Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft
File: nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft (raw, json)
Hash identifier: mNIrGLgPx5sXb/h+3z6Upx1H3Oq9+RJIwjc87hc904w=
Subject key identifier: 27:38:A2:EF:74:FC:F7:F0:C5:4B:B1:13:11:31:1F:14:A3:D2:90:E1
Authority key identifier: 9D:36:27:D9:76:65:14:57:89:42:42:00:50:BF:83:A8:B1:29:16:6E
Certificate issuer: /CN=9d3627d9766514578942420050bf83a8b129166e
Certificate serial: 01976C98F8B6CE7CB4757A3273D0EFB3D3E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft
Manifest number: 121F
Signing time: Sat 14 Jun 2025 04:00:53 +0000
Manifest this update: Sat 14 Jun 2025 04:00:53 +0000
Manifest next update: Sun 15 Jun 2025 04:00:53 +0000
Files and hashes: 1: nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl (hash: S/95H8VWlL9DB8mkzW3uTFHh5tv7NU1RY8WGmlDZWXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:98:f8:b6:ce:7c:b4:75:7a:32:73:d0:ef:b3:d3:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d3627d9766514578942420050bf83a8b129166e
Validity
Not Before: Jun 14 04:00:53 2025 GMT
Not After : Jun 15 04:00:53 2025 GMT
Subject: CN=2738a2ef74fcf7f0c54bb11311311f14a3d290e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:73:05:92:bd:4f:21:3c:a7:93:ff:da:40:1c:
cb:63:2c:18:4f:d0:8c:d0:14:39:d0:d3:b0:83:9e:
71:ed:eb:26:11:5b:ce:75:60:11:5e:43:0a:20:88:
0e:dd:57:b0:29:cc:91:ef:6b:18:6c:52:0a:56:a4:
68:51:bc:dd:3b:26:92:e7:bc:7f:30:30:b0:6f:fc:
7a:b3:12:aa:6f:d7:8c:cd:09:9d:9f:f7:e8:52:f9:
e2:d1:e3:7e:0c:fd:06:3a:a3:05:df:09:42:6d:43:
f0:81:e7:70:36:cd:61:c4:14:f7:e3:86:98:89:24:
e8:55:27:16:b7:95:1e:e1:a7:f1:b6:f9:12:a1:ca:
ee:4f:fa:37:39:fa:6d:7b:db:2f:db:75:1a:f4:62:
78:5c:f8:2a:f3:92:c3:9e:9e:6f:8f:a7:99:b7:00:
85:54:fd:2b:3d:30:2b:93:37:15:e0:de:59:17:e0:
36:7f:d8:69:24:87:3a:58:62:a7:52:07:bb:da:8f:
f5:21:16:6f:d3:8d:89:6f:96:45:d0:26:31:da:c9:
0f:59:99:a1:d3:be:f9:9c:97:2e:bb:87:c5:cb:23:
73:30:31:c7:bd:42:46:f1:01:82:74:68:64:9f:2c:
4b:83:3b:9d:d4:87:a9:1e:b4:74:30:9c:23:cf:ee:
40:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:38:A2:EF:74:FC:F7:F0:C5:4B:B1:13:11:31:1F:14:A3:D2:90:E1
X509v3 Authority Key Identifier:
keyid:9D:36:27:D9:76:65:14:57:89:42:42:00:50:BF:83:A8:B1:29:16:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:81:c1:f7:1e:c5:90:e8:8c:6f:35:d1:62:bb:2f:13:c4:d6:
66:6e:86:56:44:c2:73:ee:1e:0a:72:7a:ca:12:8d:ef:4f:a4:
93:6c:a9:c5:f1:45:54:94:e3:30:33:e0:32:bb:ab:2f:4d:fe:
ba:a2:06:d0:fb:14:16:68:c4:70:84:1a:f0:cb:8a:66:69:91:
88:0b:b3:ae:6e:6b:70:83:9b:8c:26:69:62:87:aa:9b:95:21:
7d:cd:da:93:6e:4e:83:ea:16:4b:8b:bb:88:13:12:75:15:60:
7f:cc:0e:cc:b8:d8:97:de:88:db:98:f9:91:b6:bd:a3:58:64:
be:a1:f2:11:14:da:31:2c:85:6b:21:55:f7:19:23:d1:ca:44:
2b:f3:dc:31:79:c3:b0:d5:7a:2f:58:a1:fc:3e:f8:54:26:e4:
5c:26:be:44:bf:ae:88:45:af:96:dc:07:42:03:57:40:7b:9a:
6b:75:d4:c4:1a:f9:9e:ca:45:20:1e:64:bd:36:e0:98:67:bf:
3d:b3:6a:f0:1c:24:03:8d:07:93:3e:0c:b0:41:8b:a0:50:f4:
2a:33:29:63:fd:f9:ef:fe:a8:37:b3:a3:df:fa:dc:c7:4f:83:
83:05:bc:73:8a:50:31:da:a6:35:da:06:6f:85:ab:46:ac:a0:
e6:94:64:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:11:43 2025 by rpki-client