Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft
File: n7bU2YfQBKAPopfmnCaOt189mkA.mft (raw, json)
Hash identifier: WAIJsaxJM/RcY3/7fcqVx42SuOt3ZKWFiqwwSlTCESA=
Subject key identifier: 7D:11:DB:5F:93:FA:E6:75:3D:B3:9D:4D:73:7B:DB:7A:21:F3:A7:A0
Authority key identifier: 9F:B6:D4:D9:87:D0:04:A0:0F:A2:97:E6:9C:26:8E:B7:5F:3D:9A:40
Certificate issuer: /CN=9fb6d4d987d004a00fa297e69c268eb75f3d9a40
Certificate serial: 0197BBC6DB12ACC2CAB48ECDB8FE70C46621
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft
Manifest number: 0D96
Signing time: Sun 29 Jun 2025 13:01:00 +0000
Manifest this update: Sun 29 Jun 2025 13:01:00 +0000
Manifest next update: Mon 30 Jun 2025 13:01:00 +0000
Files and hashes: 1: 5ZNOGBQ9w8dTp0XQhpuUk8zzApg.roa (hash: 1/+Fm1r/KA+hNLAy+y/H8/1fP0WyouANNJuTvhP3iNk=)
2: n7bU2YfQBKAPopfmnCaOt189mkA.crl (hash: iUsyDVTTCxwIy4P/HqyvPejzABfA5HO0+iwuxhK5MvU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft
rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 13:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bb:c6:db:12:ac:c2:ca:b4:8e:cd:b8:fe:70:c4:66:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fb6d4d987d004a00fa297e69c268eb75f3d9a40
Validity
Not Before: Jun 29 13:01:00 2025 GMT
Not After : Jun 30 13:01:00 2025 GMT
Subject: CN=7d11db5f93fae6753db39d4d737bdb7a21f3a7a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:88:4c:66:e7:f1:ee:d7:64:7d:75:20:3a:b3:
d3:70:69:1c:71:b2:c6:5d:80:46:71:30:00:48:c7:
a1:3e:9e:ad:a6:4f:13:0f:89:ca:6d:6e:02:b3:c4:
d4:b0:90:5d:9a:79:4d:83:c4:e5:02:b3:80:fb:08:
d5:9a:6e:ad:0c:47:aa:9a:b5:be:53:5d:f9:b1:f5:
4a:b2:84:ba:92:37:f6:64:4d:ca:6e:4d:19:fa:53:
3a:38:bc:ea:27:01:80:90:ea:ba:fb:75:73:55:86:
36:d7:1a:6e:00:a9:30:62:81:b6:11:22:64:87:b4:
b8:38:4c:9c:9a:4f:69:7d:c2:85:19:37:ee:2a:ed:
89:b9:b6:29:e9:68:e9:71:ab:08:6a:a9:04:7e:63:
c6:9a:6c:4e:7f:b8:63:f8:87:b1:c5:79:ea:26:71:
53:fa:12:5f:c1:38:8e:84:29:38:46:56:5e:2e:c8:
47:c1:48:9a:a2:7c:bf:31:34:ff:ea:b9:52:26:06:
cf:64:47:17:75:02:36:4e:ba:ea:98:4e:a0:7d:c2:
b8:c3:71:70:90:3e:4f:dd:a2:43:6b:a7:f5:f4:14:
1b:b1:2b:9b:90:6e:a1:af:3b:b3:2f:ea:78:b9:46:
eb:ab:be:62:8f:98:af:32:80:54:0b:28:08:a6:58:
7f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:11:DB:5F:93:FA:E6:75:3D:B3:9D:4D:73:7B:DB:7A:21:F3:A7:A0
X509v3 Authority Key Identifier:
keyid:9F:B6:D4:D9:87:D0:04:A0:0F:A2:97:E6:9C:26:8E:B7:5F:3D:9A:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:83:ef:54:94:91:16:8c:ff:0a:f5:6c:d9:35:26:66:b1:0a:
04:33:3a:21:98:cd:3f:41:63:38:84:6b:c4:29:bb:c4:ab:df:
2c:1c:48:57:2d:66:f0:7f:21:c3:58:55:f6:c7:77:b8:98:59:
0a:5d:af:ec:71:dd:6b:bd:08:b6:37:a5:dd:05:c4:24:67:24:
f9:01:a3:68:b2:47:cc:54:3d:10:32:95:82:f4:c9:c0:5b:65:
63:f8:0d:6c:0c:0f:12:8c:ff:10:71:3c:d1:e6:88:33:6d:b6:
59:9c:a5:78:db:ce:a4:49:70:bd:e7:6a:17:cd:e9:a7:61:ad:
c8:1b:f0:09:1b:ff:42:5f:58:6f:cb:06:b4:34:4c:af:01:4a:
70:71:08:24:cb:12:03:60:1e:1a:14:60:46:75:ea:76:56:cc:
7b:ff:e1:31:5c:9e:11:d4:32:e9:0f:83:79:e5:5b:4c:c4:4b:
e6:5c:5c:cf:06:09:5a:1a:6d:e1:ee:28:f2:39:76:35:c1:67:
50:d2:ea:a6:3d:31:5c:5c:a6:6d:af:e9:c5:d2:c5:02:3c:23:
5c:50:af:67:1b:75:f6:31:fe:f9:71:62:09:29:5b:99:6a:32:
6a:bd:3e:f2:55:1d:e2:dc:bd:0b:aa:7b:e9:b9:cc:95:3b:0b:
b1:57:85:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 20:55:17 2025 by rpki-client