Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.mft
File: NkYhMZiJnt-otCrdRzraIYdI4QQ.mft (raw, json)
Hash identifier: VKARlHLkj99WrUK0tOQCAq08ADL3I6wKKf78pmjsASs=
Subject key identifier: 70:4A:5B:83:A3:19:7C:57:11:C2:FF:E2:15:CB:EB:19:01:AC:EC:22
Authority key identifier: 36:46:21:31:98:89:9E:DF:A8:B4:2A:DD:47:3A:DA:21:87:48:E1:04
Certificate issuer: /CN=3646213198899edfa8b42add473ada218748e104
Certificate serial: 0197741B98514C5C18420C344F9858F1D378
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NkYhMZiJnt-otCrdRzraIYdI4QQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.mft
Manifest number: 0B07
Signing time: Sun 15 Jun 2025 15:00:54 +0000
Manifest this update: Sun 15 Jun 2025 15:00:54 +0000
Manifest next update: Mon 16 Jun 2025 15:00:54 +0000
Files and hashes: 1: G2aa7vj-d_CA2HuKW-IASCzWaSQ.roa (hash: pv32os3ZPwMAxeQUj3RBQ+FwWykK77hFOgeqqDGQkeE=)
2: NkYhMZiJnt-otCrdRzraIYdI4QQ.crl (hash: 1OoseCXats43Etb25+EtCyY82g6QkxuSG8z4TINwGxw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/NkYhMZiJnt-otCrdRzraIYdI4QQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:74:1b:98:51:4c:5c:18:42:0c:34:4f:98:58:f1:d3:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3646213198899edfa8b42add473ada218748e104
Validity
Not Before: Jun 15 15:00:54 2025 GMT
Not After : Jun 16 15:00:54 2025 GMT
Subject: CN=704a5b83a3197c5711c2ffe215cbeb1901acec22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:dd:a3:59:18:e0:98:38:d8:12:c6:dc:60:c2:
04:c7:06:60:f5:40:52:1d:ec:db:ab:1a:a0:1b:dc:
68:2f:e1:1d:3f:12:d7:7e:ca:e2:37:40:da:7a:a2:
7e:30:2b:03:10:8d:6a:ed:49:1b:92:b3:96:d0:f0:
8e:ea:a1:ed:ef:a1:15:ce:41:82:16:61:7e:62:bc:
ea:58:98:15:d0:53:e1:30:14:b9:e4:64:4a:63:1c:
64:7b:89:6e:e8:f4:52:a5:1b:5b:70:0e:28:4d:9e:
e0:a0:f5:22:94:7a:44:42:cb:bb:85:47:11:90:ae:
9e:a2:38:7d:53:f3:2a:77:17:3f:16:70:bd:ad:22:
2b:3c:77:3c:fd:0b:6b:1b:1c:82:70:1b:ac:2e:a3:
52:2b:e1:03:cc:09:82:62:93:95:2d:1b:fd:6c:8e:
e2:f6:61:2e:9c:9f:97:6c:7e:d5:9e:fc:e0:61:05:
49:c0:d7:0b:ff:c1:2e:95:41:ce:1e:fc:9b:5d:fa:
6a:60:48:de:cb:c8:6a:ae:5b:83:d5:cd:65:19:7a:
6e:31:23:2a:7f:ad:3f:48:18:30:8a:d3:1c:f7:68:
c1:26:64:1d:38:b1:9b:94:01:70:77:56:9f:fe:46:
b2:78:4f:fd:6b:b1:b5:c3:c6:4c:de:59:27:44:bb:
66:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:4A:5B:83:A3:19:7C:57:11:C2:FF:E2:15:CB:EB:19:01:AC:EC:22
X509v3 Authority Key Identifier:
keyid:36:46:21:31:98:89:9E:DF:A8:B4:2A:DD:47:3A:DA:21:87:48:E1:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NkYhMZiJnt-otCrdRzraIYdI4QQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:17:88:bd:7e:28:75:5d:ec:16:df:68:01:5c:16:19:10:b5:
fa:5c:51:66:f9:77:2e:e1:9f:3c:f7:91:50:cc:eb:4c:67:4c:
d6:8a:94:3a:7f:46:fa:8b:20:c4:e4:c2:5e:d5:0c:29:73:3a:
76:a0:97:cd:5d:ff:a0:ec:4f:32:3a:5c:c5:6a:b2:18:ae:c2:
1f:d0:06:4d:d2:15:ba:92:38:b9:f0:65:00:69:ad:2a:0f:f2:
58:d0:b3:65:01:b7:59:d3:f5:97:f3:fb:ec:41:07:11:3f:14:
1c:6c:23:04:b9:61:1d:4d:f9:2f:bc:47:22:5d:a3:8f:73:36:
b0:f9:e8:c6:d8:e5:93:df:fa:70:c2:07:9b:8b:9e:40:09:df:
7a:93:f3:ff:ac:de:5c:a3:fd:10:34:4e:92:66:9d:e5:ea:d8:
e3:b5:23:7b:c3:c1:58:8d:4d:11:78:3d:ee:09:87:09:6a:3b:
47:b7:c1:b7:51:54:3c:15:38:b1:68:fb:06:fb:4f:97:e3:08:
24:da:0f:79:84:33:5f:96:6a:50:a9:a7:e9:d1:18:7d:ad:21:
8e:dc:0f:9a:fd:f7:1e:09:29:b0:ad:1e:09:18:90:5b:46:07:
9a:06:1f:48:67:7f:53:c9:da:c2:fb:96:35:8e:95:93:e1:d7:
d7:63:a7:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 20:47:28 2025 by rpki-client