Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
File: nlaYDUienFO8gp8-jWPTg_ONDeM.mft (raw, json)
Hash identifier: sKDot6a1CB4AqQw0cZjBLWyZuZlvICm3rYJlP14/7Ys=
Subject key identifier: D4:5C:13:B4:DE:F1:FE:75:6D:7C:D2:FA:D3:CB:A9:5C:97:89:00:07
Authority key identifier: 9E:56:98:0D:48:9E:9C:53:BC:82:9F:3E:8D:63:D3:83:F3:8D:0D:E3
Certificate issuer: /CN=9e56980d489e9c53bc829f3e8d63d383f38d0de3
Certificate serial: 0197722D36AC4575F49432AD03E6F504401D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
Manifest number: 14EE
Signing time: Sun 15 Jun 2025 06:00:55 +0000
Manifest this update: Sun 15 Jun 2025 06:00:55 +0000
Manifest next update: Mon 16 Jun 2025 06:00:55 +0000
Files and hashes: 1: 5LKnYfYeN0M1IwSjOCfaAZydc0E.roa (hash: R6rY8mHoFXXwwf30CLdp4brLxdq1SUoGP6TPbyDWGN8=)
2: nlaYDUienFO8gp8-jWPTg_ONDeM.crl (hash: otrqGDjqhTZ2C204xYVe8Xi7TXgy/kfeSy5EZNozcQM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:72:2d:36:ac:45:75:f4:94:32:ad:03:e6:f5:04:40:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e56980d489e9c53bc829f3e8d63d383f38d0de3
Validity
Not Before: Jun 15 06:00:55 2025 GMT
Not After : Jun 16 06:00:55 2025 GMT
Subject: CN=d45c13b4def1fe756d7cd2fad3cba95c97890007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c8:30:b2:d1:77:dd:d3:d2:ba:38:27:9e:78:
84:4f:76:f1:20:e9:09:68:70:92:46:33:f7:0d:a9:
23:ac:59:da:16:44:5e:b2:48:f2:1e:6d:c5:2c:5e:
5c:bd:4d:61:5a:c6:d8:99:ed:40:c0:f1:e5:56:77:
b1:fc:1e:82:38:1d:10:08:39:64:75:77:11:9c:39:
5e:92:62:01:02:d8:0f:9c:73:dc:64:6b:03:5d:1e:
c4:02:d5:84:f1:33:30:63:72:73:b9:8f:7a:a4:db:
1e:4b:e4:da:4a:05:6f:e9:20:05:79:15:23:2f:d8:
4a:f9:01:c7:03:69:d4:fb:ee:fc:4d:5a:c3:be:0c:
b1:62:ef:46:71:91:05:d4:6b:80:57:94:10:5a:42:
fa:9d:d8:cf:28:34:25:a2:96:f5:9f:67:92:be:1e:
b9:ca:53:be:39:20:67:43:ce:f5:ff:6a:9f:0b:50:
18:1d:13:9b:ff:79:63:d3:02:f1:77:8c:be:68:4f:
95:c0:d9:d8:cb:65:f2:fb:45:be:be:52:02:c6:69:
a2:e8:89:04:cf:1b:13:8a:21:d0:00:c1:b7:31:b8:
7d:3e:68:fc:5f:82:f9:0c:d9:2d:57:94:56:7d:db:
1c:ab:f1:5a:0e:59:54:e4:49:7e:40:5b:dd:c7:e6:
ca:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:5C:13:B4:DE:F1:FE:75:6D:7C:D2:FA:D3:CB:A9:5C:97:89:00:07
X509v3 Authority Key Identifier:
keyid:9E:56:98:0D:48:9E:9C:53:BC:82:9F:3E:8D:63:D3:83:F3:8D:0D:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:78:e1:41:a1:0d:97:fd:13:2b:ec:d3:f3:f2:37:45:be:f1:
68:94:db:9b:23:59:b4:31:e8:09:29:1e:25:04:f7:73:6d:7b:
2f:3d:80:bb:55:09:02:ac:b8:90:e4:4f:59:71:d0:6c:b0:97:
9a:db:5c:18:55:93:a6:91:c0:4c:43:da:5b:e2:c1:d2:3c:a6:
b9:06:56:9c:e7:79:0e:a0:83:5a:aa:77:2f:aa:6c:8f:dd:de:
47:11:eb:a6:88:a3:2a:c6:56:4f:83:e7:7a:9b:f2:ae:26:5f:
ee:f9:91:ff:c4:88:b4:e2:46:b4:48:1e:a3:27:0e:f0:20:64:
65:50:03:75:ac:a4:b1:94:d7:7c:89:1c:f1:64:dc:f6:5e:4d:
13:30:f4:37:f6:f9:b8:b4:03:e4:74:1d:b9:33:10:54:34:db:
66:13:2d:14:3e:bc:82:f4:8d:b2:f7:fe:45:c8:54:34:7a:c4:
d2:2c:40:a1:67:25:7c:06:1a:d3:d6:e8:79:ca:35:d6:d0:6c:
7f:48:33:70:c6:ad:6d:bd:6f:b3:4c:83:6f:ed:aa:7b:ef:da:
db:e7:6d:51:7f:23:41:1d:26:8f:62:4d:a6:0f:4c:30:76:10:
1d:74:dc:70:cd:2e:6e:57:9d:7b:3d:29:fe:6d:8a:45:93:4d:
fb:ef:48:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:56:59 2025 by rpki-client