:0f:a6:
99:95:b6:30:d0:9a:9e:ed:e0:9f:a5:32:03:e7:92:
c2:6e:2c:17:d2:d6:d0:45:79:fe:e7:ca:b6:fe:85:
ef:90:2d:a9:0f:3d:64:a1:ed:2f:75:b1:0d:87:ba:
d7:6f:f9:2e:51:84:3d:ca:c4:97:4a:ff:60:b4:cf:
f9:1c:3e:fb:11:c3:f8:c0:6f:b4:a0:b7:d5:83:cd:
9a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:95:B2:92:01:7F:60:93:0A:A9:85:1F:6F:7F:0F:02:BE:BB:31:F6
X509v3 Authority Key Identifier:
keyid:34:DD:CB:C8:F6:1B:26:0F:D3:F3:E7:8B:6B:86:87:7C:B9:5F:D8:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NN3LyPYbJg_T8-eLa4aHfLlf2D4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:af:a8:32:40:8a:e5:4c:2b:e6:fc:3c:a2:e4:1d:a8:ee:b9:
f4:98:28:e5:ba:e5:d1:75:f4:9d:f5:e2:c6:a7:c0:e7:ac:ff:
50:ab:5d:a7:cf:67:a4:cf:df:ae:18:05:a7:08:62:82:ee:50:
39:43:70:c3:be:bf:ae:4f:d9:e9:06:5f:91:f3:57:ba:40:21:
ba:e2:99:4f:cf:3c:f4:83:a6:7a:3b:94:4b:c6:d0:db:6c:7f:
30:c4:5e:ae:47:03:e6:84:5d:43:92:77:a8:67:1f:8d:04:83:
65:93:9e:82:f0:95:9e:6f:ee:00:9e:c7:95:81:ce:71:85:3d:
b3:9d:0c:73:e6:30:ad:42:15:73:8f:bf:ac:f4:17:73:c7:d3:
23:89:5c:74:a3:f8:e4:f7:8b:19:02:b6:f3:cf:58:60:a9:52:
2a:26:c4:38:27:fd:32:3c:ab:a8:fd:80:f4:97:2f:ee:cf:de:
a2:e8:b4:3f:18:12:8f:85:73:88:fa:55:c5:ca:f8:3c:1b:61:
fd:e3:f5:4f:31:de:85:3a:50:03:bd:18:3e:1b:15:68:e6:64:
53:67:fb:eb:16:ed:66:13:e1:eb:f3:d8:66:c1:47:b8:d2:48:
c4:16:77:fb:37:78:10:26:73:03:d9:d7:16:ba:5c:38:4a:1e:
50:c8:fc:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:19:49 2025 by rpki-client