Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
File: nAMai2oolAx5NrpueCuUoJYr-yc.mft (raw, json)
Hash identifier: 9epcrtn4DdAgl1f6VS3NRIe++r6c1TQY9j2gkQWqXYM=
Subject key identifier: C5:CF:21:CF:72:FA:93:CF:98:74:3A:E9:25:C9:BA:DE:83:AF:66:18
Authority key identifier: 9C:03:1A:8B:6A:28:94:0C:79:36:BA:6E:78:2B:94:A0:96:2B:FB:27
Certificate issuer: /CN=9c031a8b6a28940c7936ba6e782b94a0962bfb27
Certificate serial: 0197B6A0EB94D819A560E84FBE86A6E59BD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
Manifest number: 0344
Signing time: Sat 28 Jun 2025 13:01:28 +0000
Manifest this update: Sat 28 Jun 2025 13:01:28 +0000
Manifest next update: Sun 29 Jun 2025 13:01:28 +0000
Files and hashes: 1: nAMai2oolAx5NrpueCuUoJYr-yc.crl (hash: q1uWiubXOVK7Xj7RDxEoB/YE3ve/sd9qZhv6gGd8X/w=)
2: sazfzVz6q9bIns0N5tJ_KIxOhyU.roa (hash: 7Dx7RnLHW4HsXUHgAbio+tOs+19yMbUTjmWX8tX1e1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:eb:94:d8:19:a5:60:e8:4f:be:86:a6:e5:9b:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c031a8b6a28940c7936ba6e782b94a0962bfb27
Validity
Not Before: Jun 28 13:01:28 2025 GMT
Not After : Jun 29 13:01:28 2025 GMT
Subject: CN=c5cf21cf72fa93cf98743ae925c9bade83af6618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:07:0b:e3:50:ad:74:a8:09:1c:bc:b5:d8:0f:
b3:ce:c3:5b:20:22:5f:ae:03:27:fe:b6:4d:76:68:
2b:93:6c:f0:fd:40:1e:43:24:d9:0c:3f:8e:50:53:
7e:fe:eb:26:a6:4c:79:4e:6d:a3:ed:6c:b5:51:9b:
2b:e6:1d:80:89:a9:65:31:2b:54:1b:7b:f5:57:4e:
b1:43:6b:72:99:9f:28:83:04:79:50:45:da:ee:47:
74:ec:a9:eb:93:7f:b2:56:7d:e2:4e:5f:f5:2e:62:
83:6c:a7:30:8e:c2:88:69:22:37:dc:7c:8d:b3:d9:
ad:88:80:59:bc:d9:2e:3f:a1:9a:29:07:89:f9:72:
5c:5b:cb:3f:29:f7:28:56:68:9a:ff:16:99:24:75:
0e:c8:5c:bd:d6:4b:67:90:19:9c:c0:df:6b:66:1b:
89:aa:1b:dc:0e:c6:39:be:30:2c:95:2e:ec:a6:f5:
50:a0:2a:60:93:56:c0:9c:0c:4d:26:cd:46:f7:3b:
e8:d5:29:87:e3:df:40:e9:80:ab:57:14:a8:6a:5e:
a8:47:18:9b:89:f4:fc:31:6c:0a:84:50:50:36:f7:
e7:8f:05:08:99:78:cb:a1:22:d8:7d:7e:ff:ff:23:
c5:99:19:3a:10:81:40:f2:d2:80:61:22:b4:1f:ac:
55:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:CF:21:CF:72:FA:93:CF:98:74:3A:E9:25:C9:BA:DE:83:AF:66:18
X509v3 Authority Key Identifier:
keyid:9C:03:1A:8B:6A:28:94:0C:79:36:BA:6E:78:2B:94:A0:96:2B:FB:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:bf:d2:3b:04:45:23:f9:d1:0c:da:32:c6:60:2c:1c:b6:c2:
0c:8c:42:4f:10:e6:70:70:0e:7b:27:96:34:8a:bb:59:3b:e9:
02:be:04:64:34:b9:76:e5:9a:d0:e8:79:2e:50:1f:9d:83:d8:
af:97:24:4f:7b:49:17:de:a8:38:d0:b3:69:1a:a6:ef:0a:00:
b1:e1:5e:09:84:e2:cb:b8:89:0e:4b:25:df:6d:a5:06:0c:6d:
bc:02:7c:73:6f:c0:8e:fd:9d:21:6d:d2:8e:5a:17:6b:e6:17:
b5:c5:27:d6:83:8c:9d:fa:fc:2c:f1:25:f6:b0:76:d7:a8:f7:
59:0e:ab:b1:eb:61:a6:9a:43:ac:e1:57:06:aa:88:59:21:d1:
3f:65:cc:7d:f9:78:c1:44:35:c2:24:9c:61:5e:58:08:33:ad:
43:5f:2b:be:41:60:fd:72:f7:2e:fb:65:9f:8a:08:84:ec:65:
28:93:16:e6:8b:cd:f5:d2:1b:fa:c2:87:42:fe:25:06:a9:31:
00:ad:2f:3b:06:9c:43:4d:0f:91:48:fd:f2:f0:58:5d:0c:0d:
b1:36:33:09:e8:f5:a5:26:b1:70:91:0c:3d:c9:79:fd:34:57:
ea:f3:bc:3f:37:62:e1:8b:bc:51:7e:da:a8:53:74:26:a2:8c:
e1:84:6b:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:57:47 2025 by rpki-client