Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
File: nB7k05z6obOseZwX94grjOTigSA.mft (raw, json)
Hash identifier: tYfE+ndMBJmGcPV+wYBxSpzYVUqaL7v++/iySUcmGDg=
Subject key identifier: 87:A0:CF:47:E5:0D:88:89:8B:FA:2C:A6:11:5B:AB:70:80:85:8F:58
Authority key identifier: 9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
Certificate issuer: /CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Certificate serial: 01988D6B937A65997F8C6C7223FC5C9A9D82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
Manifest number: 08D7
Signing time: Sat 09 Aug 2025 06:01:34 +0000
Manifest this update: Sat 09 Aug 2025 06:01:34 +0000
Manifest next update: Sun 10 Aug 2025 06:01:34 +0000
Files and hashes: 1: egM_lo5hkg5KA7_uP-5h7pmD4BM.roa (hash: LWEk9cOjEXdGtew0n3bgwHhe3Zn8McfotK81AHI+3M0=)
2: nB7k05z6obOseZwX94grjOTigSA.crl (hash: ZgacrdO0vEqiB7nGM0tn26Mp3jMHvTQO60Rv3RmnDPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:6b:93:7a:65:99:7f:8c:6c:72:23:fc:5c:9a:9d:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Validity
Not Before: Aug 9 06:01:34 2025 GMT
Not After : Aug 10 06:01:34 2025 GMT
Subject: CN=87a0cf47e50d88898bfa2ca6115bab7080858f58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:47:c5:3e:d8:73:d6:cf:b8:48:be:0d:be:71:
af:33:18:2f:d0:95:4f:c7:64:26:8d:95:c2:bb:0d:
0f:20:c2:55:b7:af:3d:b8:48:fd:c4:da:d0:93:18:
82:e9:a1:5e:3d:28:75:1c:af:16:55:a0:5e:12:13:
fe:83:a1:07:b0:f9:d1:eb:e1:e8:e5:32:2a:e8:88:
f3:3d:c1:d8:cb:15:20:33:a3:d4:09:69:aa:c6:f2:
42:14:34:fd:c0:e9:de:1e:c3:e8:46:af:e3:6e:c8:
ef:07:3f:2f:ff:bb:24:58:01:ac:41:ed:0b:f1:61:
cd:f1:11:db:f0:fa:2d:3b:f7:6f:80:34:fd:34:cb:
20:8c:af:86:0f:6e:be:39:24:cf:b1:d0:79:9a:ee:
db:2b:93:df:d8:7b:9c:bc:78:9f:1d:6f:e7:1e:cd:
f3:76:18:88:82:0c:42:5c:12:ba:69:87:ea:bf:da:
7e:57:94:b2:31:81:99:4d:46:e8:16:ff:f5:a2:c3:
f7:e3:c9:a7:59:14:b0:8f:67:0c:43:94:88:2b:e9:
51:a6:2f:72:37:03:81:f8:13:70:9c:19:72:46:e9:
0d:1d:24:42:a3:2e:e3:be:ac:06:bd:63:81:94:a9:
f7:5b:fe:4c:92:1c:a9:6b:32:91:44:5c:2a:4c:97:
77:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:A0:CF:47:E5:0D:88:89:8B:FA:2C:A6:11:5B:AB:70:80:85:8F:58
X509v3 Authority Key Identifier:
keyid:9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:f3:e5:34:a7:18:2a:84:ee:db:b8:e4:0c:0b:4b:1f:ad:21:
ea:e7:09:71:43:ff:30:64:d1:5f:8a:5d:d8:03:56:82:60:42:
fb:cd:b4:3f:44:c5:d6:e3:a6:50:d9:63:7b:9e:ee:91:93:e4:
85:cf:4d:a8:e6:0f:9f:99:94:82:6a:20:e7:f3:cf:f3:88:ce:
e3:3f:fe:23:85:9a:dc:60:39:fb:10:60:40:f6:b4:f9:07:f3:
0f:01:aa:c9:04:85:24:e4:2a:f8:7c:0d:7d:cd:9b:17:42:d8:
1c:40:4d:fd:c5:6d:5d:d4:85:f3:94:c9:80:d0:b8:fe:84:18:
49:0e:b4:d5:b3:ce:d2:de:99:36:27:4c:72:94:34:e9:80:73:
93:1b:f4:a4:96:f2:35:d9:5f:bb:87:36:5e:e1:8c:14:16:a0:
2e:3b:30:b9:2b:95:a5:e2:69:c1:50:3e:45:63:9d:99:ad:a0:
96:69:26:48:d5:27:99:ec:19:a7:d4:c5:56:99:28:34:92:f8:
8b:83:87:d5:93:9a:d8:05:c0:47:33:5e:a1:d8:ad:d3:2b:40:
62:34:52:ab:2e:0b:28:79:b1:35:2e:db:bf:db:e2:e3:e8:55:
70:e0:a7:74:04:04:b5:9f:33:55:07:f0:cd:8d:68:eb:48:6c:
17:38:1e:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:42:39 2025 by rpki-client