Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
File: nlY8Qm0ark7R5_WVNnSQIgiehHk.mft (raw, json)
Hash identifier: azlq8TI1tP7dMdbJKMIDS4mVEw8NLgIHJ7uiz8Pod7A=
Subject key identifier: 6C:A5:CC:3F:61:CA:E2:BE:B3:E2:37:A8:F5:E4:97:6A:09:46:EE:13
Authority key identifier: 9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
Certificate issuer: /CN=9e563c426d1aae4ed1e7f59536749022089e8479
Certificate serial: 0197C793E3939A0919B5E456FF7C41F2ECA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
Manifest number: 0A7F
Signing time: Tue 01 Jul 2025 20:00:47 +0000
Manifest this update: Tue 01 Jul 2025 20:00:47 +0000
Manifest next update: Wed 02 Jul 2025 20:00:47 +0000
Files and hashes: 1: DLPCyIKM7jz79PsqVnrxNoMgYXE.roa (hash: +QgaTeTZpZ2fDtls8hcOtAF0lYWHQbDmqjy56TBm3AY=)
2: nlY8Qm0ark7R5_WVNnSQIgiehHk.crl (hash: rcPY4PiSXW3QnJW0NKmNRxrTO01PcpXiUcle9OrVMYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 16:57:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c7:93:e3:93:9a:09:19:b5:e4:56:ff:7c:41:f2:ec:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e563c426d1aae4ed1e7f59536749022089e8479
Validity
Not Before: Jul 1 20:00:47 2025 GMT
Not After : Jul 2 20:00:47 2025 GMT
Subject: CN=6ca5cc3f61cae2beb3e237a8f5e4976a0946ee13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e0:7d:2d:c9:8e:ef:67:db:3a:0c:ea:d8:47:
d2:2b:fe:69:e8:8d:6b:44:23:21:ee:69:3a:f6:90:
3c:64:6a:3c:6e:45:e8:27:65:46:fd:b0:e8:34:53:
73:38:61:12:99:1c:fa:dc:0d:20:79:37:04:41:9b:
69:64:ba:61:cf:90:ba:cc:de:ea:52:b6:44:dc:c6:
ca:ca:37:5c:3f:f3:6a:82:fc:5e:6d:0e:18:9c:1c:
c5:91:e3:00:77:e2:5b:f1:db:9c:14:7a:3e:63:a3:
73:86:44:f5:3f:67:be:78:37:f7:a7:1f:07:4f:fa:
a0:a3:e0:8f:f3:ef:26:53:4f:7c:e0:55:f9:d3:bf:
e6:ad:32:70:cc:a5:35:85:2e:a1:96:c7:91:65:b5:
f0:a6:a2:73:63:d7:df:7f:48:f8:71:3c:e7:04:ac:
a2:22:7f:a0:0e:1c:79:fa:25:07:e8:69:48:fb:2c:
19:31:0a:0a:08:ec:2d:73:02:76:94:ec:0e:37:4a:
f0:4e:7f:47:23:b1:ba:71:68:89:b8:1e:59:9f:37:
db:d1:1c:c8:7d:7b:03:b0:52:02:93:10:3c:3c:d9:
d2:e4:50:0e:05:c2:00:c9:65:34:40:29:32:b6:9b:
bf:f3:dc:92:d7:4c:6c:cf:8b:52:a1:e1:dc:d6:8d:
36:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A5:CC:3F:61:CA:E2:BE:B3:E2:37:A8:F5:E4:97:6A:09:46:EE:13
X509v3 Authority Key Identifier:
keyid:9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:6f:d5:ee:1f:26:de:3c:73:3f:37:b3:59:3f:5b:89:f1:50:
07:13:47:da:0e:ad:73:85:18:dc:cc:87:47:57:e9:d0:5d:4d:
27:e7:9d:49:b0:f5:58:e4:aa:42:58:60:ae:f8:50:78:8c:e1:
51:dd:06:78:1a:59:45:7e:59:98:30:5f:dc:d8:63:6c:b7:76:
11:f6:fd:30:78:10:6b:b5:1c:e0:40:fa:85:21:2c:c2:c2:87:
0f:c1:90:1f:a1:8c:ff:c6:9d:ca:7a:be:23:a7:40:c3:7a:70:
10:2f:70:b0:2c:81:2c:c7:23:36:8f:fd:d1:2e:5b:50:68:3a:
44:02:be:3a:c9:c3:4e:99:28:e7:2f:c6:bc:eb:4a:f5:f4:4b:
aa:9a:be:cb:7a:ac:fc:03:7d:ce:00:2b:6c:f6:ef:61:63:ec:
6f:79:58:27:af:a3:2f:cf:e9:42:60:b8:7e:79:9a:6d:88:06:
4f:d4:b1:bb:ab:46:dc:27:81:38:11:5a:35:16:c5:bb:dc:df:
9d:ee:ce:f2:9f:b4:cd:05:66:10:a0:d6:28:80:3b:4a:59:69:
33:f7:78:4b:4c:aa:71:91:52:4b:73:01:8e:29:11:6d:f1:31:
7e:2b:e4:8f:65:51:f8:50:d3:bc:94:4d:27:04:ed:57:10:19:
6e:31:bd:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 21:17:42 2025 by rpki-client