Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
File: nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft (raw, json)
Hash identifier: TnM1APY2YbcjBG1aqR1syglRTsOYiZsQfBbw12had8U=
Subject key identifier: F7:35:FC:6F:B9:84:72:70:1A:F8:B5:4F:B0:10:86:9A:BC:0E:21:C4
Authority key identifier: 9F:24:06:4F:95:33:1C:F1:F3:15:DC:50:DE:4D:B0:5F:F9:5A:A4:10
Certificate issuer: /CN=9f24064f95331cf1f315dc50de4db05ff95aa410
Certificate serial: 0197496820686ED4B1514D21EEE9D9C7D55E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
Manifest number: 0EA2
Signing time: Sat 07 Jun 2025 08:00:50 +0000
Manifest this update: Sat 07 Jun 2025 08:00:50 +0000
Manifest next update: Sun 08 Jun 2025 08:00:50 +0000
Files and hashes: 1: nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl (hash: Y8dByUhGocfbJzyMzRsmc97p2Q+aVJAVeaT1ERy9gr0=)
2: xk36of5GcRMNZGUJt-_5r_QctTo.roa (hash: BbMVXEvQwTUOBV0n4W+iUw7Na6Uh7I6Smkrm6hqGQWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:20:68:6e:d4:b1:51:4d:21:ee:e9:d9:c7:d5:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f24064f95331cf1f315dc50de4db05ff95aa410
Validity
Not Before: Jun 7 08:00:50 2025 GMT
Not After : Jun 8 08:00:50 2025 GMT
Subject: CN=f735fc6fb98472701af8b54fb010869abc0e21c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1d:60:13:bc:af:4b:76:7f:b9:b0:60:f4:70:
8f:30:f9:19:2b:9a:8a:0d:17:9e:d8:8b:da:ea:c7:
4d:cd:63:f6:76:cb:c4:b1:b6:dd:f0:74:11:4d:88:
e1:7f:09:c7:66:31:89:e1:75:94:d7:7a:df:09:14:
0b:41:5c:91:45:1d:7a:b1:18:98:ad:f9:b7:5d:f3:
ca:36:d4:45:df:a8:c8:b0:09:c4:fb:a9:4d:4c:a5:
d8:e9:fd:44:cb:ad:03:cb:2f:2f:cb:60:dc:98:cc:
10:15:e3:c3:ea:db:5b:d5:35:0c:5f:d1:e7:11:3b:
50:65:ef:3d:dc:51:75:47:38:04:53:bc:79:b0:b1:
e0:de:fd:e5:00:39:39:2e:ee:80:41:f5:ff:28:37:
f7:c2:d3:44:71:2f:46:51:f7:12:ad:23:75:88:ba:
b6:ab:a5:0d:c9:8f:9c:da:e6:cf:35:59:92:1d:bc:
e9:9a:59:63:00:3e:7b:d5:2d:ce:12:99:c6:ba:a1:
79:90:70:bf:ee:b3:cd:e5:37:4e:a6:d1:87:82:b3:
49:c1:90:2c:78:60:7f:84:cc:ac:b3:67:da:98:44:
a2:05:99:90:d2:c2:5b:88:df:5c:8a:85:1c:9b:4f:
02:85:37:b1:f0:13:19:f1:f7:e6:05:2f:48:54:ed:
ce:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:35:FC:6F:B9:84:72:70:1A:F8:B5:4F:B0:10:86:9A:BC:0E:21:C4
X509v3 Authority Key Identifier:
keyid:9F:24:06:4F:95:33:1C:F1:F3:15:DC:50:DE:4D:B0:5F:F9:5A:A4:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:1b:8f:6b:0d:44:c0:39:61:0a:cc:a3:a1:c1:ec:d2:3e:7c:
5d:9d:9e:34:b3:1f:11:db:42:05:d1:69:a0:95:ef:4a:ea:5f:
af:89:1e:2f:02:18:c1:3c:52:91:85:34:1f:1e:9b:a1:bd:e5:
5f:02:53:83:46:6c:c0:e7:dc:22:d6:be:c8:36:e3:2f:de:97:
e3:86:c8:a1:11:ed:b7:0f:bb:a5:27:3f:04:eb:f4:49:ea:b7:
b3:00:1d:53:ff:9c:ae:11:31:d0:48:35:e4:ad:9f:9e:2f:5d:
bd:64:86:a2:9c:01:da:4a:ce:da:95:5d:96:79:c0:86:05:f8:
ef:df:4d:e0:32:47:0d:be:7c:98:9c:19:16:ab:19:b2:24:e9:
fb:7d:10:f1:22:fe:2d:bc:5b:65:3f:9d:f9:f2:af:0d:74:01:
38:52:ac:c6:1d:9a:25:57:09:7d:29:6a:6d:56:16:b9:2d:77:
55:05:ab:62:1d:eb:92:a4:c9:06:71:c7:e1:ce:aa:6b:1b:00:
f1:93:0e:15:93:c3:af:df:3f:dd:07:71:71:65:a8:00:f1:ba:
f4:ff:73:ce:9a:03:f5:40:60:f5:54:43:16:f1:1d:0f:78:ed:
6f:23:d5:2d:b7:f7:6b:34:d0:b9:87:d1:7e:d4:f1:8e:ee:2d:
20:38:2e:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:30:37 2025 by rpki-client