Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/916d0e-7683-41a6-96f0-ff6a1f41d1f8/1/nckgfnB-NQXfaLmlvXCtKM1N04U.mft
File: nckgfnB-NQXfaLmlvXCtKM1N04U.mft (raw, json)
Hash identifier: n+II+Jvqv0Mh4GMEBW1O4+FuDR5mDS1fEIPUNUoBlMY=
Subject key identifier: 81:CE:48:67:E7:57:81:4C:B9:24:1C:F7:7F:6A:3C:BD:C3:8B:15:D5
Authority key identifier: 9D:C9:20:7E:70:7E:35:05:DF:68:B9:A5:BD:70:AD:28:CD:4D:D3:85
Certificate issuer: /CN=9dc9207e707e3505df68b9a5bd70ad28cd4dd385
Certificate serial: 0197B8FD3F499B7AE4FB39BF02826A52CD1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nckgfnB-NQXfaLmlvXCtKM1N04U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/916d0e-7683-41a6-96f0-ff6a1f41d1f8/1/nckgfnB-NQXfaLmlvXCtKM1N04U.mft
Manifest number: 15B3
Signing time: Sun 29 Jun 2025 00:01:33 +0000
Manifest this update: Sun 29 Jun 2025 00:01:33 +0000
Manifest next update: Mon 30 Jun 2025 00:01:33 +0000
Files and hashes: 1: nckgfnB-NQXfaLmlvXCtKM1N04U.crl (hash: O2w0BkGznBVfgJEcEXm3VxldSne5usYSh8NksSEMgdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/916d0e-7683-41a6-96f0-ff6a1f41d1f8/1/nckgfnB-NQXfaLmlvXCtKM1N04U.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/916d0e-7683-41a6-96f0-ff6a1f41d1f8/1/nckgfnB-NQXfaLmlvXCtKM1N04U.mft
rsync://rpki.ripe.net/repository/DEFAULT/nckgfnB-NQXfaLmlvXCtKM1N04U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:3f:49:9b:7a:e4:fb:39:bf:02:82:6a:52:cd:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dc9207e707e3505df68b9a5bd70ad28cd4dd385
Validity
Not Before: Jun 29 00:01:33 2025 GMT
Not After : Jun 30 00:01:33 2025 GMT
Subject: CN=81ce4867e757814cb9241cf77f6a3cbdc38b15d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:40:2c:91:ed:2b:bb:59:10:aa:42:9d:4f:96:
81:45:d3:2f:41:44:d4:74:4c:c9:3d:94:eb:23:72:
ea:f2:00:18:2d:75:30:36:e2:c2:11:5c:2a:9c:66:
53:ed:08:bf:23:a2:ce:80:3c:3e:85:0d:21:e9:4b:
dd:8e:69:63:67:cf:80:b8:cc:af:12:46:59:76:2a:
56:6c:05:02:47:38:46:f8:07:a1:63:4e:e1:46:b3:
1a:51:6e:e5:cc:fc:08:c8:3b:98:a2:e7:ee:29:df:
7d:bd:1b:f9:13:ed:31:ec:d7:eb:0b:39:2d:8a:e5:
06:28:a0:d8:c3:3e:7f:e5:d1:67:e6:2c:c2:cd:a6:
fb:d5:cf:1c:86:00:c7:95:84:80:8b:86:97:2f:95:
46:0a:7b:92:6c:19:87:de:e4:8f:fa:1a:6b:95:1d:
3a:94:c2:ce:93:9a:14:cf:95:a2:12:65:b6:f9:7f:
9d:4d:d1:a3:d7:6a:22:28:95:44:df:f2:bf:a2:8a:
7a:04:b9:02:20:7d:d8:14:9e:c9:4d:4c:db:a6:ba:
e7:f4:88:ac:fb:31:b4:4f:65:fc:13:7e:63:79:41:
03:a3:fb:de:a3:12:fb:3e:10:90:0c:f0:a3:50:d9:
34:44:17:b1:a1:bf:92:1a:0c:00:33:d2:cb:9d:53:
02:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:CE:48:67:E7:57:81:4C:B9:24:1C:F7:7F:6A:3C:BD:C3:8B:15:D5
X509v3 Authority Key Identifier:
keyid:9D:C9:20:7E:70:7E:35:05:DF:68:B9:A5:BD:70:AD:28:CD:4D:D3:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nckgfnB-NQXfaLmlvXCtKM1N04U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/916d0e-7683-41a6-96f0-ff6a1f41d1f8/1/nckgfnB-NQXfaLmlvXCtKM1N04U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/916d0e-7683-41a6-96f0-ff6a1f41d1f8/1/nckgfnB-NQXfaLmlvXCtKM1N04U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:c1:79:5d:8d:ca:a4:47:08:4f:15:d8:51:6d:e1:b9:be:0e:
e5:68:dd:ed:73:e5:63:c4:10:d1:a0:d4:34:70:20:c8:76:6c:
89:9f:85:48:82:27:cf:6a:89:f1:76:48:5e:0a:5d:34:97:6c:
49:7f:c3:2d:9f:6d:61:c5:8b:17:38:d4:b5:75:24:ac:f3:81:
c8:5e:a5:16:7b:60:73:dd:8c:c7:0b:e4:6a:a7:7e:db:3f:10:
93:fb:0c:98:65:e7:0d:ab:6c:07:2c:ba:22:ec:f1:9f:d4:9a:
9e:0c:da:03:d2:1f:25:c3:0b:6d:f0:45:c2:c4:b6:ef:0c:c9:
2d:0e:8d:02:62:16:f1:3b:aa:c6:39:af:0a:3d:c0:b6:80:a0:
02:1a:a4:80:06:b8:ea:ea:ff:78:c6:9d:45:b4:96:3d:d1:3d:
37:fe:a7:36:df:08:8d:4e:55:71:47:3d:53:ac:d4:2c:01:17:
50:42:8e:7d:71:42:71:da:d1:cb:55:6a:ab:76:49:9f:66:eb:
75:93:68:a2:f2:ad:4b:be:4e:f2:23:ed:a8:7e:e7:14:7a:a0:
a0:f5:a3:67:1f:a9:77:18:4a:0b:6a:37:75:26:dc:13:ec:2e:
8a:59:84:e4:99:f7:58:3f:7d:7e:4a:63:43:7e:37:98:cd:dc:
2c:e5:08:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:24:24 2025 by rpki-client