Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
File: nSAoCNH5FFVeG9WcFncof_mztZA.mft (raw, json)
Hash identifier: xNuviwQ1RD+tgTVQJi6UC38Jfs1FMMu3aD9PrQzAobU=
Subject key identifier: 17:3E:66:E6:BB:4C:33:84:C9:15:7F:2F:43:90:5B:ED:6A:39:D9:2C
Authority key identifier: 9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
Certificate issuer: /CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Certificate serial: 0197752DCEFC2F64DE8D3F63356CFC48B346
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
Manifest number: 0F9D
Signing time: Sun 15 Jun 2025 20:00:25 +0000
Manifest this update: Sun 15 Jun 2025 20:00:25 +0000
Manifest next update: Mon 16 Jun 2025 20:00:25 +0000
Files and hashes: 1: nSAoCNH5FFVeG9WcFncof_mztZA.crl (hash: 1na9boAuo4+BUjHm8C0ROovvFosvkIZBTBO5JKq1ZtQ=)
2: qztp8oOkrsOnZQZ-AVesJkd8gBA.roa (hash: w8j5kLnBBDJA6YAxwk7yr2iHlxdseJ2t5FGwhKWuj0I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 20:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:75:2d:ce:fc:2f:64:de:8d:3f:63:35:6c:fc:48:b3:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Validity
Not Before: Jun 15 20:00:25 2025 GMT
Not After : Jun 16 20:00:25 2025 GMT
Subject: CN=173e66e6bb4c3384c9157f2f43905bed6a39d92c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:27:33:ad:5c:59:d6:77:40:2c:58:8d:2a:5b:
c0:e9:77:b8:b7:61:7d:55:31:08:32:aa:8d:10:9d:
e0:f7:ac:fe:59:e0:63:f4:6c:58:43:83:8a:87:f6:
f3:73:6f:f5:f1:d5:75:37:4c:c3:5d:b2:d3:f2:1d:
c3:ee:90:ad:a4:79:95:6b:a3:67:c8:b4:82:f0:6e:
b6:cc:9b:a0:65:83:ff:81:44:69:46:c2:cc:18:e7:
21:6c:24:b1:8d:dd:9c:c8:49:01:11:55:6a:f4:68:
68:bd:3a:03:b8:85:4a:8f:1f:57:01:98:46:e5:5e:
76:ad:de:cb:51:2a:15:ce:9a:d8:a8:d4:66:39:c8:
55:b2:59:91:f9:04:2a:d1:01:3e:00:6a:df:4e:8b:
37:c2:49:04:d7:01:c5:b2:63:1f:d0:00:69:58:33:
49:0a:eb:50:53:f4:00:cd:d0:34:c0:1a:22:79:fa:
7c:24:6b:3a:eb:f9:3f:b0:8f:dc:1a:61:1d:0a:08:
7e:cf:ad:7c:77:ec:58:15:30:03:24:30:2d:05:f4:
4a:7a:80:f3:0b:8e:80:24:af:99:b6:38:cc:92:69:
18:49:83:fd:f8:3f:78:0c:90:7b:4a:f2:5b:ba:12:
69:9d:53:68:78:e3:ab:84:8c:c2:5b:64:20:89:6b:
a1:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:3E:66:E6:BB:4C:33:84:C9:15:7F:2F:43:90:5B:ED:6A:39:D9:2C
X509v3 Authority Key Identifier:
keyid:9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:1b:5c:f8:df:e0:eb:e3:b9:b0:d2:bb:7e:ae:6e:35:92:a2:
4f:26:4e:fc:aa:ce:15:84:53:05:56:5e:dd:43:14:de:7d:9a:
a9:fc:21:79:52:c4:91:8d:59:3c:3c:96:a4:24:97:e3:ea:8d:
4d:b5:7a:04:26:93:c6:78:3a:8d:31:ff:f2:ef:4e:cf:d9:96:
f9:77:c7:0b:ef:82:92:b2:5c:d1:d5:d3:6a:ad:f4:0f:c6:fc:
48:ca:96:24:1c:4a:f0:0c:b0:0a:a1:85:d4:68:16:55:05:74:
39:63:9f:ba:5c:d1:b7:19:c5:03:c1:7b:2d:6d:27:c3:62:cd:
24:0a:42:4d:cf:c4:37:2e:bd:c7:62:7c:d6:59:4b:32:f8:c8:
cf:71:df:6e:f5:ac:d7:21:43:d6:0c:76:8c:73:f2:2f:60:f7:
42:13:0a:89:b8:20:35:9d:b7:ac:42:3d:78:77:aa:8a:9e:6b:
a8:f8:d8:3c:75:13:da:35:84:af:e6:c6:08:ca:2b:90:fb:7a:
36:45:9a:4d:6e:91:5d:32:a1:98:2c:3c:57:49:dd:54:ca:36:
12:61:d4:af:aa:67:c8:ee:e7:dc:e0:b1:49:0c:bf:f8:14:94:
bd:ea:6a:49:05:26:eb:7e:bf:78:60:d0:28:e9:61:60:77:60:
24:55:f8:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 04:15:26 2025 by rpki-client