Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
File: nTHCM8vSZtsCYgud65DQjkFpLmc.mft (raw, json)
Hash identifier: kJr4PHO4PNU4Xq6sUWw+Iij3YKbT81MkmVKsSD4k7Qk=
Subject key identifier: 54:C1:F5:EE:78:02:77:7E:DA:CD:08:52:A4:7F:63:10:02:B9:3E:AD
Authority key identifier: 9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
Certificate issuer: /CN=9d31c233cbd266db02620b9deb90d08e41692e67
Certificate serial: 019746670FAA78C2E8246A9923912D585039
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
Manifest number: 0C5B
Signing time: Fri 06 Jun 2025 18:00:48 +0000
Manifest this update: Fri 06 Jun 2025 18:00:48 +0000
Manifest next update: Sat 07 Jun 2025 18:00:48 +0000
Files and hashes: 1: _rMAcV1Zh6HxKo_vwEpVhjFVwy8.roa (hash: r1imevw1h8qWVS0OoTwBJnDWSm49xN9+9T+LLaWUqWk=)
2: nTHCM8vSZtsCYgud65DQjkFpLmc.crl (hash: +RuKB88fsiuyF6gtlsfgfjKId6NsYiiYN/9h4k3p03w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 18:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:67:0f:aa:78:c2:e8:24:6a:99:23:91:2d:58:50:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d31c233cbd266db02620b9deb90d08e41692e67
Validity
Not Before: Jun 6 18:00:48 2025 GMT
Not After : Jun 7 18:00:48 2025 GMT
Subject: CN=54c1f5ee7802777edacd0852a47f631002b93ead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b2:e1:e4:5d:b0:d3:5f:20:c2:dc:9e:3a:23:
8f:63:4a:c1:3f:41:8c:43:58:e7:df:97:b0:69:9d:
c0:94:ac:7a:6c:a3:9a:8d:93:06:25:49:ef:07:9e:
2e:1e:5b:40:ad:48:72:f9:6b:b8:43:e3:6d:11:5b:
a5:02:1f:46:04:40:ab:cf:02:45:7d:25:0e:b0:a9:
00:3a:bd:cf:22:4e:f3:75:36:31:43:8d:ad:10:6d:
fb:3b:69:2c:ef:ed:50:08:34:aa:04:13:79:5b:b5:
66:e3:29:1a:b8:e4:51:e9:44:34:5e:70:27:9c:e3:
2d:1e:df:a9:be:ac:06:2b:ac:4e:02:ea:8f:49:72:
5e:ad:e4:d8:b9:2e:d6:dd:11:6e:27:8d:57:89:85:
b9:c5:46:59:97:b3:9f:48:33:2f:69:27:a2:31:a2:
46:0e:77:d9:de:1c:46:de:8e:22:de:c1:bd:17:78:
0a:33:d8:3b:8d:e7:e9:eb:4f:19:b3:06:3c:9f:05:
67:6f:df:25:d1:de:59:8a:b5:f2:76:7b:36:26:09:
e9:1f:0a:50:d4:c7:b9:c4:6c:73:95:47:73:2c:66:
89:61:1b:6d:48:a8:4c:3e:11:d1:5f:3c:49:5c:20:
2a:97:93:36:10:b5:56:07:0e:35:45:e6:a2:b7:db:
c5:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:C1:F5:EE:78:02:77:7E:DA:CD:08:52:A4:7F:63:10:02:B9:3E:AD
X509v3 Authority Key Identifier:
keyid:9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:06:c2:2d:23:d9:b5:fe:1b:75:61:a1:a4:65:3c:16:2e:29:
0a:bd:da:f8:50:cd:58:91:47:82:94:0b:94:ee:8f:2f:35:6e:
b1:7f:28:ae:c7:68:a3:f8:c5:3f:cc:7c:f0:13:34:4e:b7:d3:
d9:91:4e:02:37:91:e1:98:c2:bd:01:d3:67:60:4b:45:f9:01:
d1:c5:7f:19:4f:65:b4:6f:bf:32:e0:26:b2:ba:2a:0a:1b:56:
f1:12:97:61:cc:38:69:34:3a:6a:83:11:33:42:dc:78:95:ee:
c0:10:fc:08:b4:d6:a4:77:90:95:87:af:3b:32:21:59:4d:c5:
48:dd:4a:32:6e:8e:fe:f4:b4:70:47:ab:d3:5b:72:cd:d0:4c:
a6:a1:0b:59:8d:6d:d4:d3:0d:43:f9:52:70:8a:88:db:15:d7:
d0:7c:f9:75:ee:4c:a9:77:b6:c6:f4:a9:be:24:ea:83:d1:d7:
c3:2a:35:f3:8c:b2:4d:ae:5c:f9:8a:e7:93:47:00:ae:05:a1:
ed:0e:00:82:58:a1:18:1a:c9:b5:62:51:ae:86:8b:19:cf:a6:
4c:34:8f:88:52:be:8b:7a:a3:fe:81:83:78:95:3e:1c:13:8f:
fb:bb:8c:00:e6:72:06:08:0c:f1:45:38:31:aa:a3:dd:aa:5f:
dd:45:49:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:36:33 2025 by rpki-client