Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
File: nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft (raw, json)
Hash identifier: aZvPmECfkQZQGkaE/Vtgb5p2f7VnvJeipPfv3JtksCA=
Subject key identifier: 59:DE:D1:A8:17:B7:52:33:B4:D7:FA:1E:1B:A3:90:D0:20:2D:22:E5
Authority key identifier: 9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
Certificate issuer: /CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Certificate serial: 0197B70F2F8004EF33A2E56B2AE54FB70BA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 15:01:55 +0000
Manifest this update: Sat 28 Jun 2025 15:01:55 +0000
Manifest next update: Sun 29 Jun 2025 15:01:55 +0000
Files and hashes: 1: CPqSq0ytAxDio98lkjeb_dYwRZ4.roa (hash: DBQ2P8ThG/7CNm8RF8WiO7psAqOGJ9hYf3OIiBNBEtw=)
2: nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl (hash: WsZ/UEGKM77ndPiY2hGabEA7E5RUVy6d58UUq7wX4Os=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:2f:80:04:ef:33:a2:e5:6b:2a:e5:4f:b7:0b:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Validity
Not Before: Jun 28 15:01:55 2025 GMT
Not After : Jun 29 15:01:55 2025 GMT
Subject: CN=59ded1a817b75233b4d7fa1e1ba390d0202d22e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:7e:fe:e6:2d:27:7a:6e:60:a2:62:5c:71:73:
93:73:a4:55:d7:e6:eb:68:9c:18:08:df:b1:d5:a3:
00:7a:46:89:cd:75:aa:24:bd:f9:26:c7:9e:dd:40:
75:54:fd:12:0d:73:df:c0:1d:ed:40:cf:46:4a:bc:
15:83:9f:83:2e:84:10:f9:b0:a4:3e:db:95:f6:d9:
ce:51:3a:fa:af:f6:06:d2:59:8d:7d:4e:21:4d:dc:
1b:aa:fc:a6:25:f6:51:12:3e:9e:35:fb:d6:02:56:
df:9c:6b:5c:be:41:65:6e:78:85:bd:39:24:d7:4f:
7e:d8:73:df:38:2a:05:af:35:df:2f:9d:e6:cd:09:
75:20:8a:bf:43:14:f2:5b:97:40:07:51:63:70:57:
65:34:1b:06:29:a7:9b:c1:9b:b8:42:4f:13:62:81:
bd:34:e6:83:8d:6a:d3:14:8e:56:44:43:43:82:27:
10:9b:a8:c4:24:f4:0f:34:34:be:d5:36:39:d5:49:
7e:dc:18:5d:3e:ea:ed:6a:db:e1:6f:0a:c7:58:93:
b3:62:16:8c:85:4d:ff:c8:3a:d9:b6:95:14:90:d4:
be:13:0b:3d:9d:10:f4:33:c0:af:d6:a5:12:4e:b7:
f2:f7:b5:21:7c:6a:36:c9:19:49:a2:df:6b:c5:80:
b6:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:DE:D1:A8:17:B7:52:33:B4:D7:FA:1E:1B:A3:90:D0:20:2D:22:E5
X509v3 Authority Key Identifier:
keyid:9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:37:51:91:11:c4:90:6b:6f:a2:e0:bf:28:4c:3c:4e:0d:1e:
8c:8a:a5:37:fb:20:46:aa:bd:13:40:a6:92:99:54:bf:10:76:
c7:24:55:b9:83:b9:94:df:43:45:15:b3:d7:e4:79:04:50:d6:
86:74:b2:81:bc:f6:a9:b8:75:fd:74:c6:f3:74:c7:a7:d4:fa:
81:d6:70:95:db:8b:71:c4:11:75:78:83:aa:e0:83:0f:15:0b:
4c:dd:ac:31:ef:e6:df:0f:46:4b:e8:e4:7e:9d:8c:a3:d9:78:
a7:5c:5b:63:0d:48:9e:4e:6e:68:36:76:a2:7a:80:86:55:7f:
e5:39:5e:33:59:7b:df:69:81:6b:3c:88:ba:95:4f:bc:03:ef:
5f:9b:0a:bb:2d:f6:a7:34:39:a1:3e:e2:40:54:ae:4c:10:27:
23:f9:a5:6e:74:2b:93:35:25:4f:ce:9b:76:12:3a:79:9d:88:
69:cf:d0:9c:e8:9c:e4:b7:11:87:96:c5:00:81:5e:fd:27:50:
90:06:23:55:3f:93:d3:36:c0:c2:f4:f4:1c:c7:0a:ab:26:8f:
70:67:ba:80:83:5e:ba:8d:4b:7f:67:21:3e:d5:a7:d3:e5:65:
58:82:80:69:1c:9a:c6:a6:d8:0e:ff:6c:e5:cb:5a:bb:cb:81:
a0:7a:4b:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:02:02 2025 by rpki-client