Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
File: nxFouFcXoUZmABtbL2yQgBmX3gY.mft (raw, json)
Hash identifier: BHe4v5+v672Y82F7kRx1m4caSz5DywD1Lmp/68kFdtE=
Subject key identifier: E9:7B:82:75:48:89:DA:15:AC:FC:8E:87:FF:66:F2:00:30:0D:C6:F4
Authority key identifier: 9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06
Certificate issuer: /CN=9f1168b85717a14666001b5b2f6c90801997de06
Certificate serial: 0197B7EAB5708479EF280519B53587AC54F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
Manifest number: 0367
Signing time: Sat 28 Jun 2025 19:01:41 +0000
Manifest this update: Sat 28 Jun 2025 19:01:41 +0000
Manifest next update: Sun 29 Jun 2025 19:01:41 +0000
Files and hashes: 1: nxFouFcXoUZmABtbL2yQgBmX3gY.crl (hash: hAhZpFYqtsHLW1FIWVi1NBkQbTU/1YeVUIMo7v9Jg/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:b5:70:84:79:ef:28:05:19:b5:35:87:ac:54:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f1168b85717a14666001b5b2f6c90801997de06
Validity
Not Before: Jun 28 19:01:41 2025 GMT
Not After : Jun 29 19:01:41 2025 GMT
Subject: CN=e97b82754889da15acfc8e87ff66f200300dc6f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:92:8d:7c:2d:e0:ab:86:60:e8:da:2c:2e:9b:
bf:7d:f7:94:f2:38:39:ec:bf:f6:b3:04:c2:03:b9:
51:09:45:cd:ee:e8:9f:ff:94:1b:85:6d:2d:dc:d8:
0b:c8:c9:2f:3f:6c:c9:1a:50:28:21:4b:b7:a5:45:
a4:6e:f3:7d:bd:2f:26:66:3c:99:06:7d:7a:de:63:
62:8a:a1:52:4c:0c:4a:b6:d3:24:ed:28:d1:29:7b:
90:d5:f0:1d:ab:4f:bd:4b:3a:0c:b2:37:1b:4d:ec:
39:90:cd:2f:f5:62:2d:e7:20:e7:ad:79:bf:5f:f0:
c6:8e:84:d3:1e:3c:fa:c2:3e:61:a4:a9:2e:48:16:
be:fe:68:0a:d0:f1:25:dc:44:24:e5:2f:9a:6d:3b:
a2:7b:f9:a4:00:fd:f9:d3:b1:d6:64:bb:78:84:2f:
b8:46:ae:03:75:c9:7b:95:57:81:d5:a0:82:28:60:
9b:ab:28:b4:15:ce:a8:97:1c:8f:aa:bd:d2:5d:89:
10:41:21:80:c7:41:05:31:e0:49:d8:ce:3b:78:ce:
6b:30:2c:3f:9b:48:e7:78:0e:66:b6:28:7b:d8:01:
fa:50:e1:af:03:4b:53:88:6f:d6:dc:ea:c7:55:73:
2a:86:12:23:2d:e2:26:a1:a2:f6:ed:65:9a:d1:4a:
df:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:7B:82:75:48:89:DA:15:AC:FC:8E:87:FF:66:F2:00:30:0D:C6:F4
X509v3 Authority Key Identifier:
keyid:9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:fe:51:95:b1:9f:b5:9a:9d:96:65:3b:9f:c6:11:d3:b9:61:
53:84:a7:a4:99:58:44:15:ed:6c:5a:75:b0:4c:c8:46:b9:ef:
a4:ea:39:0b:6a:41:90:c5:a8:8f:41:b1:42:31:3e:d1:b9:78:
2a:d9:b6:4b:a5:61:05:8d:cf:02:20:33:d0:9b:fa:4c:8b:61:
62:05:95:e3:79:84:a1:02:74:d8:26:c0:e8:b8:45:c0:f4:e7:
6a:3c:8c:db:6d:1b:0d:87:bc:28:7e:5f:8e:13:93:e9:88:eb:
3d:66:e9:00:66:58:02:08:fc:e1:89:88:dd:07:e1:d9:8f:a6:
46:25:9b:30:3b:aa:7b:a9:af:6a:df:47:b2:8d:b6:eb:f1:39:
23:6b:10:2d:28:c2:41:ab:0f:88:32:04:fc:73:2a:c6:75:d1:
0a:ed:2c:69:90:3b:f6:66:b5:af:d3:1c:b0:6c:f1:66:99:e4:
e9:a1:a2:b0:90:87:a5:3c:23:18:e7:16:31:62:1b:a2:63:aa:
47:0d:2c:51:a3:99:1a:0b:81:2c:35:88:aa:fa:f9:dd:e7:ef:
cf:64:4d:c5:69:19:8e:f6:ae:0b:ab:cb:61:1a:7c:b6:78:d6:
de:77:b1:3f:1b:e5:09:51:15:0b:ad:f8:f4:d8:d0:b3:e0:f8:
16:37:24:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:06:03 2025 by rpki-client