Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
File: NVyaW8uDQBCKQchiduHLlKYefak.mft (raw, json)
Hash identifier: GVky/Ai9xIfM9PPG6XnzYESH+qyuTsM1uLO9GLkcqPg=
Subject key identifier: 51:AF:09:B6:AC:33:C8:65:2D:4B:DD:B9:A0:C8:96:F3:82:2C:92:90
Authority key identifier: 35:5C:9A:5B:CB:83:40:10:8A:41:C8:62:76:E1:CB:94:A6:1E:7D:A9
Certificate issuer: /CN=355c9a5bcb8340108a41c86276e1cb94a61e7da9
Certificate serial: 0197C6B8BB060C649E95E70A73C93006DA43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
Manifest number: 0E56
Signing time: Tue 01 Jul 2025 16:01:24 +0000
Manifest this update: Tue 01 Jul 2025 16:01:24 +0000
Manifest next update: Wed 02 Jul 2025 16:01:24 +0000
Files and hashes: 1: 5KKpk9qEveM_ucLAOYR8lDjQsvs.roa (hash: FsEABHDgSk6DaTySsepeca9yMLpdy1J0E11YMBOaZ9k=)
2: NVyaW8uDQBCKQchiduHLlKYefak.crl (hash: 2A4vLcpQvRf9tHx3acKwRVNmX6I/rR70bNVEp0W+vrY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 16:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:b8:bb:06:0c:64:9e:95:e7:0a:73:c9:30:06:da:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=355c9a5bcb8340108a41c86276e1cb94a61e7da9
Validity
Not Before: Jul 1 16:01:24 2025 GMT
Not After : Jul 2 16:01:24 2025 GMT
Subject: CN=51af09b6ac33c8652d4bddb9a0c896f3822c9290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:57:22:71:a0:8d:1d:2e:48:b8:e6:53:60:f8:
97:79:67:23:5f:db:47:67:36:1d:2a:e1:fa:95:9c:
51:76:7b:3f:8c:d2:55:c6:07:80:a5:86:7e:d3:5c:
68:80:03:9a:8e:a7:eb:39:51:61:1c:27:1f:67:e9:
36:3d:2d:d2:58:db:4d:00:7c:72:ca:23:75:3a:32:
ba:97:28:b7:cc:c8:5d:d1:95:35:0c:4e:02:b0:29:
2f:34:88:fc:cc:12:91:74:ed:2c:0f:de:39:4c:64:
46:f9:1f:b6:93:a0:1e:3e:e5:d6:6b:52:a9:b1:d7:
b3:47:d1:2f:df:9f:eb:2d:1c:9c:36:5c:db:ce:be:
0b:bd:99:8a:04:bb:52:84:e9:77:84:50:8b:7a:75:
cc:16:22:ed:bd:0e:cf:83:af:b9:cb:2e:c2:06:97:
bd:e2:3a:7c:96:c3:29:80:82:e3:25:d4:2e:04:5a:
4c:77:0f:a3:ca:49:6c:3c:a7:9a:98:81:87:ff:b6:
f9:23:1c:c6:1e:b7:5b:5d:9e:79:15:ac:db:ef:0b:
08:e2:40:ca:74:05:e8:5d:eb:d3:d5:51:1c:d6:c9:
cd:56:a7:bb:f9:8c:92:11:39:36:19:e7:55:bd:c5:
46:b8:61:2f:e3:1e:28:0e:3a:04:b6:41:ec:ee:7c:
56:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:AF:09:B6:AC:33:C8:65:2D:4B:DD:B9:A0:C8:96:F3:82:2C:92:90
X509v3 Authority Key Identifier:
keyid:35:5C:9A:5B:CB:83:40:10:8A:41:C8:62:76:E1:CB:94:A6:1E:7D:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:49:5d:75:99:77:6e:75:90:d4:de:e9:36:df:22:04:b3:25:
98:bf:f6:40:bc:00:f4:9a:fc:b1:6a:e1:95:4b:88:f3:c4:1f:
34:0d:07:aa:bc:22:c6:fb:e2:36:c0:8f:44:6b:75:d5:f1:24:
52:f0:86:38:f1:d3:a1:0c:4b:33:c0:97:c1:4c:af:5f:c4:56:
3e:03:97:45:d8:37:3d:e2:7f:42:97:50:4d:2c:95:a7:36:da:
68:2b:ae:8a:db:f1:91:63:82:3d:0c:9c:4e:5c:4f:0d:42:97:
61:09:e7:aa:16:55:00:3e:27:04:ed:c6:53:1a:9d:3e:00:54:
90:29:fa:d9:02:2e:68:cb:5e:a3:c2:61:23:dc:41:95:27:32:
62:71:85:c7:c7:0b:8b:ee:b9:fa:51:74:a6:31:95:ce:26:a0:
46:fe:57:e6:7a:da:07:a4:2a:bf:77:ff:3c:e3:06:f7:6f:8d:
e1:56:7b:9d:e9:1a:ba:f6:34:87:37:e3:b7:7b:e7:89:97:24:
5a:71:59:a7:28:e8:d7:04:4e:45:bc:fb:97:ed:2f:ee:35:da:
40:38:6d:5b:a4:0f:28:41:e7:a0:a2:11:f9:7a:5f:54:8c:92:
6b:ca:e2:13:99:65:ae:6a:3b:cd:ac:65:c0:fc:f2:8c:52:53:
69:08:0f:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 20:03:46 2025 by rpki-client