Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft
File: nzcg6XD6oOB_UKY4nnrlOvpDnas.mft (raw, json)
Hash identifier: MhRKQO5Z5Byc4TlcMmh3haMT79veJXhZf0nirkxZuz4=
Subject key identifier: 8A:2A:57:94:70:BA:A1:6A:32:04:8C:4F:9C:B1:2C:67:D1:FE:02:E9
Authority key identifier: 9F:37:20:E9:70:FA:A0:E0:7F:50:A6:38:9E:7A:E5:3A:FA:43:9D:AB
Certificate issuer: /CN=9f3720e970faa0e07f50a6389e7ae53afa439dab
Certificate serial: 01974EC54FA6D2D294930BDFB59776C9C5EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft
Manifest number: 1584
Signing time: Sun 08 Jun 2025 09:00:42 +0000
Manifest this update: Sun 08 Jun 2025 09:00:42 +0000
Manifest next update: Mon 09 Jun 2025 09:00:42 +0000
Files and hashes: 1: Etd-zR5nQJ_3oZWsvX_yh9qZs04.roa (hash: Va9UidVPtYR8CQHobQQrWe+S/Z2ABdjjbhF7ggqh2M0=)
2: nzcg6XD6oOB_UKY4nnrlOvpDnas.crl (hash: PWbTLzmuBGfRXrwtKwx6Fpyk+p4jiPw1lKpY5CR11Ec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft
rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 09:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:c5:4f:a6:d2:d2:94:93:0b:df:b5:97:76:c9:c5:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f3720e970faa0e07f50a6389e7ae53afa439dab
Validity
Not Before: Jun 8 09:00:42 2025 GMT
Not After : Jun 9 09:00:42 2025 GMT
Subject: CN=8a2a579470baa16a32048c4f9cb12c67d1fe02e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ec:79:bf:ad:a3:c1:28:21:65:ce:20:f4:9d:
0f:19:df:d5:1b:a8:1c:0f:b7:75:31:d2:2e:42:1b:
c9:95:6e:ef:de:a1:dc:31:1f:f1:be:2b:fe:4d:e4:
69:2f:03:77:e2:5b:ae:1d:5a:46:f1:73:19:ee:58:
93:0f:0f:ff:c3:1b:eb:19:11:b7:ce:6f:ce:ef:3d:
5d:1c:60:8e:08:71:5e:cf:5a:7f:e8:2a:6a:16:3b:
0a:da:24:e7:e4:c4:e5:39:c6:3d:8b:0d:e0:bc:7c:
77:4d:01:1c:f7:58:8c:38:5a:5f:a5:4b:64:0b:5d:
aa:f8:09:01:5f:aa:f5:11:ec:13:6c:93:76:5a:df:
0a:22:11:3a:07:62:7f:5b:c9:c0:9a:62:03:6d:fc:
b4:23:39:e1:b6:93:86:6d:3e:e1:00:fc:5f:ad:85:
0a:31:59:95:4c:ba:1d:2a:04:01:94:c8:b6:d3:7e:
ac:b6:00:e0:01:28:1f:3f:a2:9d:68:98:e0:e8:d4:
85:22:a1:d6:b1:22:63:1f:48:31:9b:41:67:9e:7f:
30:18:62:5c:62:55:73:f9:9e:ef:44:64:f9:8b:1b:
27:8a:a0:2c:30:14:2e:e0:bf:c1:50:e8:86:42:40:
52:e7:3a:a2:3d:65:e2:d2:5c:00:de:3c:16:73:95:
a0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:2A:57:94:70:BA:A1:6A:32:04:8C:4F:9C:B1:2C:67:D1:FE:02:E9
X509v3 Authority Key Identifier:
keyid:9F:37:20:E9:70:FA:A0:E0:7F:50:A6:38:9E:7A:E5:3A:FA:43:9D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:90:0f:c2:d3:1f:35:5d:b6:f1:68:4d:9a:56:20:e9:6d:ca:
f3:68:15:9c:95:19:4d:3a:8e:ab:5c:89:7b:76:cd:89:b2:db:
17:13:b8:7f:2a:84:77:6a:77:50:0b:5a:d8:73:63:c2:16:f4:
ea:70:af:27:d2:b2:94:76:aa:cf:dd:12:75:fd:78:dc:40:8a:
48:9f:ac:4d:96:9e:48:13:56:9e:39:82:ce:af:20:65:d5:70:
b1:38:59:e1:6c:94:df:9b:e2:f3:fe:e3:4b:09:e8:d8:41:b4:
6f:64:5d:35:68:16:58:bb:8f:13:da:0c:32:82:cd:47:50:d4:
9c:57:c3:2a:d6:9e:22:55:d5:68:df:c1:f4:33:93:26:6f:73:
8f:74:58:8e:03:a3:bc:dd:df:ca:b2:8c:10:55:1f:b5:e0:e6:
51:f0:9a:42:c5:65:dc:28:bf:4f:b9:c2:6c:85:ca:57:6a:07:
d9:b4:18:b9:27:74:7f:4b:d2:00:6a:b4:61:26:a6:64:ad:97:
b5:9c:33:a0:59:81:8d:11:c6:26:55:dc:6a:7b:fc:28:3f:c5:
49:f0:9b:c8:6d:04:4c:9c:ed:a5:52:0e:24:2d:75:f2:ca:21:
05:a6:ca:cd:6d:2d:07:16:67:34:e0:8b:33:9e:fb:f1:26:a6:
93:10:8f:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 19:23:15 2025 by rpki-client