Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
File: nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft (raw, json)
Hash identifier: Wg6ij9wnuSKag4MOgu6CyY5i8C0WBnR1lg3RFHd4ZC0=
Subject key identifier: AC:EC:50:C2:48:53:87:9A:86:AF:F0:CB:3E:89:2A:20:83:A0:B1:14
Authority key identifier: 9D:8A:DA:35:29:82:A3:19:B5:4D:5E:48:3D:34:42:63:46:73:3E:A4
Certificate issuer: /CN=9d8ada352982a319b54d5e483d34426346733ea4
Certificate serial: 019751C60FB241390AFF622E202846A42C31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
Manifest number: 1471
Signing time: Sun 08 Jun 2025 23:00:24 +0000
Manifest this update: Sun 08 Jun 2025 23:00:24 +0000
Manifest next update: Mon 09 Jun 2025 23:00:24 +0000
Files and hashes: 1: KpbjIIUZw0-XxCl1KqQDZ_EUKkY.roa (hash: KJWoFU4L0w8L8ZUG5csCrTHWK3udD7xALiAnkocVeD0=)
2: nYraNSmCoxm1TV5IPTRCY0ZzPqQ.crl (hash: oeXNxti8AdaSqjNzXzDLp3FVx76X3E30hkccZ/FFMI0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:c6:0f:b2:41:39:0a:ff:62:2e:20:28:46:a4:2c:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d8ada352982a319b54d5e483d34426346733ea4
Validity
Not Before: Jun 8 23:00:24 2025 GMT
Not After : Jun 9 23:00:24 2025 GMT
Subject: CN=acec50c24853879a86aff0cb3e892a2083a0b114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2b:0d:02:ab:a0:a2:4c:d3:0e:9c:24:69:5d:
7d:1a:c3:cc:b9:ae:d5:c6:06:4d:63:7f:34:18:9c:
ab:03:e4:f5:7e:76:b1:60:a1:06:a0:24:f1:16:d4:
52:ad:73:2f:a0:9b:3e:21:e2:e5:eb:42:4c:d1:16:
22:d9:3d:b6:79:dc:2e:70:4a:1a:f4:86:f4:7c:b6:
a5:86:19:53:bd:c4:db:68:26:9b:ee:94:a0:60:0d:
9b:31:29:60:61:c4:a8:7e:2a:56:d4:81:d9:1c:51:
a5:84:f9:11:8f:fc:81:10:8e:a8:5a:40:2a:00:88:
34:83:90:c7:67:2b:46:23:fa:14:62:a1:29:55:3c:
96:2b:78:9b:ee:3f:88:c6:0d:a7:7c:c6:75:df:f2:
de:f3:f7:d7:ae:f4:9d:b8:9c:bd:45:e0:77:18:ce:
01:e7:28:a7:65:4a:1c:63:cc:bb:9a:f1:1b:b5:39:
26:94:63:51:b4:e9:ed:93:8c:59:62:50:c3:a3:ea:
0b:51:bd:3c:b2:e8:65:d7:90:9e:b8:2f:a8:3b:5a:
fc:c8:42:fc:43:7d:0f:54:7f:f6:c2:2f:5c:0e:34:
81:07:b1:07:34:64:e6:d0:ba:e3:37:b6:0f:2c:f9:
4c:e7:ac:e7:ed:15:80:01:5d:bd:a3:24:a8:4d:1b:
00:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:EC:50:C2:48:53:87:9A:86:AF:F0:CB:3E:89:2A:20:83:A0:B1:14
X509v3 Authority Key Identifier:
keyid:9D:8A:DA:35:29:82:A3:19:B5:4D:5E:48:3D:34:42:63:46:73:3E:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:58:66:e5:92:7a:d5:46:a0:9e:de:b0:25:40:07:0c:80:3b:
ab:cd:b0:b1:ff:a6:2c:77:26:e4:99:ef:4a:d9:7f:cf:af:a4:
25:d8:7f:0f:6a:22:17:b5:16:9c:92:2c:be:ca:a9:64:16:e2:
65:25:7a:de:bf:ab:45:c7:79:da:5d:4f:3b:fc:db:7f:a2:93:
8a:a5:f3:ce:f8:89:ac:fd:07:49:30:14:0b:47:10:ef:6f:88:
15:e4:9f:35:11:9e:f4:95:27:a8:c6:69:2f:fe:7f:b2:e5:b8:
b4:31:17:da:4a:b3:fa:9d:93:24:40:d1:38:11:e1:9e:3b:e0:
53:56:e6:06:6e:8b:27:0d:42:c4:54:e5:6f:49:44:c1:a5:4d:
03:d7:45:65:44:f6:56:15:aa:6d:6c:14:2c:31:1b:5b:33:80:
15:12:cd:35:3c:29:01:fe:9c:40:96:e8:3d:20:e9:f8:19:aa:
cd:7f:d5:3d:ec:2a:81:94:7e:56:cf:a3:16:9c:05:5f:3b:9e:
68:d3:c4:c1:13:0f:f6:71:25:aa:88:b2:44:05:2e:c9:26:cd:
13:69:ff:04:fb:7d:b1:79:88:1c:c6:b2:30:db:ca:bc:b8:90:
55:62:d7:3d:ba:28:ae:dd:cc:a1:7a:fd:98:c1:27:71:ae:59:
09:ed:75:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 05:10:34 2025 by rpki-client