Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
File: Nia55ERl8L1xPAoeBQED05EdzWc.mft (raw, json)
Hash identifier: abCePej1WZbRIJR8AFgEQFzLvBaby8OpKcXObYAEq6E=
Subject key identifier: EB:C9:E3:08:97:51:B6:E9:59:AC:F9:C8:2A:B7:1F:A2:FF:3F:DC:A9
Authority key identifier: 36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
Certificate issuer: /CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Certificate serial: 0197BA7E452AE406098C35C208224DE6B9C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
Manifest number: 0B9C
Signing time: Sun 29 Jun 2025 07:02:06 +0000
Manifest this update: Sun 29 Jun 2025 07:02:06 +0000
Manifest next update: Mon 30 Jun 2025 07:02:06 +0000
Files and hashes: 1: Nia55ERl8L1xPAoeBQED05EdzWc.crl (hash: XrszugPRqXjWk1BplqHlWP/ljREhAslcLG2+6wHq16k=)
2: ijM-M3pW5i9OPaVJ9z7pdR0nkfo.roa (hash: BaCHQlpNW/709AUvEnmAV++DQu/RFZCpGAAySqc5kGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7e:45:2a:e4:06:09:8c:35:c2:08:22:4d:e6:b9:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Validity
Not Before: Jun 29 07:02:06 2025 GMT
Not After : Jun 30 07:02:06 2025 GMT
Subject: CN=ebc9e3089751b6e959acf9c82ab71fa2ff3fdca9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b2:45:03:77:9b:ba:7a:c1:30:e4:d0:6e:ef:
1f:ff:72:3d:dd:12:8a:d1:66:f9:bb:74:17:f3:dc:
1e:e3:90:11:77:db:2a:a4:cd:e0:7c:65:d1:7d:c6:
a2:44:1b:fc:6c:f6:57:7c:d9:25:e4:52:eb:d7:60:
fd:19:91:34:73:97:b3:45:7c:0e:19:01:52:fa:07:
a5:7e:d2:b6:c1:08:83:7b:11:5f:03:96:42:cb:98:
54:7e:9d:50:28:d5:2d:28:79:42:6b:34:de:ed:8b:
32:ae:5f:b1:9d:5a:d1:e7:91:71:24:6f:77:86:9d:
b2:59:02:ef:ac:c7:c8:25:ee:9e:09:3f:36:4f:36:
24:f7:56:bf:a5:f8:44:59:12:55:e6:38:a4:3b:ef:
9f:8b:24:f8:43:28:dd:c1:2f:5e:0f:bf:29:b5:f9:
fe:9c:a8:b1:17:c6:27:72:05:a8:aa:b7:cf:b8:24:
a3:0c:d1:66:5f:04:99:bf:cd:86:f1:d5:7e:9d:89:
42:45:f9:a4:80:97:7e:f0:93:e3:7a:df:88:64:b1:
de:7c:cc:6a:ad:b6:13:9c:f4:c2:ea:5f:00:8e:9e:
6b:3a:e8:ec:f6:f4:0f:4c:13:e4:87:b8:1a:53:97:
88:a8:df:c1:aa:d1:6c:61:ba:5e:a8:e9:72:a9:bd:
bf:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:C9:E3:08:97:51:B6:E9:59:AC:F9:C8:2A:B7:1F:A2:FF:3F:DC:A9
X509v3 Authority Key Identifier:
keyid:36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:fd:3e:43:af:53:ab:c2:2d:8b:35:8b:f5:01:39:ea:c0:ea:
d8:bc:58:3e:a0:f3:ce:33:8c:88:e8:db:e8:e9:88:88:03:69:
9e:02:65:11:49:ed:94:66:a7:d9:2b:70:59:ff:d7:d3:fc:42:
d5:d5:fb:34:6d:d7:37:22:ef:38:00:89:88:c2:e8:6b:0d:3e:
df:41:ee:9a:7c:3a:03:80:a7:19:78:ae:cc:8d:02:b5:1e:72:
fc:2f:f5:08:c9:ec:bd:b9:f7:0e:59:71:67:65:a5:95:80:45:
cb:3c:71:f2:6d:54:70:c6:54:21:82:17:66:c6:1c:33:23:30:
9f:b1:03:a5:91:89:ba:0f:5d:bb:82:b9:71:48:b0:02:0b:79:
f2:27:e6:d8:ac:ae:9b:ab:8f:8f:f2:9c:95:3c:35:75:09:d4:
de:36:11:5a:37:c9:70:19:ac:88:b0:3b:b1:23:c9:f0:8d:e6:
92:78:60:53:75:83:90:26:c9:e0:84:27:1f:76:49:76:be:e4:
07:ac:3d:0c:8d:53:f6:ed:c9:cd:2e:4f:5b:bb:48:4e:0f:fb:
1c:54:7b:0c:8b:42:59:87:b4:a6:64:66:80:58:af:62:23:7a:
8f:86:87:24:d0:9a:2d:46:8e:5e:f7:85:b5:7d:8e:60:d2:16:
bd:9b:18:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 14:40:57 2025 by rpki-client