Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
File: nUkl6XatC_tz4JfaaRfoD1vObIw.mft (raw, json)
Hash identifier: HoX8abe1NQCckbbW3ZLtmJEvGbojqe3qozXItkmcVAc=
Subject key identifier: 9D:15:53:6C:42:F1:0B:01:46:B7:BF:42:B1:B9:AE:00:A0:E5:96:EA
Authority key identifier: 9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
Certificate issuer: /CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Certificate serial: 019679E9A038B5A48C3565658AFD583CBDB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
Manifest number: 0F6F
Signing time: Mon 28 Apr 2025 01:01:16 +0000
Manifest this update: Mon 28 Apr 2025 01:01:16 +0000
Manifest next update: Tue 29 Apr 2025 01:01:16 +0000
Files and hashes: 1: 7Wfm8N_BNNM1ZIAzk65u_y1CoxQ.roa (hash: vGKhwTsZ6bUD5wem1afZhHCNpuoU8y3whIP7i2K9fc8=)
2: nUkl6XatC_tz4JfaaRfoD1vObIw.crl (hash: zfIOcC5FRJnH/28bl66YitOWTW46d+MW3q40Ig7BQx8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:e9:a0:38:b5:a4:8c:35:65:65:8a:fd:58:3c:bd:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Validity
Not Before: Apr 28 01:01:16 2025 GMT
Not After : Apr 29 01:01:16 2025 GMT
Subject: CN=9d15536c42f10b0146b7bf42b1b9ae00a0e596ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:a7:94:23:22:6b:79:79:75:50:67:2a:06:a9:
fc:8d:4a:60:8c:17:3e:d4:99:ef:a8:a1:8f:52:12:
12:72:4e:1e:bd:b0:2d:fb:d9:d3:9b:e7:52:b2:cc:
78:15:7d:df:51:4e:1a:37:2a:81:2e:f5:30:9e:37:
40:51:d7:c9:5b:c5:cc:78:e8:29:eb:7a:ee:d4:ce:
db:50:29:2b:3a:58:6c:d0:6c:cd:8f:a1:2b:cb:7a:
5e:6c:f0:b0:97:f7:09:5f:5b:c0:82:29:f1:53:18:
e1:9b:99:76:95:59:ff:14:99:4c:e9:04:1f:f9:5e:
cf:46:49:8e:9d:d9:a7:83:35:36:45:a2:2b:54:5e:
24:72:f9:d1:ce:fb:08:06:c3:16:38:0e:e0:81:36:
b6:d5:21:08:4e:05:d6:d8:78:9e:c5:b1:53:cf:2c:
6b:50:e0:31:12:84:d2:08:1c:4b:f0:4d:53:52:67:
af:2e:92:7f:df:a1:8a:c4:1e:ae:ee:8c:a2:19:68:
fa:ca:25:c4:25:51:ce:ee:bb:ee:a0:33:bd:9c:9b:
40:e3:1b:55:29:2e:6d:5c:89:63:d8:68:51:0b:e1:
6a:11:b4:bc:98:42:0d:04:c1:09:5a:62:91:74:96:
9a:a4:3c:22:fc:c9:1b:ab:9a:f0:b5:c4:00:f8:97:
de:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:15:53:6C:42:F1:0B:01:46:B7:BF:42:B1:B9:AE:00:A0:E5:96:EA
X509v3 Authority Key Identifier:
keyid:9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:9e:40:15:9a:b4:ff:9d:92:7f:61:72:33:94:07:83:79:77:
b1:21:46:29:77:55:97:f1:cc:ab:ba:97:c8:56:c7:2d:ef:bb:
84:6f:13:61:ee:b7:ca:d8:00:48:db:1e:e8:de:24:85:ca:f5:
b2:a9:a5:dd:20:38:ac:a5:05:3c:2c:04:21:49:85:83:70:1f:
8c:30:9d:48:8d:db:95:c0:e2:52:c8:95:25:df:10:df:d1:7d:
4d:4b:a3:7b:a6:83:d1:a2:00:27:92:b5:6d:5f:5e:27:3a:d7:
57:4d:69:63:8d:7c:80:b3:f9:fa:4d:2c:aa:dd:bc:96:46:0e:
2a:84:b3:26:fc:cf:0d:78:13:52:df:1f:45:9a:7c:76:e6:6b:
cc:98:72:4b:27:ab:8d:12:d5:fa:f1:3e:16:f7:b2:6f:51:82:
94:de:98:28:0c:85:9c:5b:12:a7:f9:be:9b:99:23:f2:e1:9a:
97:a5:36:93:38:98:fb:60:15:4f:9c:ab:3c:71:59:e1:8f:57:
5d:3c:70:83:2e:fe:84:cc:25:cb:d6:2b:15:7f:a2:67:99:3a:
07:65:a9:58:a1:8c:b4:58:96:4f:72:be:d9:c7:bf:4a:dc:71:
06:b2:0b:fb:dc:ce:ea:d8:e1:89:65:6e:a9:be:bc:4a:59:d2:
a3:e0:9b:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 05:58:00 2025 by rpki-client