Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
File: nUkl6XatC_tz4JfaaRfoD1vObIw.mft (raw, json)
Hash identifier: a3MpV9gKCfgpZyYQn6+MpvrnwoKyY/bMlXKph5lQJhs=
Subject key identifier: 78:2A:DA:30:7D:68:1C:5F:B9:B5:1B:1D:02:33:0F:87:86:D2:20:66
Authority key identifier: 9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
Certificate issuer: /CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Certificate serial: 01976F2C17D7088DD7F3A6F48A0B0B7B0F2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
Manifest number: 0FEE
Signing time: Sat 14 Jun 2025 16:00:49 +0000
Manifest this update: Sat 14 Jun 2025 16:00:49 +0000
Manifest next update: Sun 15 Jun 2025 16:00:49 +0000
Files and hashes: 1: 7Wfm8N_BNNM1ZIAzk65u_y1CoxQ.roa (hash: vGKhwTsZ6bUD5wem1afZhHCNpuoU8y3whIP7i2K9fc8=)
2: nUkl6XatC_tz4JfaaRfoD1vObIw.crl (hash: GQiTtg6IYIKYmz9RZ0AdLeffXHQiL+CU4XJu+cBf1Gg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2c:17:d7:08:8d:d7:f3:a6:f4:8a:0b:0b:7b:0f:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Validity
Not Before: Jun 14 16:00:49 2025 GMT
Not After : Jun 15 16:00:49 2025 GMT
Subject: CN=782ada307d681c5fb9b51b1d02330f8786d22066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:9f:bb:39:a4:45:8a:ca:39:15:3a:90:95:9b:
22:f8:d2:63:31:82:5f:1a:a9:b5:2c:7c:f2:ca:a0:
13:25:58:b3:38:f2:77:c7:ee:a9:83:8c:09:08:0f:
33:cf:b3:f9:d5:e2:e2:0c:ca:eb:09:85:ab:db:24:
4e:68:09:53:e1:54:26:fc:ac:2a:2f:8d:08:33:4c:
db:26:5c:55:b5:ed:64:af:15:b7:0d:d8:04:8b:79:
07:19:18:cc:c6:62:94:d0:29:7b:f9:8b:19:8c:0e:
4a:7b:a2:f4:74:c4:03:b6:e5:d9:49:f7:16:1e:01:
2b:bf:63:b2:3f:52:c3:f0:ae:66:da:85:8a:b2:cf:
24:19:55:8f:f0:f0:16:b2:9a:a4:8f:b2:ad:74:d0:
2c:c6:49:41:fd:23:cb:1e:00:55:dc:1a:96:2b:8d:
29:e6:21:be:07:f3:7a:58:46:16:e4:23:ef:73:bb:
77:47:96:e8:2e:4f:d4:8d:7e:ff:fd:ba:3c:be:67:
cd:42:39:66:99:d0:13:fd:af:94:b1:37:51:66:3b:
d8:f7:1f:81:c1:fb:2d:0d:83:91:d8:7f:c8:d3:50:
53:58:0a:1b:56:96:15:c4:cd:0c:90:70:9a:7c:92:
de:1d:7c:98:36:66:d0:b9:f4:29:ae:4c:30:e9:a0:
ff:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:2A:DA:30:7D:68:1C:5F:B9:B5:1B:1D:02:33:0F:87:86:D2:20:66
X509v3 Authority Key Identifier:
keyid:9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:3a:a9:36:f5:0e:0a:49:95:12:a2:bb:32:01:3e:e0:8e:11:
34:41:ae:7c:d7:b7:bb:e3:70:bc:39:be:91:7c:17:68:b0:53:
03:08:44:bf:58:5c:b0:41:7e:fc:38:80:8c:7f:93:3c:cd:ac:
69:3a:ef:95:16:9d:6f:57:5e:0c:ab:03:eb:b8:cf:58:65:b4:
d8:cc:80:06:54:f8:c9:58:9e:94:b2:c3:ec:50:9d:9f:03:83:
5c:64:b4:e2:41:26:c1:d6:b2:a5:09:01:89:c9:3c:1c:33:51:
54:51:a6:b2:57:02:22:c5:fa:3e:14:e3:f9:ec:fd:eb:4e:31:
de:c1:b4:96:7f:95:80:86:a7:94:d5:27:54:ed:0b:9a:0b:ca:
f3:dd:ba:ef:38:71:64:80:6f:95:0e:8f:9e:76:5d:97:b6:21:
06:14:89:b7:1e:cf:4e:e6:3f:4a:d2:fc:d7:00:9a:dd:7b:01:
14:c7:79:85:77:0c:06:b3:af:8e:b8:a4:ff:27:15:a6:86:06:
5a:16:c7:1d:03:5d:f0:b2:3f:55:ce:83:69:03:44:61:c4:68:
ef:73:f0:7e:ac:b3:35:79:c2:1a:df:f9:22:79:03:3d:72:8a:
62:ba:0f:e6:a4:5c:9d:fc:2e:a0:98:7d:47:b0:59:25:50:23:
79:6a:cc:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:59:00 2025 by rpki-client