Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
File: nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft (raw, json)
Hash identifier: zZidqcGD0d95r0/80kMrj4xxvqNfaXPDfD/DqE2l+d8=
Subject key identifier: 6F:D1:93:4E:6D:60:78:45:C6:24:58:E9:98:1F:93:74:93:86:60:2D
Authority key identifier: 9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
Certificate issuer: /CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Certificate serial: 01976F9A71CE24532063F3C53540CC6D9B6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
Manifest number: 1592
Signing time: Sat 14 Jun 2025 18:01:21 +0000
Manifest this update: Sat 14 Jun 2025 18:01:21 +0000
Manifest next update: Sun 15 Jun 2025 18:01:21 +0000
Files and hashes: 1: CPqSq0ytAxDio98lkjeb_dYwRZ4.roa (hash: DBQ2P8ThG/7CNm8RF8WiO7psAqOGJ9hYf3OIiBNBEtw=)
2: nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl (hash: zbnilu4eZU4J4OmG29julp2NTAbHm6wbToWjoEN+UpQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:9a:71:ce:24:53:20:63:f3:c5:35:40:cc:6d:9b:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Validity
Not Before: Jun 14 18:01:21 2025 GMT
Not After : Jun 15 18:01:21 2025 GMT
Subject: CN=6fd1934e6d607845c62458e9981f93749386602d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6b:f2:c7:ee:35:8c:e8:10:2c:8d:78:6e:2e:
af:16:a8:d4:09:54:84:99:4e:12:4c:16:1c:6b:d1:
e7:e5:4f:9a:3e:34:0c:39:47:3e:e8:74:9e:d9:bd:
d4:f1:e8:7b:e1:90:9b:ca:58:52:38:29:73:28:1b:
7e:87:ac:62:d5:97:fe:86:f2:c7:29:9a:34:a3:59:
ed:f3:85:0c:5c:98:5c:e0:a0:b6:17:d2:55:8e:d2:
04:20:7f:db:b0:fa:3a:98:1b:10:80:e7:44:ad:56:
ee:98:2b:bd:3b:39:aa:c8:41:45:5b:3f:6f:1b:ec:
3f:15:9c:1c:e6:98:4f:2d:67:3d:30:1c:a1:c4:fd:
a9:61:de:29:c7:44:c8:e5:ac:05:2b:5c:46:ed:01:
eb:85:d6:c3:d0:e0:a2:ff:ee:e8:cd:d7:95:7d:14:
39:c7:6a:bb:17:9e:8a:1b:5e:00:92:92:71:59:ca:
75:b6:f1:b2:44:a0:16:f7:98:e5:a8:fc:29:49:b9:
91:2c:25:c1:ef:3a:2c:fe:b0:56:3a:57:5c:30:cd:
8b:09:8f:d0:13:57:54:57:3e:40:8d:9f:3a:1d:4d:
57:c2:82:dd:0c:6b:c3:da:11:28:cb:31:16:df:ac:
a2:bd:f4:9a:5e:6e:d4:e8:9d:9a:29:6d:2b:93:43:
3f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D1:93:4E:6D:60:78:45:C6:24:58:E9:98:1F:93:74:93:86:60:2D
X509v3 Authority Key Identifier:
keyid:9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:4f:c3:db:56:d4:76:33:9c:8d:3c:72:db:00:b4:14:6b:4c:
3c:40:1c:1d:10:40:bf:ef:06:1f:fa:ac:0e:ba:f2:5b:25:36:
cb:7a:ba:89:35:05:f2:35:d5:41:e4:8a:c8:00:a0:30:d4:e6:
1a:a9:5e:f0:e4:01:9e:e2:56:ae:7e:70:24:72:0b:92:e9:7f:
62:53:ae:2f:ea:b8:31:a7:09:90:43:4a:b6:f6:ac:69:45:a7:
1e:07:29:74:cf:8f:7c:7d:09:d7:ec:c8:ee:3e:1f:9c:6e:b4:
0e:05:3e:4a:f1:b2:ad:a5:33:c3:b1:14:dc:ab:b5:b1:c4:df:
d9:d3:f4:db:1f:f4:8e:2f:2b:78:ab:00:c7:6c:50:01:8a:fc:
f7:34:35:02:29:86:2d:27:fe:de:27:d4:bd:9b:32:a5:99:e2:
b0:55:09:42:9d:51:e8:71:d3:21:44:02:d8:a0:21:61:30:9d:
c5:3a:30:f2:2a:ab:e0:2c:19:46:7d:78:84:4f:c6:81:49:c7:
39:11:7e:98:25:29:b7:01:7c:42:7a:0d:38:59:a9:eb:07:14:
d7:2e:79:aa:24:95:66:c9:bb:5f:6b:d1:39:b7:4c:f7:0f:f1:
ea:aa:4b:52:53:1e:11:87:c3:2c:e6:cf:ef:11:45:e3:de:a6:
54:10:46:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:12:05 2025 by rpki-client