Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
File: nlaYDUienFO8gp8-jWPTg_ONDeM.mft (raw, json)
Hash identifier: D6WoYUr/IkBHhSJBkGhLyng5Ax242pjR8qgn7nW05W4=
Subject key identifier: A3:8B:5B:DD:81:EE:9D:A8:3D:C5:F2:5D:DB:2D:EC:B2:B2:4A:51:37
Authority key identifier: 9E:56:98:0D:48:9E:9C:53:BC:82:9F:3E:8D:63:D3:83:F3:8D:0D:E3
Certificate issuer: /CN=9e56980d489e9c53bc829f3e8d63d383f38d0de3
Certificate serial: 01988C21A2224A2ABB15005A267B3DA37C0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
Manifest number: 1580
Signing time: Sat 09 Aug 2025 00:01:11 +0000
Manifest this update: Sat 09 Aug 2025 00:01:11 +0000
Manifest next update: Sun 10 Aug 2025 00:01:11 +0000
Files and hashes: 1: 5LKnYfYeN0M1IwSjOCfaAZydc0E.roa (hash: R6rY8mHoFXXwwf30CLdp4brLxdq1SUoGP6TPbyDWGN8=)
2: nlaYDUienFO8gp8-jWPTg_ONDeM.crl (hash: CLrBKZ+mPUo6enwL4qebCD+A/0myrDd9hKa/Dn6+s9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:21:a2:22:4a:2a:bb:15:00:5a:26:7b:3d:a3:7c:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e56980d489e9c53bc829f3e8d63d383f38d0de3
Validity
Not Before: Aug 9 00:01:11 2025 GMT
Not After : Aug 10 00:01:11 2025 GMT
Subject: CN=a38b5bdd81ee9da83dc5f25ddb2decb2b24a5137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a7:40:f2:b9:fa:00:97:da:10:32:4f:90:c4:
82:76:70:bc:56:d0:3e:bb:79:32:05:06:b7:69:36:
e1:76:f0:de:5b:4e:85:4d:36:0c:ff:36:36:27:34:
d6:1c:cc:07:9b:19:79:ce:13:5f:c9:d5:13:ee:72:
ba:7f:5c:95:f5:0f:d1:67:ef:62:78:ea:8d:c1:41:
ea:c4:36:0b:ee:4b:45:ab:07:ae:ec:6f:fe:ef:41:
eb:a7:90:65:99:68:eb:57:3e:fb:75:c1:ed:b0:a4:
32:5e:57:72:ed:96:19:5e:2e:7b:78:40:19:16:07:
8b:ed:e1:56:ed:30:72:d6:4a:b0:5c:d3:8b:8f:fc:
96:bb:56:91:28:16:fc:a6:03:38:c0:e6:1c:59:26:
2a:94:44:5a:8e:ba:ca:88:22:d4:74:c5:7e:25:09:
e3:19:e4:bf:69:a4:0b:5d:02:b2:56:93:d7:ba:80:
92:29:5e:86:de:84:d0:42:75:8f:08:0f:41:1c:6e:
66:a7:d4:9c:80:0f:bc:2e:cf:d3:d5:09:5b:13:09:
b7:c0:17:ee:22:8d:4e:34:63:96:f7:cf:b4:0b:6f:
fa:7b:4b:d7:9f:64:91:6c:96:99:c8:fd:9d:d6:7c:
70:22:87:7d:a2:e4:bc:0c:0f:62:e8:5d:af:88:47:
b8:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:8B:5B:DD:81:EE:9D:A8:3D:C5:F2:5D:DB:2D:EC:B2:B2:4A:51:37
X509v3 Authority Key Identifier:
keyid:9E:56:98:0D:48:9E:9C:53:BC:82:9F:3E:8D:63:D3:83:F3:8D:0D:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:1e:cb:7c:10:e3:76:8c:8d:ab:88:f7:ec:a5:86:42:d4:d0:
a7:7e:34:fa:1d:ea:01:1d:b4:76:4e:6c:39:90:a8:4e:0f:c7:
c8:dd:b9:d8:e4:1e:73:bc:27:1b:f2:a7:06:fb:6f:71:0a:f6:
da:fe:5e:3c:fa:4c:58:46:61:9b:98:27:d0:12:7c:0f:b8:07:
52:11:e0:fc:4a:29:c8:dd:61:a2:52:a3:48:84:fb:ed:52:ba:
78:8e:8b:71:56:ae:cf:82:d8:9a:5a:7e:79:d0:44:85:57:45:
20:10:3b:77:b4:58:59:44:fa:84:71:3f:14:fd:a8:d7:5d:07:
3c:db:cf:56:6b:87:e0:88:a7:5a:2e:5e:4a:8e:31:ab:3d:d4:
1b:d4:e8:a3:b3:73:58:e5:49:28:15:73:94:22:83:29:8e:dc:
da:13:5b:82:7e:23:59:88:58:49:1a:e9:8d:73:be:3e:fc:d5:
6f:ba:52:26:d7:fb:eb:5b:60:28:37:d8:29:24:d0:73:84:bc:
58:5c:b5:1d:8a:c9:84:68:a6:3a:8b:e4:7e:99:69:d8:c2:89:
7d:4c:9f:20:b3:44:ac:90:52:3d:c7:b7:46:3e:72:ee:5e:58:
3f:e3:90:c0:c9:51:61:4e:ac:db:6c:ee:c0:77:66:1f:13:19:
93:65:29:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:34:48 2025 by rpki-client