Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
File: nB7k05z6obOseZwX94grjOTigSA.mft (raw, json)
Hash identifier: s3F8iHUnyXOmzHXmXR9857H8dNs2Qm20UBi1jHAQxjc=
Subject key identifier: 89:69:7C:19:C5:34:7A:F5:33:74:2F:48:35:A0:68:AF:DC:C3:40:8B
Authority key identifier: 9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
Certificate issuer: /CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Certificate serial: 0197586DA6AABA64701456D816E32E0DD397
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
Manifest number: 0837
Signing time: Tue 10 Jun 2025 06:01:10 +0000
Manifest this update: Tue 10 Jun 2025 06:01:10 +0000
Manifest next update: Wed 11 Jun 2025 06:01:10 +0000
Files and hashes: 1: egM_lo5hkg5KA7_uP-5h7pmD4BM.roa (hash: LWEk9cOjEXdGtew0n3bgwHhe3Zn8McfotK81AHI+3M0=)
2: nB7k05z6obOseZwX94grjOTigSA.crl (hash: MP+wKj4YGIqzYuP2Ir5mL9yZLN9q/wXRfh1w0n7Q/dk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 06:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:58:6d:a6:aa:ba:64:70:14:56:d8:16:e3:2e:0d:d3:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Validity
Not Before: Jun 10 06:01:10 2025 GMT
Not After : Jun 11 06:01:10 2025 GMT
Subject: CN=89697c19c5347af533742f4835a068afdcc3408b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:c9:9f:77:cb:4b:93:38:4b:c2:d1:84:39:22:
d1:c9:15:30:5f:ee:ad:23:f3:f1:7f:08:2a:28:03:
f3:d7:f7:31:9a:c4:b4:57:0e:dd:c3:8c:79:c0:a2:
bc:f4:a6:04:19:27:77:a5:fc:f6:2f:13:f7:c5:85:
87:0c:81:63:b3:25:50:1c:35:6c:c6:d3:6e:67:15:
66:93:82:b9:2a:85:2b:5c:33:3d:68:a7:00:88:c8:
1a:13:8e:b0:24:63:da:c2:0c:30:d3:18:ed:ec:0c:
19:87:30:a4:a9:13:7b:9f:a2:92:58:13:87:de:f3:
99:72:e7:13:83:bd:03:46:fb:61:2c:a0:14:f6:75:
5d:b6:2c:60:da:a6:8b:b0:82:11:75:0c:9a:11:f8:
83:cc:4b:1f:4b:bc:a2:74:a3:c4:e5:26:be:a7:3b:
84:e9:c8:c5:b4:b7:6f:1f:f5:3d:08:3a:c9:0c:11:
8b:5e:69:81:c6:bd:f0:82:26:c6:84:08:a5:ec:5b:
9a:04:23:4f:70:b0:a4:a9:26:6c:11:96:7d:e4:50:
20:c6:0b:34:0d:56:39:74:e5:c3:ac:4f:cf:18:fe:
82:ee:4a:71:45:fd:18:65:21:b8:c6:6b:68:79:fd:
3a:bb:97:29:a3:53:88:03:e3:9a:c5:8e:a7:a7:4a:
0d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:69:7C:19:C5:34:7A:F5:33:74:2F:48:35:A0:68:AF:DC:C3:40:8B
X509v3 Authority Key Identifier:
keyid:9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:7e:e9:a1:90:39:a0:f1:72:5a:c7:6e:8c:76:89:76:e9:00:
b4:1e:c8:69:b3:7a:d9:34:79:e4:3f:a2:7c:16:64:43:65:75:
d8:26:d3:01:81:f0:b4:d6:26:4a:cd:17:23:f2:0a:00:16:a9:
94:b6:d1:77:3a:8c:d3:4b:6e:c8:cc:f6:08:62:f9:d6:d1:95:
10:a2:39:3e:c5:c5:59:0a:f3:8f:3e:5e:d0:11:85:d5:a2:ea:
0f:b8:01:25:c7:1f:d6:e6:0f:9e:d2:30:39:f3:c6:d8:4b:7d:
c2:f2:d5:bf:78:fc:e5:32:98:39:35:91:a3:b1:9f:3c:89:1c:
65:b2:ba:54:06:1b:1d:cb:0b:61:64:17:bb:78:63:8f:1d:c0:
39:a6:24:0e:e9:37:f0:d4:6e:20:0e:b5:81:d2:82:5c:f2:df:
14:f3:c9:11:de:35:1b:5c:97:e0:d4:23:da:14:d1:4f:c3:c1:
e7:19:02:d7:62:92:7b:42:15:21:24:d5:d2:ac:c5:e2:5f:4e:
38:f5:5c:42:e8:c0:05:86:c9:3e:19:4b:a2:d3:aa:ad:7a:08:
2a:10:18:74:61:a1:a7:fd:32:1f:61:13:4b:1b:40:33:6d:1c:
ed:41:f1:4c:9d:f5:dc:34:74:b4:8a:2f:ad:20:8e:63:d4:38:
f1:37:33:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 14:41:24 2025 by rpki-client