Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
File: nzbQijzYpC9Goslt_XLtjO4nlHc.mft (raw, json)
Hash identifier: WYyjjc0LN0OJhN5Upzyak6hq3YGUCHYC4Sgw7kfyN4c=
Subject key identifier: 67:29:93:81:FC:FE:20:71:4E:C8:3F:09:41:8D:AE:EC:2C:28:A2:25
Authority key identifier: 9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
Certificate issuer: /CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Certificate serial: 0197CB3A2E62AD415FE41841183BBADDCB5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
Manifest number: 0BC7
Signing time: Wed 02 Jul 2025 13:01:17 +0000
Manifest this update: Wed 02 Jul 2025 13:01:17 +0000
Manifest next update: Thu 03 Jul 2025 13:01:17 +0000
Files and hashes: 1: nzbQijzYpC9Goslt_XLtjO4nlHc.crl (hash: q5CBpZi1OlUzM4lZwZ9BXKb4F8WHZ2693+R3En4e9O8=)
2: twzQnUgBAT35ET2oNZWOjjEoBE4.roa (hash: HIWNIMTAhxf1Wnub1ymBGmdU28kJ6snFsV9+PWAEB7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cb:3a:2e:62:ad:41:5f:e4:18:41:18:3b:ba:dd:cb:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Validity
Not Before: Jul 2 13:01:17 2025 GMT
Not After : Jul 3 13:01:17 2025 GMT
Subject: CN=67299381fcfe20714ec83f09418daeec2c28a225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7b:e5:2e:62:64:bf:c7:c9:51:a3:ec:d6:6b:
22:d8:53:6f:1b:7c:2f:70:75:f5:23:f4:88:f9:2e:
21:bf:3c:5a:74:4e:be:47:5d:ab:50:60:4c:f1:6d:
6c:6f:62:58:1b:fa:97:7a:db:80:6a:b3:28:18:fe:
af:c0:b2:8b:aa:e6:71:8e:21:9d:19:af:65:2c:5e:
14:93:b3:a4:bb:74:d0:13:3e:45:60:1f:a7:d8:53:
90:34:1f:d0:7a:14:81:8e:e0:d0:db:3b:25:85:be:
49:6b:64:5a:00:ae:33:8c:b1:33:e9:17:80:1d:f6:
ee:f9:13:5a:fd:0d:40:b7:a2:c6:1c:5c:21:5e:8a:
9f:e5:60:50:c8:e6:e8:2f:db:8f:29:74:32:d1:06:
7e:b8:cc:b0:11:51:c9:79:30:a6:65:52:61:9b:d6:
94:93:d7:e3:29:41:be:00:72:77:cb:9a:1c:9c:75:
93:1d:3b:d7:61:a7:99:fc:74:0c:2f:8d:ba:f0:37:
b0:c2:8c:82:ab:4a:84:42:a3:97:37:86:c9:e0:06:
de:72:c9:0f:69:06:4b:64:6b:fb:16:7e:64:72:40:
d4:42:71:b2:9a:c1:df:7c:06:f0:57:c9:bb:1a:7c:
a4:da:75:43:6b:b1:99:84:e5:c0:34:d4:19:01:f9:
fc:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:29:93:81:FC:FE:20:71:4E:C8:3F:09:41:8D:AE:EC:2C:28:A2:25
X509v3 Authority Key Identifier:
keyid:9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:86:aa:c2:ad:d6:55:32:07:bb:91:5a:97:24:b4:13:36:f8:
63:6b:5b:50:98:d0:c4:2d:1d:d2:6e:02:14:0d:9a:b3:64:b9:
ec:2c:51:f2:f8:a6:6e:12:82:d4:58:c5:8b:c3:98:45:4b:74:
d2:18:0b:e7:82:f2:b0:5f:dc:44:5b:c9:8c:9c:a3:01:26:e7:
36:b2:b7:9c:0c:9c:d8:2d:a9:ce:d3:21:d6:18:54:68:39:74:
e0:65:4a:1c:f9:4e:d0:7c:b5:dc:6a:c6:e2:b6:71:af:4a:92:
9a:72:62:42:b7:4f:16:0b:bc:bc:56:81:0a:5d:d4:b8:27:45:
29:ed:e4:c0:e0:a4:23:ed:68:1d:eb:bd:61:c5:f1:4a:d2:5b:
b8:37:55:a3:e9:7b:e2:73:bf:df:c9:8a:35:e2:57:97:9a:f6:
3d:9a:0f:74:46:15:b3:d5:5c:49:d6:eb:5d:cd:0f:5b:f3:46:
bb:fd:56:ac:00:62:41:2d:7a:ee:f9:d2:47:a6:77:5e:2a:b3:
05:ba:5a:e5:62:63:97:b8:9b:5a:c2:d4:a0:ea:02:5a:86:a0:
2b:f3:83:91:eb:9a:94:5c:45:2d:9d:38:52:8b:0e:8d:d6:27:
7f:c4:80:e6:95:70:53:10:ec:d5:72:ee:3b:e3:de:2b:55:25:
f2:5c:2c:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 20:07:49 2025 by rpki-client