Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/de77ae-29e3-4a04-a027-6638c3eb4027/1/NDLzVG3kPONceHHFVLizDvY1wlE.mft
File: NDLzVG3kPONceHHFVLizDvY1wlE.mft (raw, json)
Hash identifier: IqsgzXFw3VFdwb+il5F/nwo4B+AUjs1MJPsmcxkofwU=
Subject key identifier: 2C:39:FC:8E:66:70:0B:6C:DE:17:38:8C:E7:24:A3:4E:B5:32:98:D7
Authority key identifier: 34:32:F3:54:6D:E4:3C:E3:5C:78:71:C5:54:B8:B3:0E:F6:35:C2:51
Certificate issuer: /CN=3432f3546de43ce35c7871c554b8b30ef635c251
Certificate serial: 0197B8FCFC9E5FBCBB12CFCAAC81DB5B89F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NDLzVG3kPONceHHFVLizDvY1wlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/de77ae-29e3-4a04-a027-6638c3eb4027/1/NDLzVG3kPONceHHFVLizDvY1wlE.mft
Manifest number: 015D
Signing time: Sun 29 Jun 2025 00:01:16 +0000
Manifest this update: Sun 29 Jun 2025 00:01:16 +0000
Manifest next update: Mon 30 Jun 2025 00:01:16 +0000
Files and hashes: 1: NDLzVG3kPONceHHFVLizDvY1wlE.crl (hash: 35i66wLhrMtMySBWVJgYJ6pzANOASJyOkEewieFq7PQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/de77ae-29e3-4a04-a027-6638c3eb4027/1/NDLzVG3kPONceHHFVLizDvY1wlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/de77ae-29e3-4a04-a027-6638c3eb4027/1/NDLzVG3kPONceHHFVLizDvY1wlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/NDLzVG3kPONceHHFVLizDvY1wlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fc:fc:9e:5f:bc:bb:12:cf:ca:ac:81:db:5b:89:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3432f3546de43ce35c7871c554b8b30ef635c251
Validity
Not Before: Jun 29 00:01:16 2025 GMT
Not After : Jun 30 00:01:16 2025 GMT
Subject: CN=2c39fc8e66700b6cde17388ce724a34eb53298d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:90:e1:fd:77:f7:b1:5c:9f:82:81:6c:47:3b:
01:f0:96:cc:7a:30:39:58:22:a3:1c:f0:9d:a1:da:
b8:0a:69:bd:2b:7b:5f:d7:32:94:1f:71:34:8e:47:
75:81:65:71:ad:81:79:f5:cf:a8:ee:29:79:f3:5f:
0c:1e:00:e1:59:d0:2c:f9:b3:ab:08:34:36:0e:17:
fa:34:33:6f:ea:64:94:f0:aa:a6:59:42:f5:e3:84:
b4:76:64:88:61:35:69:92:8a:83:f6:e5:f1:db:e4:
4a:40:d2:b4:5f:26:25:82:76:9c:66:82:1a:ba:9b:
87:35:99:ff:25:17:d0:b7:e1:c4:57:41:36:99:79:
44:16:e9:fa:21:e4:9b:00:ce:0a:70:62:86:b8:3b:
0b:bd:8c:fd:f7:96:cd:22:6c:a5:d0:af:e5:40:cb:
03:dc:81:48:c6:1a:62:4a:06:dc:04:24:6a:84:dc:
15:6d:6e:d7:2d:a8:73:be:bf:49:9f:f0:bc:be:ef:
6e:9e:c6:bf:5c:d7:26:15:f1:78:68:2a:c5:6e:f2:
df:a1:25:46:22:a5:a1:61:3c:41:6f:a9:1b:65:e5:
2c:d0:b0:6c:06:09:6e:3e:34:bb:4b:40:8e:e8:22:
12:9b:e5:24:10:fe:5a:39:74:cd:74:06:4e:27:7e:
18:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:39:FC:8E:66:70:0B:6C:DE:17:38:8C:E7:24:A3:4E:B5:32:98:D7
X509v3 Authority Key Identifier:
keyid:34:32:F3:54:6D:E4:3C:E3:5C:78:71:C5:54:B8:B3:0E:F6:35:C2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NDLzVG3kPONceHHFVLizDvY1wlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/de77ae-29e3-4a04-a027-6638c3eb4027/1/NDLzVG3kPONceHHFVLizDvY1wlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/de77ae-29e3-4a04-a027-6638c3eb4027/1/NDLzVG3kPONceHHFVLizDvY1wlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:ca:0b:f4:1b:28:3d:b2:34:7e:9f:f4:16:e8:e9:e0:e8:21:
7c:96:ce:52:a9:36:fe:b9:ba:b8:93:98:2a:89:db:5a:4e:8d:
fa:b9:9f:16:b2:15:81:24:d4:e9:53:23:e4:b6:44:ac:56:b3:
f1:3f:e8:c1:f5:27:e3:05:db:66:9c:f0:ed:2c:99:22:6e:9e:
19:f9:58:d4:f6:bd:1f:da:dd:f6:05:7a:aa:1c:26:5b:83:2c:
65:f6:51:93:f3:5c:db:61:77:c9:e9:27:f8:28:52:17:44:69:
42:27:7c:c3:f6:7d:bd:de:88:a2:8e:59:86:54:51:97:bc:b2:
08:5b:45:97:a6:4a:a6:85:b9:64:44:5a:1d:82:3d:8c:a2:7f:
29:40:e2:55:89:07:51:69:d1:c2:36:7a:a4:56:e3:55:63:8c:
87:e0:4d:f0:46:eb:e9:e0:71:dc:ef:96:3a:a0:d1:f5:50:1c:
8a:bc:ee:52:52:c0:4d:52:c9:28:b3:b0:ce:05:a1:14:e8:55:
af:47:61:be:60:4d:f4:f7:17:2b:2b:03:06:b8:85:5a:50:bf:
7c:d6:c1:59:ce:01:59:d6:3c:09:9c:59:a1:54:7a:61:8f:b2:
b5:0d:b2:93:6b:3f:59:d7:18:2b:f2:a4:de:7a:ee:da:6c:f8:
e9:b7:cb:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:44:27 2025 by rpki-client