Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.mft
File: NSfzoow8WhVFLOxPVswmno6tnXI.mft (raw, json)
Hash identifier: 5tA/90OupADW0QPvKP+FNZjFCTuxQSUTIkB5dXloCQM=
Subject key identifier: 88:63:14:B7:4A:06:B7:EF:47:27:10:C9:03:30:D3:DC:27:41:36:44
Authority key identifier: 35:27:F3:A2:8C:3C:5A:15:45:2C:EC:4F:56:CC:26:9E:8E:AD:9D:72
Certificate issuer: /CN=3527f3a28c3c5a15452cec4f56cc269e8ead9d72
Certificate serial: 0197711A6DBDD14D522C6110FC5EFB331C9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSfzoow8WhVFLOxPVswmno6tnXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.mft
Manifest number: 158C
Signing time: Sun 15 Jun 2025 01:00:46 +0000
Manifest this update: Sun 15 Jun 2025 01:00:46 +0000
Manifest next update: Mon 16 Jun 2025 01:00:46 +0000
Files and hashes: 1: NSfzoow8WhVFLOxPVswmno6tnXI.crl (hash: sKT4lJWyJCIUK+36dOI9uycjf7Bc3kk1QEzUWA5FVuk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NSfzoow8WhVFLOxPVswmno6tnXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:1a:6d:bd:d1:4d:52:2c:61:10:fc:5e:fb:33:1c:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3527f3a28c3c5a15452cec4f56cc269e8ead9d72
Validity
Not Before: Jun 15 01:00:46 2025 GMT
Not After : Jun 16 01:00:46 2025 GMT
Subject: CN=886314b74a06b7ef472710c90330d3dc27413644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f0:e8:94:48:20:11:e4:a0:df:bc:07:ac:ca:
b5:43:29:83:f6:e4:b8:e8:64:01:31:7b:fb:f1:a9:
f9:78:95:04:c7:d3:82:c5:2f:65:00:df:68:d9:3a:
b8:00:a5:fa:ad:e4:11:14:83:c7:f1:6e:1c:b8:c9:
ab:72:1a:5f:ff:2a:0e:6c:52:88:c3:19:78:f4:41:
0a:4e:da:de:03:2c:ad:1a:f4:f1:ff:29:c3:0c:c2:
f5:2a:b0:bd:91:23:c9:c7:36:c2:69:c9:80:bd:17:
73:1f:72:5f:1b:f3:a9:54:35:17:ee:63:30:f8:ce:
41:e7:be:f0:62:73:2a:33:e4:6c:55:ed:8f:91:d2:
6e:d0:b6:50:8b:85:45:c9:45:18:da:2f:d5:b9:6e:
6f:7d:94:1e:38:12:85:6c:b5:11:49:75:24:72:b1:
5d:a0:83:20:cf:f0:c9:d1:f3:a2:36:5e:84:f4:dc:
14:90:e7:af:52:7b:44:3a:54:ad:ef:c6:bf:74:ea:
49:d9:b4:16:15:cf:a1:8a:51:66:97:3f:ff:0b:ff:
87:8c:b2:22:6b:a1:0e:e6:c4:90:24:23:7f:45:8f:
7b:2b:e9:4c:cc:bb:e8:4c:fd:c0:aa:4c:77:b0:4b:
c7:cd:b9:23:a6:54:9d:ea:3c:05:25:98:2f:55:b0:
e0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:63:14:B7:4A:06:B7:EF:47:27:10:C9:03:30:D3:DC:27:41:36:44
X509v3 Authority Key Identifier:
keyid:35:27:F3:A2:8C:3C:5A:15:45:2C:EC:4F:56:CC:26:9E:8E:AD:9D:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSfzoow8WhVFLOxPVswmno6tnXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:f3:8f:1d:13:00:7e:94:aa:ac:a9:43:c8:eb:89:9c:4d:ac:
8e:f8:da:88:90:3a:a2:6b:9f:1a:be:4c:9d:db:73:9f:86:86:
df:3a:4a:75:6e:9c:f8:e6:b0:ab:d8:9a:5a:82:c8:fc:13:2e:
e1:35:8f:f6:ae:86:b3:95:5b:1c:0c:58:bb:be:a5:96:d7:ad:
0a:73:4b:fb:b5:97:4d:69:13:37:cb:36:66:19:42:7c:29:40:
e3:74:46:6c:f3:54:ea:31:46:89:51:7a:27:ce:5d:33:15:dc:
ca:e9:a7:45:85:08:9a:86:c1:ce:d8:87:98:ce:5b:2c:71:af:
6b:d9:c8:6c:2f:4b:58:86:09:fd:42:b0:b0:52:58:d2:3d:14:
cb:c3:2c:10:61:15:29:c5:ba:ea:24:5c:2f:67:03:53:19:11:
06:d5:e6:e2:b3:7b:75:3c:84:22:4b:a8:a3:3c:e1:75:69:e7:
0e:da:b2:15:4b:b3:94:05:12:ff:6b:f9:4d:c5:f4:67:52:93:
a0:7a:b5:18:79:6f:13:56:6a:16:2f:b6:dd:35:80:06:f6:8b:
a0:be:31:9d:78:29:00:e9:49:56:39:d0:1e:3b:76:0f:b0:34:
b7:41:96:3f:90:cf:e8:59:99:75:4f:77:f6:f0:b3:8c:df:c6:
eb:03:3f:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:00:52 2025 by rpki-client