Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
File: nUkl6XatC_tz4JfaaRfoD1vObIw.mft (raw, json)
Hash identifier: Rjas4LnPvW/7cyVCRqiC8ZsGX2iGjGK9hOaxuP4OQkY=
Subject key identifier: B4:C0:A4:F3:82:D2:C9:5D:36:B4:33:9C:F3:47:2E:BF:C3:6E:5D:A8
Authority key identifier: 9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
Certificate issuer: /CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Certificate serial: 0197B6A07F853FF2955B88CD5C811DC8DDFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
Manifest number: 1013
Signing time: Sat 28 Jun 2025 13:01:00 +0000
Manifest this update: Sat 28 Jun 2025 13:01:00 +0000
Manifest next update: Sun 29 Jun 2025 13:01:00 +0000
Files and hashes: 1: 7Wfm8N_BNNM1ZIAzk65u_y1CoxQ.roa (hash: vGKhwTsZ6bUD5wem1afZhHCNpuoU8y3whIP7i2K9fc8=)
2: nUkl6XatC_tz4JfaaRfoD1vObIw.crl (hash: 3BXjcHhlnMZ9iShifB7BsPZDEr69kXsV4OeI/B3dhwg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:7f:85:3f:f2:95:5b:88:cd:5c:81:1d:c8:dd:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Validity
Not Before: Jun 28 13:01:00 2025 GMT
Not After : Jun 29 13:01:00 2025 GMT
Subject: CN=b4c0a4f382d2c95d36b4339cf3472ebfc36e5da8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bd:11:34:1e:fd:42:bd:00:d2:a3:4c:67:53:
95:3d:1f:89:e5:2a:b9:f5:c0:47:62:de:6c:b9:d2:
9f:80:4b:56:84:9a:b5:2c:53:3e:63:1b:f1:4b:99:
86:f4:fe:23:a3:8d:46:7a:e4:17:3c:b7:2b:d4:eb:
ca:31:1d:d2:fc:10:6f:4a:bf:a7:65:44:b4:ac:a2:
1c:2f:4f:5d:f2:fe:15:d8:51:71:b1:2a:64:b1:91:
ef:2f:b3:14:e1:d8:97:c6:35:f1:16:b2:a6:d1:d8:
14:24:2d:69:be:a8:a3:2d:d8:55:19:8c:f7:81:f2:
e7:23:ec:c2:d8:53:f6:5f:c0:2d:6b:55:5a:a5:1a:
9d:98:2c:00:54:ff:5d:16:95:1d:01:2f:b5:ad:36:
c9:16:2d:54:82:c3:44:dd:0a:ba:40:a9:6b:7d:a1:
db:a6:93:f3:96:b2:af:0c:cc:ec:ae:f5:24:e2:07:
1e:66:cd:b3:3b:ef:c0:7e:ce:4c:71:2a:ac:3c:1f:
e1:c2:56:6c:89:9a:e8:a9:f9:1d:ce:c7:3f:a8:00:
49:d1:aa:98:0c:a6:82:85:e1:20:fe:52:d4:4a:60:
d8:09:f2:be:b6:55:36:14:96:e9:d8:98:e4:91:ab:
4c:4a:f7:fb:1d:a2:5e:43:92:50:98:68:3b:b1:5a:
2a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:C0:A4:F3:82:D2:C9:5D:36:B4:33:9C:F3:47:2E:BF:C3:6E:5D:A8
X509v3 Authority Key Identifier:
keyid:9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:81:50:54:30:bf:e8:1b:65:56:7f:1e:4f:aa:0f:04:11:97:
99:08:cf:aa:20:0b:d5:0d:42:17:d4:d5:6b:40:fa:93:b3:67:
2d:06:3e:fd:40:97:e6:f0:24:8e:47:86:65:20:08:97:52:89:
43:12:31:0e:80:42:a6:04:f8:ff:2b:a6:ce:73:41:2e:73:a3:
1c:ad:2e:59:f4:5f:8c:54:31:aa:e6:49:fc:89:0a:a6:10:72:
d1:97:63:e0:ef:85:2f:b5:da:2e:9d:f6:87:d8:b4:84:a3:4a:
48:f8:89:3b:98:50:b8:df:1d:26:da:20:01:17:75:2a:47:23:
20:5f:6c:7a:9c:ef:59:98:5f:17:45:c6:28:b9:d5:00:f7:1b:
eb:e5:0a:59:2f:85:f4:6f:08:90:0b:3e:19:28:f3:ea:ac:a7:
91:45:d7:24:f9:bd:e2:4a:31:20:e0:44:d1:45:ce:b9:9a:22:
a5:42:5e:a2:e2:8e:ee:2c:2f:95:fd:02:94:70:9b:25:e7:0f:
68:20:76:df:2a:f1:3f:6a:07:58:57:bf:a1:3d:37:34:32:a7:
dd:90:65:69:96:bd:5a:6a:b7:bb:28:13:1b:62:6c:ac:73:96:
70:4d:06:51:1a:7a:22:97:6b:3d:5e:ee:37:29:48:be:a4:23:
61:ee:f8:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:42:55 2025 by rpki-client