Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.mft
File: nQhzWjV9MfqK2jHinxlYam_9lZI.mft (raw, json)
Hash identifier: 519VT3vrwa3B5mZZVGhHYgLiP8owxYSfD8DU3jUybxE=
Subject key identifier: 87:52:D8:3D:D0:BA:16:BD:FD:29:75:A3:C8:4D:63:C1:F2:C7:D8:9A
Authority key identifier: 9D:08:73:5A:35:7D:31:FA:8A:DA:31:E2:9F:19:58:6A:6F:FD:95:92
Certificate issuer: /CN=9d08735a357d31fa8ada31e29f19586a6ffd9592
Certificate serial: 0197BA7D7C9DE7444130393134CE25F06C6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQhzWjV9MfqK2jHinxlYam_9lZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.mft
Manifest number: 0506
Signing time: Sun 29 Jun 2025 07:01:15 +0000
Manifest this update: Sun 29 Jun 2025 07:01:15 +0000
Manifest next update: Mon 30 Jun 2025 07:01:15 +0000
Files and hashes: 1: nQhzWjV9MfqK2jHinxlYam_9lZI.crl (hash: 8ssN8pMfB0h5EX9v187fzNPG0HO9v5oOCorsz320vBQ=)
2: zCy2TEUINZmipMaXJF_ZJiCXKXs.roa (hash: kFNybXZv7aLQUvfMaX6TQe+E+VLOfa/7bi5eq9XGzik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/nQhzWjV9MfqK2jHinxlYam_9lZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7d:7c:9d:e7:44:41:30:39:31:34:ce:25:f0:6c:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d08735a357d31fa8ada31e29f19586a6ffd9592
Validity
Not Before: Jun 29 07:01:15 2025 GMT
Not After : Jun 30 07:01:15 2025 GMT
Subject: CN=8752d83dd0ba16bdfd2975a3c84d63c1f2c7d89a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d2:7d:2b:3b:c6:8f:7a:86:96:c5:ea:1f:57:
bb:27:25:38:ed:63:1d:60:30:07:e0:13:c1:fd:65:
ea:5d:3c:c2:de:ad:b1:60:d3:ff:48:a6:2c:fc:e9:
13:f9:25:17:1b:5e:a3:68:99:71:78:d6:83:9d:3b:
78:a1:91:43:67:bb:78:b0:51:db:ef:c6:fa:ef:e7:
9b:27:cd:22:97:67:8e:2b:25:7c:81:0a:b1:02:33:
98:1c:67:68:5e:95:f5:f8:7c:46:f0:07:6a:6b:16:
4c:01:ce:f2:e3:59:87:ca:76:de:55:87:97:5f:76:
ab:a2:e0:69:6d:d2:47:f9:fa:b1:8a:b2:bb:ce:76:
92:1a:54:cd:2f:e5:86:ea:25:66:15:a5:b5:22:81:
cb:16:3a:1c:91:04:62:a5:ba:9e:d4:9e:92:0f:67:
3e:29:3d:93:8b:0d:98:1b:65:b6:0f:75:56:d2:17:
db:e5:41:a9:ed:bd:6b:07:a7:60:c4:b5:ff:bc:e1:
59:fe:36:df:70:d8:78:2f:d6:45:20:d0:9b:9a:a3:
11:85:2c:f8:05:38:6b:9a:2c:0b:e5:38:a5:e9:94:
47:db:e5:ac:2f:7a:8e:de:a1:cc:da:6b:f8:51:c2:
4a:40:cc:23:2a:00:50:65:aa:a0:ce:fb:28:ae:9b:
bf:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:52:D8:3D:D0:BA:16:BD:FD:29:75:A3:C8:4D:63:C1:F2:C7:D8:9A
X509v3 Authority Key Identifier:
keyid:9D:08:73:5A:35:7D:31:FA:8A:DA:31:E2:9F:19:58:6A:6F:FD:95:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQhzWjV9MfqK2jHinxlYam_9lZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:67:bc:9a:a5:ff:03:c1:c1:24:91:07:d9:06:56:94:8c:0f:
1a:08:45:95:fc:da:93:75:9e:49:31:fd:d4:41:a6:fa:0e:d0:
8c:77:a6:5c:50:b6:3a:d9:41:36:31:52:82:e6:77:44:a4:df:
9c:25:92:2b:6b:75:c5:df:f5:f0:01:5f:5b:e2:17:5e:44:8b:
bb:ee:2d:77:ec:c2:f2:03:68:f8:aa:32:27:b2:6d:c4:bf:19:
98:ee:03:02:94:f1:3b:f3:06:30:df:80:bf:78:f6:e4:73:8e:
ec:9d:43:d1:23:66:ca:8f:c8:3c:7f:66:88:66:c0:10:2f:bc:
3f:ab:99:0f:e9:d1:28:3c:60:0d:42:78:1d:3f:e9:25:d4:b6:
57:81:cc:c0:3a:32:92:c4:2a:df:1c:c9:00:84:71:e1:9b:0c:
c2:fe:c4:00:34:11:54:7e:1e:8c:f6:ff:bf:c6:1c:fc:05:b0:
5a:43:65:3f:b7:43:83:28:73:df:71:87:04:d2:b1:10:5c:2e:
6c:33:65:d3:f4:0d:21:ab:83:b6:b7:e9:9c:08:6f:bb:75:c2:
8d:5b:ad:d7:db:5d:ff:a0:c4:85:67:19:d1:16:5e:e2:d4:17:
f6:a0:c4:34:3d:1f:92:72:c9:4c:bb:e8:d3:6f:a6:b0:2c:93:
1c:ef:fc:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:57:36 2025 by rpki-client