Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
File: nHLoTFLlxJCdvHAqodIS1HiHX60.mft (raw, json)
Hash identifier: +Rz4/Y8iGmPLlNHIOk4moQm3FHjaNG1/WQ+GR6urjV8=
Subject key identifier: 68:E5:49:34:27:26:D8:5A:83:C8:C6:D4:92:21:F1:D6:99:BB:97:31
Authority key identifier: 9C:72:E8:4C:52:E5:C4:90:9D:BC:70:2A:A1:D2:12:D4:78:87:5F:AD
Certificate issuer: /CN=9c72e84c52e5c4909dbc702aa1d212d478875fad
Certificate serial: 0197B6A0C2F728D6E565F5F652727350B3EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
Manifest number: 05A0
Signing time: Sat 28 Jun 2025 13:01:18 +0000
Manifest this update: Sat 28 Jun 2025 13:01:18 +0000
Manifest next update: Sun 29 Jun 2025 13:01:18 +0000
Files and hashes: 1: MJgreWjojTG3TWAm0IOsT3PX7yE.roa (hash: QQOCbVX4ydh8RHwVZnu9QI+n2Ns0Q1CadZGcMjFSReI=)
2: nHLoTFLlxJCdvHAqodIS1HiHX60.crl (hash: yhpeFNDTsKYd71EPC43cVewnhywAxlQatoB63EVXgTU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:c2:f7:28:d6:e5:65:f5:f6:52:72:73:50:b3:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c72e84c52e5c4909dbc702aa1d212d478875fad
Validity
Not Before: Jun 28 13:01:18 2025 GMT
Not After : Jun 29 13:01:18 2025 GMT
Subject: CN=68e549342726d85a83c8c6d49221f1d699bb9731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a9:2f:68:39:a3:e1:5f:f5:ff:7c:7e:4e:74:
ca:b0:05:7d:f1:67:e8:f0:e0:b8:6f:63:d1:c4:61:
83:fe:63:6c:e7:28:64:4d:ae:77:f2:09:84:be:ba:
2e:01:d7:58:de:99:13:38:68:e0:49:31:08:d0:2d:
74:4f:82:c4:56:a6:ae:2b:89:1c:3d:9f:6c:e0:2a:
13:f3:e4:90:1f:3d:80:aa:ef:ef:f2:e7:31:81:fc:
c1:cb:3a:e6:3f:32:2d:d9:e2:31:06:14:09:bd:3c:
82:3e:7a:47:ae:b1:fd:fc:e8:2b:85:0a:da:a3:15:
78:88:b6:62:9c:92:ee:9e:a7:91:4a:90:2e:6b:18:
c1:c7:53:aa:0d:b9:63:ce:e5:14:0e:11:4f:36:7b:
08:5b:45:14:ba:53:28:35:bb:2d:59:b9:8b:7c:64:
aa:56:d2:57:5a:b8:f9:76:fe:55:52:10:00:39:f3:
b4:a6:28:bf:f1:32:19:4e:1c:9d:d2:17:71:ce:8c:
ea:97:20:88:d8:50:77:80:e6:2a:03:15:53:fa:36:
dd:0f:80:30:65:c0:a9:28:21:c6:94:74:37:1c:9a:
06:6c:fb:6c:f0:d3:1a:e7:89:dd:8b:02:03:24:8c:
db:65:17:8c:41:e8:3f:e6:bc:bf:76:45:7d:90:b1:
be:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E5:49:34:27:26:D8:5A:83:C8:C6:D4:92:21:F1:D6:99:BB:97:31
X509v3 Authority Key Identifier:
keyid:9C:72:E8:4C:52:E5:C4:90:9D:BC:70:2A:A1:D2:12:D4:78:87:5F:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:6a:99:4a:a7:c3:75:d2:26:40:e6:40:c1:6b:84:4a:b9:ab:
9f:85:25:45:d8:d3:63:c8:bb:55:a1:34:6c:40:de:bb:49:55:
4f:07:06:ff:e8:06:f7:21:2a:d1:9f:cc:90:59:0e:a4:7f:e0:
62:23:cd:10:d0:8a:c4:5d:cb:bd:07:f7:f4:9b:8b:5d:8b:40:
1d:d7:ec:55:67:5d:b8:b6:26:d6:60:71:e3:62:dc:56:92:bf:
03:48:ee:8a:b5:44:b5:e0:a3:c0:ab:74:b2:92:b6:1a:88:f9:
f6:0b:ac:6b:ce:fa:fe:0d:72:27:33:f0:04:ed:6b:4a:ba:c6:
61:4c:3c:20:12:41:ef:11:ca:c3:71:29:cc:93:7b:0a:64:45:
11:d7:26:ae:c2:ed:c7:cf:e3:82:b7:40:33:72:96:0b:44:5d:
08:3b:03:7e:b6:5e:22:6b:5b:a8:1c:59:6a:fa:72:a8:20:58:
93:45:43:59:ff:c7:59:77:52:24:2b:da:fb:df:ec:e1:88:6b:
cf:91:03:2d:a4:a7:1e:f1:69:6e:3a:e9:9c:7c:a1:21:c6:5a:
d5:50:9f:22:53:5e:7b:e7:9c:30:d1:bb:21:b1:2a:3a:cd:2a:
02:38:ff:b6:82:3c:d8:80:92:89:7f:1c:6b:c2:11:49:92:26:
9c:e5:8c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:25:49 2025 by rpki-client