Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft
File: nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft (raw, json)
Hash identifier: AtQF4cPaqJNaR8gQGvxnhmTSuWIbKhb7qIj5l/u9a7w=
Subject key identifier: 48:C2:3B:8E:05:B1:03:CE:73:BF:BF:0B:F0:D0:1E:0B:D1:DE:89:85
Authority key identifier: 9C:A9:0E:7D:AF:15:C1:7C:1B:9A:BC:57:21:57:BC:7D:91:7B:39:91
Certificate issuer: /CN=9ca90e7daf15c17c1b9abc572157bc7d917b3991
Certificate serial: 01974E2035AFE2425D2C45474B2C2E0C7233
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nKkOfa8VwXwbmrxXIVe8fZF7OZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft
Manifest number: 1105
Signing time: Sun 08 Jun 2025 06:00:23 +0000
Manifest this update: Sun 08 Jun 2025 06:00:23 +0000
Manifest next update: Mon 09 Jun 2025 06:00:23 +0000
Files and hashes: 1: nKkOfa8VwXwbmrxXIVe8fZF7OZE.crl (hash: YQp8tl5ZadSZK9p4x1KrPxQmAcWAvqg1nwdz2J2ZR1c=)
2: rbFhRWy7PnH1-c74EqjQ8O_SsH8.roa (hash: +OgMhgDQLZldm2bdOQKGi3uI3dnjtK1GBopk2ba9vPU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nKkOfa8VwXwbmrxXIVe8fZF7OZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:20:35:af:e2:42:5d:2c:45:47:4b:2c:2e:0c:72:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ca90e7daf15c17c1b9abc572157bc7d917b3991
Validity
Not Before: Jun 8 06:00:23 2025 GMT
Not After : Jun 9 06:00:23 2025 GMT
Subject: CN=48c23b8e05b103ce73bfbf0bf0d01e0bd1de8985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3b:c4:8a:5b:28:d0:6c:27:8b:43:65:5d:5e:
e6:ce:be:47:72:a6:ac:df:86:1f:25:d9:c4:28:89:
ba:12:a8:15:80:2f:a8:cb:bb:13:4c:84:83:b8:b0:
c0:1f:3b:46:94:c6:eb:d3:33:35:b7:ca:c2:62:e1:
f1:37:0e:7b:99:3c:41:fe:68:8b:9f:2a:bb:7e:ee:
a3:fe:77:91:20:97:57:c4:ad:fb:28:ba:04:6a:58:
2f:bb:8b:00:78:71:a4:69:a6:58:35:dd:41:fa:2b:
d7:96:e8:a9:7c:d9:59:a5:00:63:22:5e:5a:e7:ea:
28:4f:10:d5:93:89:1a:d5:e9:7e:dc:d0:ca:63:0e:
4d:9b:f6:8e:b8:35:0a:1b:2e:23:91:0f:fa:cd:e7:
e7:27:98:54:b9:93:8c:34:46:4a:d8:db:dd:ff:18:
eb:8d:49:cd:93:05:0e:66:5c:ea:6d:99:7d:c6:c9:
d4:47:73:54:8a:d4:f3:2e:b3:3c:1d:ea:c1:74:1c:
48:69:9c:2a:f1:47:b7:88:a4:f5:f5:d4:72:90:e4:
5b:6e:ea:92:d7:d2:fd:94:78:0f:0e:3b:89:88:9d:
4d:09:5b:18:30:1e:ce:13:78:b7:3c:09:8c:2c:1f:
62:34:ab:a1:25:cb:98:1e:fd:a3:09:56:04:88:d3:
82:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:C2:3B:8E:05:B1:03:CE:73:BF:BF:0B:F0:D0:1E:0B:D1:DE:89:85
X509v3 Authority Key Identifier:
keyid:9C:A9:0E:7D:AF:15:C1:7C:1B:9A:BC:57:21:57:BC:7D:91:7B:39:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nKkOfa8VwXwbmrxXIVe8fZF7OZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:7e:4d:07:33:f9:74:a0:23:4f:d1:39:fa:5c:c7:85:cb:69:
a7:94:84:a2:9f:09:ef:7d:23:49:ee:53:41:47:c2:c0:92:21:
33:ae:39:fa:43:8c:71:83:b5:c6:1f:8a:9b:d9:40:d0:a1:0f:
cf:b3:b4:28:9a:bc:23:5d:dc:70:8b:63:9a:ef:fc:61:ed:9a:
4a:00:b8:84:c7:6e:de:74:05:f9:57:e6:83:11:38:bf:59:51:
c3:db:85:74:87:b4:65:27:2e:77:5e:09:e0:34:0f:a1:9b:96:
03:c5:dc:46:2c:19:7d:56:4d:2d:5f:11:21:21:f0:0b:b8:90:
d8:b9:61:15:ce:81:1d:22:c2:7c:92:7a:8d:42:75:b7:6b:4a:
93:c4:ac:3e:d0:1f:59:a6:d8:46:cc:b1:85:74:b7:be:11:c7:
b9:13:ef:50:dd:09:ae:ab:39:49:1d:84:af:15:29:0b:f5:dc:
e6:a8:9d:8e:9e:96:90:5c:69:9e:8b:8d:e3:31:98:f0:99:37:
ee:b9:9e:a2:ac:c6:09:dd:80:3e:ca:03:82:7b:fb:a6:58:c3:
21:ca:cc:b0:d4:be:a6:6b:f3:2f:a1:99:e2:e9:62:81:88:0f:
55:56:d8:0a:ee:d1:4c:69:dd:fc:75:e3:5c:ed:f8:03:f1:6a:
d0:a3:2a:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 14:24:24 2025 by rpki-client