Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
File: nEswhmFPR4OKPoCj5uBR09imkvk.mft (raw, json)
Hash identifier: txG0Z8CWSY1NpCyh3mxj0pri0jsQF733gkN+I3M8OIg=
Subject key identifier: 81:8C:10:52:4B:8A:70:CB:72:4A:2C:AB:78:52:75:BE:D2:F1:C7:84
Authority key identifier: 9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
Certificate issuer: /CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Certificate serial: 0197B6A0424DFFEBC00059B9F1E743AB5567
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
Manifest number: 0601
Signing time: Sat 28 Jun 2025 13:00:45 +0000
Manifest this update: Sat 28 Jun 2025 13:00:45 +0000
Manifest next update: Sun 29 Jun 2025 13:00:45 +0000
Files and hashes: 1: a_Q0Oj2hhJ8gyCrgqERD5VjhULo.roa (hash: ix5ZmIac7PSSZ8cbH+U6PyHdhcxmOIX450xPjZ8S6o0=)
2: nEswhmFPR4OKPoCj5uBR09imkvk.crl (hash: 8N9qpGTT9qXghb7HppMMdUiki7EmYkQAaGzS7Tw5SeQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:42:4d:ff:eb:c0:00:59:b9:f1:e7:43:ab:55:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Validity
Not Before: Jun 28 13:00:45 2025 GMT
Not After : Jun 29 13:00:45 2025 GMT
Subject: CN=818c10524b8a70cb724a2cab785275bed2f1c784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a9:73:46:90:8a:d9:08:1f:6c:31:46:dd:55:
44:f6:fc:44:2a:11:73:1b:46:a6:fb:a6:aa:b7:99:
cc:6b:31:6e:a4:86:cf:af:ed:e3:f9:4b:fd:3b:a8:
8b:09:68:57:81:70:72:34:1b:4c:ce:b7:a6:27:de:
eb:b6:5d:a4:b9:31:54:df:a5:bc:3b:06:57:14:92:
00:45:22:f9:b4:70:1c:13:4a:27:65:0e:44:86:d7:
c1:e1:f2:71:a8:a4:02:5e:09:01:6a:b4:01:3f:7b:
80:d7:80:5d:46:06:43:98:24:d6:84:5f:1b:af:f2:
e3:40:99:cd:ae:aa:24:00:39:97:2d:ed:1c:bc:fb:
35:aa:3e:e7:ef:66:8d:a6:15:73:89:b9:1e:ae:5f:
b5:77:30:8a:3a:5b:15:f5:d6:e3:97:e2:76:5f:67:
85:74:0d:6b:79:e2:24:ce:81:53:3f:7d:8e:c7:3b:
fd:61:63:31:b1:b4:b5:9b:68:d2:7c:c3:d2:67:e6:
ec:ac:ef:92:ba:58:45:fe:04:4d:99:b1:1c:07:9c:
eb:46:b2:d0:a7:ba:1f:89:f4:cb:b8:b6:88:5a:3c:
eb:47:ad:d5:97:8d:d9:bb:26:c7:71:15:43:cd:7f:
80:5b:d8:86:5a:64:b2:22:57:b6:27:b1:d7:90:b4:
ba:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:8C:10:52:4B:8A:70:CB:72:4A:2C:AB:78:52:75:BE:D2:F1:C7:84
X509v3 Authority Key Identifier:
keyid:9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:94:65:c7:2a:c5:82:13:cd:c5:7d:f7:e5:80:fe:fb:33:a7:
62:75:bc:9c:d1:17:1f:e8:14:2e:25:90:29:e5:e2:e6:73:63:
c7:58:09:a1:f1:01:b9:aa:f2:3e:96:ed:d3:b4:50:b4:ca:41:
2f:d2:06:03:5a:90:9c:08:1d:4f:3a:c8:71:af:3e:51:a1:2a:
fc:e9:d2:4e:01:84:d8:58:cd:a9:cc:64:36:4f:c9:15:0d:e5:
ea:b6:b9:ce:3f:a4:61:24:ea:5e:74:83:6d:80:af:b7:28:96:
21:e9:67:5f:e9:43:cd:cc:5c:b1:b9:4b:88:78:79:bd:aa:f8:
b6:21:d0:44:b5:8c:4b:27:81:37:56:bd:c3:69:c7:77:73:ac:
6b:f8:4c:d3:3c:fd:33:be:96:c3:f8:dd:b3:9b:77:8a:fd:6f:
00:6e:c1:16:28:c9:f5:a2:1f:03:6e:97:09:2b:b5:17:28:c5:
6c:e6:27:f2:a2:59:ca:9c:3a:ee:80:52:9a:a5:8c:4b:52:22:
eb:0d:e8:30:60:43:5a:ba:f7:3f:ec:bd:73:ee:af:bf:54:57:
7b:0b:af:ed:10:a8:95:ac:59:4f:ef:f0:ee:ed:d2:75:30:a0:
c4:95:57:8b:09:b5:37:94:ae:1b:a3:ec:4f:48:28:bb:b8:c9:
c5:ae:6f:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:55:44 2025 by rpki-client