Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft
File: 2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft (raw, json)
Hash identifier: /yE9hrQEKCpUtlyw1/kkzj1MPhrIa4sAwfWyB9JU+rw=
Subject key identifier: 71:E8:8F:7C:F7:52:C9:D6:10:57:93:98:B6:68:A2:CE:60:1A:EF:F1
Authority key identifier: D8:D3:CA:2C:23:1A:FD:F3:B0:35:5C:77:A7:CB:B2:26:F8:1B:74:DE
Certificate issuer: /CN=d8d3ca2c231afdf3b0355c77a7cbb226f81b74de
Certificate serial: 019768F308E909C0CD3117578BF12C1B4E65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft
Manifest number: 0170
Signing time: Fri 13 Jun 2025 11:00:47 +0000
Manifest this update: Fri 13 Jun 2025 11:00:47 +0000
Manifest next update: Sat 14 Jun 2025 11:00:47 +0000
Files and hashes: 1: 1-fKYH7NxhQKRhWFUhdeZIQJCx4I.roa (hash: hiw+Pi/4f+TeDv6TkBewfREUIC+lofxlXNwz+z+uPDE=)
2: 2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl (hash: VrYdExXRK+FdSx2lmp+12jn94NZIlOH/gdKduD775ZI=)
3: P6mssWX-V0cqAzHy81OLWoJ95tA.roa (hash: 1KxuTLXZ0RpUrBX1EdO6Y3ND8ja5oUQEOKFvppcvKmo=)
4: xb1c81OFtbINdLQq-ZwRav9UWoI.roa (hash: XHYFd0tSE5d2fh7X6gspcN3JIn/ONDCV3VHTC+ocClI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 11:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:f3:08:e9:09:c0:cd:31:17:57:8b:f1:2c:1b:4e:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8d3ca2c231afdf3b0355c77a7cbb226f81b74de
Validity
Not Before: Jun 13 11:00:47 2025 GMT
Not After : Jun 14 11:00:47 2025 GMT
Subject: CN=71e88f7cf752c9d610579398b668a2ce601aeff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:18:ac:c6:4b:a7:a7:30:54:a7:1e:9c:74:36:
2a:78:a7:40:66:48:3d:17:85:50:85:00:fc:7d:62:
ed:2b:82:95:cd:c1:bd:30:36:7a:c2:e5:db:75:15:
bf:7a:4f:a0:46:b9:bf:32:ec:5c:b9:a0:9d:53:ee:
de:e7:ba:26:f9:c6:e6:7c:c0:07:af:3e:d5:21:2e:
f1:39:94:ae:47:49:f3:ec:0c:8c:cc:c5:aa:70:8c:
39:6c:ca:73:5d:83:7e:9f:1b:ab:62:39:69:73:16:
37:42:39:31:c0:b0:2a:5e:f5:cb:d6:cf:4f:01:10:
d9:ba:39:ca:96:20:ed:1e:f5:2d:0a:be:16:fb:2a:
12:bb:80:3a:92:8e:7c:2c:3b:5b:62:34:cd:4a:86:
30:d7:41:3a:09:0a:10:d7:50:0a:9a:27:0a:6d:24:
8e:c5:10:6b:a5:6c:d3:de:00:b4:8f:14:1f:91:79:
93:09:73:90:0f:e8:dc:45:95:84:7f:de:07:4d:cb:
79:ff:0c:3c:33:42:ea:4d:81:73:46:5b:a4:8d:ea:
ca:d9:a3:54:da:5f:e6:5b:de:d8:b7:c1:3a:7b:f3:
50:ad:f4:71:2d:86:bb:ff:66:a9:20:ac:56:9f:a3:
2a:1f:92:13:cc:dc:f3:ab:fd:47:78:c3:3c:fb:6f:
52:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:E8:8F:7C:F7:52:C9:D6:10:57:93:98:B6:68:A2:CE:60:1A:EF:F1
X509v3 Authority Key Identifier:
keyid:D8:D3:CA:2C:23:1A:FD:F3:B0:35:5C:77:A7:CB:B2:26:F8:1B:74:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:ac:f6:1e:2c:2d:50:d0:46:f4:8d:0e:55:01:30:fb:1d:e1:
ae:d2:7c:59:a6:79:3a:6f:af:fa:17:e1:3e:73:48:2b:a3:40:
0a:19:34:a6:af:32:6f:de:a4:f1:8d:ed:cd:1c:2f:76:b7:a3:
1f:ed:84:bd:b0:e7:30:a9:0f:85:aa:05:d4:d9:52:c3:bc:28:
f7:f0:3b:ac:b4:4e:53:fe:cb:7e:d5:1f:7d:d9:e1:c5:ee:b7:
a0:9f:0d:20:26:a8:a4:2e:77:5f:9f:3c:f9:b6:f6:87:2d:2c:
f8:4b:4e:1e:29:32:92:fd:7b:8e:9a:12:57:62:c1:ed:e2:77:
b9:5b:bc:6e:e2:be:d7:3a:96:4a:75:09:a6:95:0e:18:bc:8e:
b1:e1:43:d1:fb:a2:3f:ec:3f:7f:db:ff:c9:44:34:be:e7:10:
f9:9c:9a:4f:f0:33:cd:f2:78:ba:42:ce:4f:ef:3b:e9:ed:81:
84:a0:7c:07:75:26:f4:e5:4b:46:09:86:9f:c6:a3:b2:96:94:
bc:5c:e3:47:6c:f5:11:5a:bf:f2:6d:43:9b:8d:a5:db:37:66:
8c:58:d5:95:b8:87:03:04:58:27:9b:f7:6b:96:54:9c:8f:5e:
75:a1:ca:9c:23:15:4f:f1:f6:da:97:d3:1b:3f:f3:da:66:6d:
7e:84:dc:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:26:33 2025 by rpki-client