Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
File: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft (raw, json)
Hash identifier: Oe053X4FqnffOerRf3wBIj2Te0hP7xnC0Rt2BXibgxs=
Subject key identifier: 29:EF:86:ED:90:41:4B:C8:B4:5E:9E:71:72:FE:5D:DC:D0:60:19:C9
Authority key identifier: 9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
Certificate issuer: /CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Certificate serial: 0197782F474FD3B4A9578FDE8711EAA7B650
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
Manifest number: 0C67
Signing time: Mon 16 Jun 2025 10:00:53 +0000
Manifest this update: Mon 16 Jun 2025 10:00:53 +0000
Manifest next update: Tue 17 Jun 2025 10:00:53 +0000
Files and hashes: 1: aRmXLbWgvqCrB_ieixDwg5bWHH4.roa (hash: NkuU0nUuwUULqqtGwJsRiK14f6VjdQm0HvAAtBo3GJQ=)
2: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl (hash: sfoTG4bkEwfrCczXPa9Gr/7LFrq5jnWFHmjc3DJixtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 10:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:2f:47:4f:d3:b4:a9:57:8f:de:87:11:ea:a7:b6:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Validity
Not Before: Jun 16 10:00:53 2025 GMT
Not After : Jun 17 10:00:53 2025 GMT
Subject: CN=29ef86ed90414bc8b45e9e7172fe5ddcd06019c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a4:4f:b0:c2:84:3b:b2:c8:b5:b8:43:fc:0c:
37:df:a0:b0:04:a2:20:cd:1f:1c:d2:ce:f9:74:c1:
06:9e:42:77:4d:74:90:7c:63:88:e2:0a:5f:fb:e2:
d9:f8:0e:08:44:73:17:84:65:87:ab:59:ce:91:04:
7e:25:23:08:77:b3:48:03:b0:88:07:bc:75:cd:4f:
9a:cf:0a:7d:05:06:79:32:80:2e:24:14:2f:47:ff:
5d:85:7d:df:c3:b1:65:dc:64:e5:63:7d:d4:f6:60:
d7:d3:ee:0f:26:5f:76:7c:ab:c9:78:8c:f6:1b:2b:
94:30:f3:fc:bd:40:56:6f:7b:fc:0c:6c:92:47:b8:
2d:40:c3:cf:6b:63:4a:d8:8e:40:93:8d:da:df:8b:
46:dc:87:b4:c9:a9:01:52:48:d3:8c:57:93:6f:49:
b3:01:ee:6c:0e:e8:77:92:b8:5e:29:f5:d7:34:a3:
ec:8d:4d:bc:3d:97:10:58:0b:57:ba:cb:52:10:dd:
04:d3:e8:f1:e3:64:7c:a3:0e:79:16:22:da:5e:82:
5d:76:b4:a3:9a:12:c4:1a:7d:71:17:3a:0b:6a:20:
25:fe:dd:b1:05:c3:11:3b:a3:c2:a9:6c:4e:d8:2c:
02:e9:5d:3d:5c:b1:33:15:28:1d:21:e4:33:52:9a:
c0:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:EF:86:ED:90:41:4B:C8:B4:5E:9E:71:72:FE:5D:DC:D0:60:19:C9
X509v3 Authority Key Identifier:
keyid:9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:1e:a0:09:23:7b:1b:0b:4a:69:b5:6f:36:2d:a3:76:7e:5e:
fa:d5:7c:be:9e:2f:3b:5d:ee:65:c3:bc:7e:3c:87:ff:ca:b3:
64:44:8f:09:32:d8:dc:c1:27:32:69:73:f3:aa:e8:6e:61:b6:
5a:15:e3:67:b1:cd:99:21:ad:91:fb:6e:3d:ea:db:d7:22:f4:
47:45:43:04:d7:57:f6:cc:72:23:b1:44:a1:1c:e6:cc:26:d4:
63:21:14:d5:1b:18:34:6f:39:00:54:38:69:ba:5e:16:8f:85:
7f:b0:53:19:b5:67:dc:b4:8b:41:50:ef:44:d0:c0:e4:fc:ab:
d7:78:df:2f:e8:0d:0a:4b:02:68:3a:47:f0:ab:fd:5d:ed:ba:
3b:47:d3:b4:82:66:3d:ee:82:46:2c:b1:7e:a0:00:c6:3e:b0:
ef:10:d0:d9:0c:1f:53:7e:19:31:08:c5:67:22:ef:58:d4:5f:
2c:9a:42:74:42:2f:85:c3:8a:f3:ff:30:ed:17:a2:28:bf:85:
64:c4:9b:64:95:5d:04:6c:5b:f0:a7:42:f9:c4:f0:a8:c2:b0:
72:c5:14:71:07:13:0e:0e:a0:ad:82:f0:27:ec:61:e9:71:81:
26:9a:d3:96:2a:05:1d:c8:86:41:39:7e:9f:b3:00:49:21:21:
b3:1a:29:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 19:31:30 2025 by rpki-client