Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
File: nlf4Q7F__OqpuGNlgf5NVONG3cw.mft (raw, json)
Hash identifier: PgSkUcyuOh+Sp0gzf9bmQ6IDObRbEy6+qYizmcGpTVI=
Subject key identifier: 97:B8:51:42:5B:2D:05:C5:AC:B9:16:C5:77:1F:9C:22:3D:C8:24:0B
Authority key identifier: 9E:57:F8:43:B1:7F:FC:EA:A9:B8:63:65:81:FE:4D:54:E3:46:DD:CC
Certificate issuer: /CN=9e57f843b17ffceaa9b8636581fe4d54e346ddcc
Certificate serial: 0196C683793C89DB86B21FE2FCCB31D34FD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
Manifest number: 0B8D
Signing time: Mon 12 May 2025 22:00:27 +0000
Manifest this update: Mon 12 May 2025 22:00:27 +0000
Manifest next update: Tue 13 May 2025 22:00:27 +0000
Files and hashes: 1: IFXNgHuEN8ycsfhuA4dEpX7GYeY.roa (hash: 0NAgcHKOW4VLEuD8zIQn9OzSwjmjjTPr1tkjSBELdjk=)
2: nlf4Q7F__OqpuGNlgf5NVONG3cw.crl (hash: EMZDgSdNcEBABX+DOLdiyEFnQZt0rAI2KmeHzRZ+78c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 22:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:83:79:3c:89:db:86:b2:1f:e2:fc:cb:31:d3:4f:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e57f843b17ffceaa9b8636581fe4d54e346ddcc
Validity
Not Before: May 12 22:00:27 2025 GMT
Not After : May 13 22:00:27 2025 GMT
Subject: CN=97b851425b2d05c5acb916c5771f9c223dc8240b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:15:1e:84:d6:43:68:89:4c:75:6c:88:2d:16:
2c:68:04:68:c0:99:96:ca:d7:02:1d:fe:4b:46:72:
d9:ae:de:bc:7d:bd:3a:b6:61:9e:17:f0:8e:0e:4c:
af:b5:d9:10:71:83:ad:da:c7:90:eb:05:7d:de:ca:
fc:10:aa:df:6a:8e:9c:5a:09:f3:2c:f4:1b:ec:60:
e8:83:98:c5:e1:b5:0c:c1:14:6f:d6:8f:21:d8:33:
a7:00:1a:c8:9e:76:07:0c:3a:a4:a3:01:36:4d:df:
ac:9e:5a:eb:82:6a:bb:10:e0:65:ca:fe:c7:b4:11:
9b:e5:e0:8b:f6:f8:30:21:03:96:02:81:8d:bc:c3:
40:e1:50:86:9a:56:68:b0:b8:5f:be:8c:5a:4d:31:
56:1c:33:2d:99:f9:4d:de:bb:b3:06:ca:43:2c:d0:
3c:61:11:c0:57:1b:00:24:b9:b8:77:2c:b2:72:7b:
ef:7f:ae:b5:e7:b3:1c:a1:8d:db:7c:71:df:c2:78:
6d:e4:24:d2:e0:1e:2e:d0:26:96:ec:7d:a9:f5:3c:
4c:46:f3:36:0d:9b:b8:12:27:ce:94:70:a1:e8:aa:
db:7a:af:68:2a:ad:05:92:8a:21:b1:ca:2c:93:2c:
7b:07:6d:d8:45:79:f9:42:3b:df:dc:31:5a:80:d8:
7d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:B8:51:42:5B:2D:05:C5:AC:B9:16:C5:77:1F:9C:22:3D:C8:24:0B
X509v3 Authority Key Identifier:
keyid:9E:57:F8:43:B1:7F:FC:EA:A9:B8:63:65:81:FE:4D:54:E3:46:DD:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:22:da:e9:d3:63:4c:61:50:de:72:11:19:60:db:42:d5:4e:
6b:dd:bb:9e:a5:fa:f8:41:6f:93:82:df:c2:f7:40:77:0c:62:
78:c8:57:d7:3d:0c:8e:45:ee:2d:72:6e:80:e1:31:ac:4a:36:
42:c9:02:e6:7d:d9:4e:98:eb:d9:d9:cb:bd:41:ea:ca:7b:68:
36:d1:d7:0f:9a:55:e0:68:08:f5:df:b9:14:2a:12:83:46:71:
77:5c:a0:1b:33:c4:8b:0f:9c:aa:9a:bd:2c:0e:67:19:8c:f8:
50:b6:0a:95:23:74:0b:e4:3d:ef:bb:d0:f6:97:7e:0d:28:6e:
43:87:34:90:08:29:8b:8e:02:63:a1:24:85:99:ee:8b:61:20:
29:9c:97:39:98:dc:2a:13:d4:b0:45:76:8f:48:ad:87:f9:7c:
a0:72:bd:bc:d3:bd:e5:81:16:98:ed:a6:b7:e4:e7:64:b8:fc:
aa:c5:c5:d8:d3:b5:ba:f7:7f:83:40:e1:c4:75:c9:d3:60:cd:
44:a0:ec:93:97:ee:49:b8:3e:b2:4f:45:33:dc:ec:ad:ba:a0:
f6:e1:da:4e:3c:2a:69:f1:98:7c:20:6b:0b:f2:3a:be:34:42:
fe:c3:2f:0b:84:eb:95:7f:cf:41:81:1b:ca:fb:71:26:17:02:
fa:5d:e1:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 08:20:12 2025 by rpki-client