Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
File: nB7k05z6obOseZwX94grjOTigSA.mft (raw, json)
Hash identifier: 8smPk81cH6SpUGtCvobD1pCfu6341VXV964ZOMBVVwI=
Subject key identifier: 0E:A1:CA:14:32:84:76:05:89:49:64:CE:C4:5E:98:95:6E:5A:D7:2B
Authority key identifier: 9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
Certificate issuer: /CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Certificate serial: 01976403DD9E392B9D117928AD463440BAB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
Manifest number: 083D
Signing time: Thu 12 Jun 2025 12:01:04 +0000
Manifest this update: Thu 12 Jun 2025 12:01:04 +0000
Manifest next update: Fri 13 Jun 2025 12:01:04 +0000
Files and hashes: 1: egM_lo5hkg5KA7_uP-5h7pmD4BM.roa (hash: LWEk9cOjEXdGtew0n3bgwHhe3Zn8McfotK81AHI+3M0=)
2: nB7k05z6obOseZwX94grjOTigSA.crl (hash: CdIEljiwBnLX/FhUpEEwQdEvlZ/uDvLTo8pY3MCFcXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:03:dd:9e:39:2b:9d:11:79:28:ad:46:34:40:ba:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Validity
Not Before: Jun 12 12:01:04 2025 GMT
Not After : Jun 13 12:01:04 2025 GMT
Subject: CN=0ea1ca1432847605894964cec45e98956e5ad72b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b0:a8:c3:d6:21:e2:a5:5b:4a:39:a0:de:0d:
68:ba:de:b9:23:74:50:cf:0e:8d:60:6d:ac:0d:7f:
a8:1a:7f:7f:da:eb:6a:9d:cb:17:a4:4e:4b:6e:19:
9b:20:61:f2:aa:e4:e5:29:36:0c:c0:70:2e:34:2f:
56:7a:07:8d:5d:32:f0:c5:51:50:a9:15:a4:ee:9a:
de:ca:c0:cc:6a:70:84:eb:95:79:e5:75:26:b0:3f:
f2:be:93:d0:fc:97:77:ff:7f:6e:b1:df:2a:3c:ab:
db:62:16:ff:2f:05:9e:47:59:b1:1c:9a:f1:7e:05:
45:7e:92:81:24:9d:d9:c2:ac:a4:d6:91:cb:40:ef:
af:9b:87:bc:ac:a9:13:d3:ed:81:5d:38:1d:7c:06:
16:68:6c:02:32:22:0a:a7:ef:12:ba:87:82:46:76:
99:40:cd:de:84:0d:d7:99:c0:cf:0b:8a:d0:5d:c3:
12:e7:ac:26:d9:e5:27:1e:6c:98:28:6e:9f:27:b7:
1e:60:cc:cb:f2:02:07:a2:d8:f8:5b:24:db:d3:b4:
5f:52:73:ce:b7:b1:44:de:e9:91:65:8e:95:f8:a1:
7c:26:1e:f8:ab:b2:7e:cf:37:a6:53:2a:cd:eb:f3:
42:49:60:db:a7:5d:6b:68:76:36:d0:54:b9:07:a0:
81:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:A1:CA:14:32:84:76:05:89:49:64:CE:C4:5E:98:95:6E:5A:D7:2B
X509v3 Authority Key Identifier:
keyid:9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:cc:c2:dc:95:c8:5a:ca:e9:bd:52:c9:0d:4a:dc:94:12:bf:
a2:f3:e5:84:6b:92:a8:de:db:72:bc:41:ac:09:e8:3e:15:5d:
c7:58:5c:fc:9c:11:6b:18:bf:f0:59:80:4c:b4:58:83:8f:90:
cb:8f:c5:5d:08:49:c3:52:07:9a:7a:04:a1:1a:63:64:9c:a2:
dd:3a:7b:53:7b:03:ca:62:1c:4f:38:36:3a:56:1b:1e:f6:d4:
f5:cd:4a:c7:6f:fc:7f:27:2a:33:ab:41:19:be:de:c0:b6:77:
14:79:50:1a:86:5a:57:e7:14:f8:f6:87:b5:f1:ab:1b:4e:c9:
31:95:ff:61:2a:ca:b3:f7:3e:76:01:78:80:28:74:47:f6:ca:
26:9f:bf:d5:b0:25:66:3c:60:5e:0b:34:a9:47:83:51:23:3e:
e9:7d:49:6a:57:d1:80:42:28:03:aa:9a:21:e8:7a:53:63:68:
cd:b7:b0:f2:a8:8f:9a:7f:d0:72:93:fe:c3:7b:b6:a3:ab:f1:
4d:06:8e:22:30:47:a2:af:45:19:0b:b5:7f:d9:a9:8c:b4:28:
62:6d:e5:89:62:e6:a4:d4:b1:cc:41:4a:29:9b:0d:40:fd:c1:
55:16:84:e3:be:f4:47:cb:b5:21:d6:e8:cf:c6:7c:8f:b5:27:
ed:f9:3e:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 13:45:41 2025 by rpki-client