Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
File: nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft (raw, json)
Hash identifier: bXiu38pAFfUAtkxrVeHsFs9O4X/f5B0l4y+q9z+Jo0I=
Subject key identifier: 7C:C0:75:19:E8:99:7E:4A:36:A8:A7:F0:34:C0:3D:59:83:2F:FE:47
Authority key identifier: 9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
Certificate issuer: /CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Certificate serial: 01987450D4F572F7D076057F540B5BBC31C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
Manifest number: 1619
Signing time: Mon 04 Aug 2025 09:01:51 +0000
Manifest this update: Mon 04 Aug 2025 09:01:51 +0000
Manifest next update: Tue 05 Aug 2025 09:01:51 +0000
Files and hashes: 1: CPqSq0ytAxDio98lkjeb_dYwRZ4.roa (hash: DBQ2P8ThG/7CNm8RF8WiO7psAqOGJ9hYf3OIiBNBEtw=)
2: nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl (hash: VyFF6pvsV2AkUvviyjvOXk7obX/GIwxbniZDsv9JdsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:d4:f5:72:f7:d0:76:05:7f:54:0b:5b:bc:31:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Validity
Not Before: Aug 4 09:01:51 2025 GMT
Not After : Aug 5 09:01:51 2025 GMT
Subject: CN=7cc07519e8997e4a36a8a7f034c03d59832ffe47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:34:d1:7b:51:5c:d8:e1:7b:0b:8a:de:ee:15:
7f:30:0c:e4:34:4a:48:7d:0c:aa:02:6c:9d:4b:14:
64:70:e1:09:33:ca:1b:ac:ad:2b:48:72:80:4f:38:
7e:bf:ff:47:1c:df:fc:8c:7e:a5:12:f8:1e:a9:bf:
16:ac:fd:73:87:12:e9:b0:bc:0e:5d:58:29:38:72:
79:d3:43:e1:6f:f3:b4:a1:c9:9c:ad:e6:bc:00:9a:
50:a1:7c:cf:2d:39:ba:9e:bd:06:06:63:8a:ac:3a:
fc:fd:86:69:1c:97:de:aa:1a:a2:c4:5c:a7:fc:b2:
02:a0:5c:e1:24:18:37:da:8f:f3:05:aa:4a:5e:dc:
37:79:f2:d2:90:5a:5b:4d:98:d4:cf:61:01:6c:00:
a0:fa:06:e7:fc:f2:5f:4d:04:db:b4:ab:3f:ef:3c:
13:73:23:d4:e1:8c:b4:02:c5:c9:ee:d8:62:3a:1c:
55:72:16:2e:40:c8:0f:6b:f0:52:43:48:14:b7:3c:
a8:04:f9:0d:f0:79:f4:4e:9d:1a:62:0f:81:89:a8:
67:7b:1a:76:d4:be:a7:80:c5:be:35:42:2b:6d:7e:
ba:ab:91:53:a9:81:b7:94:e9:99:73:5b:4d:cb:d8:
04:5d:c0:ba:21:fd:8f:3a:da:7d:b7:e0:d6:24:d0:
98:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:C0:75:19:E8:99:7E:4A:36:A8:A7:F0:34:C0:3D:59:83:2F:FE:47
X509v3 Authority Key Identifier:
keyid:9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:4d:1a:49:e5:fe:3d:62:bc:b4:fd:7a:78:c5:15:70:27:5f:
80:1f:ab:0e:79:a2:12:2c:f8:31:a5:2b:2e:ca:ce:c0:b4:09:
80:c8:06:16:d6:38:04:72:2e:ca:15:02:12:c3:45:0a:09:77:
0a:ab:fb:10:da:fc:83:41:8b:c0:c1:77:14:6c:af:34:50:e2:
7b:ff:66:1b:5f:15:2d:bf:10:11:6b:a6:4e:d4:2f:4d:ee:ec:
68:f0:b6:a1:44:fd:0d:35:4f:90:62:00:b0:ea:b7:0a:7b:04:
b0:96:c3:41:b4:1e:ba:8e:01:96:b1:27:34:c1:c2:19:e7:7d:
ed:49:4d:29:62:6d:0c:cf:34:8a:28:b9:f9:93:02:28:3e:d5:
17:7e:e4:29:04:b2:c8:64:5a:8d:cb:81:55:91:4c:6b:87:f2:
23:f2:bf:44:92:aa:e4:2d:b7:a0:02:4a:13:71:84:28:ec:83:
8d:41:2f:7e:26:3c:bb:f4:06:e3:51:d8:96:31:b5:57:94:38:
91:12:d9:89:9c:6b:ae:72:a4:48:77:5e:09:67:0a:fb:6b:ed:
06:65:60:71:2c:fa:85:90:c1:4e:20:d3:58:47:2c:e8:6d:41:
15:1e:be:8c:b2:55:02:77:3d:91:b2:7b:f4:79:5c:f6:e5:c5:
69:a4:58:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:13:57 2025 by rpki-client