Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
File: nTHCM8vSZtsCYgud65DQjkFpLmc.mft (raw, json)
Hash identifier: FzxcHyL3Ls0dreG4lns8RZvKtITzoVTDnTDwFa9y/Zo=
Subject key identifier: 72:32:78:FA:6B:50:67:6F:4D:C2:3C:E6:AC:58:5F:42:4F:81:AD:F5
Authority key identifier: 9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
Certificate issuer: /CN=9d31c233cbd266db02620b9deb90d08e41692e67
Certificate serial: 0197B88F561F13E6E3C98ED68EB168F7E48B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
Manifest number: 0C96
Signing time: Sat 28 Jun 2025 22:01:30 +0000
Manifest this update: Sat 28 Jun 2025 22:01:30 +0000
Manifest next update: Sun 29 Jun 2025 22:01:30 +0000
Files and hashes: 1: _rMAcV1Zh6HxKo_vwEpVhjFVwy8.roa (hash: r1imevw1h8qWVS0OoTwBJnDWSm49xN9+9T+LLaWUqWk=)
2: nTHCM8vSZtsCYgud65DQjkFpLmc.crl (hash: bFOrxcRlDBZ4mK9o0NrrTD1k3wdoGU191RsIBFDAg8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:56:1f:13:e6:e3:c9:8e:d6:8e:b1:68:f7:e4:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d31c233cbd266db02620b9deb90d08e41692e67
Validity
Not Before: Jun 28 22:01:30 2025 GMT
Not After : Jun 29 22:01:30 2025 GMT
Subject: CN=723278fa6b50676f4dc23ce6ac585f424f81adf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:bc:54:0c:5c:35:2a:df:16:6c:84:36:54:ca:
36:78:da:0b:ab:97:4d:a0:a5:8e:22:8e:5b:a3:f8:
37:4e:4c:32:ac:70:4f:0b:ef:b1:97:4b:4d:61:e2:
ef:b2:04:a4:ba:a3:b6:7d:fd:fc:89:2b:fd:00:f2:
92:0d:bb:ab:61:21:24:17:29:49:3b:af:bb:15:90:
a0:da:8f:0d:7b:9e:57:ee:83:49:9c:fa:85:b9:20:
2d:e7:ee:12:4d:a0:88:8f:42:ef:e9:44:f4:ce:60:
d5:c8:2c:35:17:f7:2d:83:55:f2:55:d9:47:58:55:
d3:43:c6:58:96:88:13:07:18:6b:e5:83:58:f9:b3:
5a:46:0b:b4:67:5c:c9:42:29:7d:4c:17:40:c8:d5:
11:54:af:ad:c7:8f:c3:0d:11:47:36:70:75:ae:f0:
b3:6a:5e:8d:c6:42:22:99:00:61:8c:63:1e:e6:6f:
fb:ad:b6:d6:a7:44:42:06:7a:01:09:97:48:49:63:
e8:74:76:3b:2c:e3:e0:c0:98:73:bd:c7:67:b3:69:
05:24:fe:a5:5c:c3:ab:26:a6:6f:93:7f:fe:dc:b2:
73:88:7f:bf:f2:81:7d:b0:96:5c:3b:52:3f:e1:e5:
ea:67:d6:4c:37:17:6f:57:45:e6:ab:ec:e2:f3:c1:
83:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:32:78:FA:6B:50:67:6F:4D:C2:3C:E6:AC:58:5F:42:4F:81:AD:F5
X509v3 Authority Key Identifier:
keyid:9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:68:1e:07:de:6f:bb:28:25:50:dc:a7:78:cf:61:13:9a:da:
ac:0d:ad:a1:5f:1d:ca:5e:91:8b:32:e5:1a:9c:aa:e6:f8:a3:
fd:f9:df:d1:6d:5b:9d:95:a5:c3:84:57:40:c3:29:df:9d:d9:
f4:f3:9b:5b:ec:e1:5e:86:28:6f:3b:c5:81:61:de:ed:77:91:
fe:28:d2:fb:c6:cf:e7:68:81:73:5c:92:df:ce:4d:fa:1a:23:
67:4e:b6:c3:6a:7b:da:d6:d5:68:db:36:27:ff:c7:92:10:03:
a7:72:f5:e5:f7:63:56:b4:27:6b:c4:ff:71:1a:fe:22:2a:62:
23:ab:3f:18:1d:3f:bf:f5:2e:36:d0:e6:86:68:f7:23:32:45:
34:40:18:e0:dc:c2:db:b0:95:f8:bd:6f:87:25:04:bf:12:c1:
47:13:90:50:d7:b4:12:d6:23:e1:bb:b6:ba:57:d4:bc:76:24:
be:9a:6e:56:75:75:63:ff:29:11:46:84:c1:ab:66:ad:10:95:
32:cf:23:0f:49:94:fa:30:44:1e:cc:5b:bf:c1:49:ea:a9:3c:
6d:99:e7:20:6d:4c:1f:4c:31:84:49:4b:2b:65:f1:68:73:33:
2f:15:a3:ad:fd:b2:e6:01:00:dd:07:dc:44:7f:a8:2a:7b:96:
1f:2b:d6:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:27:37 2025 by rpki-client