
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
File: nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft (raw, json)
Hash identifier: yErLla/9Z6RNwDcftJdj/ajFTA3MAhHgAA5yMEUkcx8=
Subject key identifier: EC:E9:1F:7A:2E:BC:F9:DA:FA:99:8B:4F:26:FB:5C:BA:BC:7A:E2:B4
Authority key identifier: 9D:43:03:A0:A9:99:D8:11:8B:BC:7E:96:AD:38:EF:BB:14:49:6E:A2
Certificate issuer: /CN=9d4303a0a999d8118bbc7e96ad38efbb14496ea2
Certificate serial: 019874509316D286C797581F1C0900040229
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
Manifest number: 07AB
Signing time: Mon 04 Aug 2025 09:01:34 +0000
Manifest this update: Mon 04 Aug 2025 09:01:34 +0000
Manifest next update: Tue 05 Aug 2025 09:01:34 +0000
Files and hashes: 1: bre9O2wrDggeCO-gClQtVcXHgMs.roa (hash: TZRQyZuvSyRj0lGzf2b/FG9R/6ZAoSht1L/fXzqCZUg=)
2: nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl (hash: dPVpBJZU5HnSIskB76ZUXr69IWYqizAzFqJwnzpKdeY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:93:16:d2:86:c7:97:58:1f:1c:09:00:04:02:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d4303a0a999d8118bbc7e96ad38efbb14496ea2
Validity
Not Before: Aug 4 09:01:34 2025 GMT
Not After : Aug 5 09:01:34 2025 GMT
Subject: CN=ece91f7a2ebcf9dafa998b4f26fb5cbabc7ae2b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d1:4d:4a:f1:f4:b7:82:02:fa:7a:e9:ed:25:
b5:9a:52:18:37:84:84:44:3a:72:04:53:e3:0d:b1:
60:d8:a4:6f:41:22:4d:4a:ab:ca:db:25:c5:49:80:
ed:6a:a5:cb:2c:22:64:71:cc:d7:28:b8:a6:67:2a:
33:70:2f:a4:f0:f8:a0:90:7f:74:bd:2b:ff:da:81:
b8:40:97:a0:32:81:0f:89:8d:8d:aa:e1:44:1f:f8:
35:91:03:49:38:d0:2f:79:af:c3:d0:db:b5:84:b5:
1d:08:46:e8:25:a1:87:cb:38:ec:78:1e:1a:e1:7e:
e6:a6:4b:d0:8c:36:46:c1:be:3b:36:a0:71:91:7e:
68:83:0f:83:b7:ef:fb:03:fc:e1:34:c0:dd:90:0f:
b4:f5:bb:dd:15:27:9e:22:78:9d:b3:32:0b:23:21:
be:a0:63:c4:57:53:6d:af:15:d5:c3:34:9b:a2:c2:
3e:85:d7:d9:b6:17:5e:cc:7d:f0:59:ee:28:92:8a:
69:ad:f5:30:01:21:5f:ba:6e:89:90:6f:ac:d3:e5:
7f:b2:57:6c:9e:d6:23:9e:43:83:dc:73:7d:41:02:
f3:2d:46:c7:f2:88:48:29:d3:e9:d8:1e:ca:10:5e:
83:b0:59:97:b6:b9:63:fb:4c:ac:41:ca:01:6b:8a:
e6:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E9:1F:7A:2E:BC:F9:DA:FA:99:8B:4F:26:FB:5C:BA:BC:7A:E2:B4
X509v3 Authority Key Identifier:
keyid:9D:43:03:A0:A9:99:D8:11:8B:BC:7E:96:AD:38:EF:BB:14:49:6E:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:8f:8f:24:b8:66:b8:c6:8f:c4:4f:99:a5:5a:18:41:27:9b:
8c:0e:9f:96:d6:06:70:43:6f:98:27:a5:2b:64:1c:3f:0f:1b:
65:af:a5:19:dc:f0:10:b5:6c:49:96:21:32:e2:ed:8f:0f:95:
76:26:19:ab:7c:91:f1:a7:8f:ce:77:1a:21:4c:f3:c5:f5:2a:
80:af:6b:e1:bf:4c:4d:b2:2c:2d:1f:3b:5f:1b:e9:d7:72:0d:
2b:ce:8c:5c:18:c1:d5:57:18:22:01:2d:9a:53:05:e3:bb:19:
ff:0b:3b:7e:dc:05:ad:8f:46:9d:2c:5e:95:a1:2c:f3:03:53:
90:33:d5:8c:7d:32:08:d2:f9:d6:66:3b:47:92:5f:6e:36:97:
49:31:1e:77:ec:17:c8:24:10:25:3f:37:0c:62:8e:7f:25:be:
d7:ba:aa:14:49:34:e7:f0:0e:7d:1a:b8:e4:24:c6:69:52:f3:
9c:68:ee:cd:c3:15:b6:d2:93:d0:0b:d7:cd:98:6f:66:a1:05:
c3:76:48:b3:a7:3a:33:12:eb:03:6d:d3:ee:51:3b:58:06:ba:
fa:2f:6f:7c:e9:73:03:ce:fe:09:41:fa:88:06:40:d0:06:5b:
2e:89:40:45:77:47:8c:25:e1:7a:55:bd:f0:13:1f:7a:c9:e0:
ab:ea:b1:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:04:24 2025 by rpki-client