Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft
File: NufP3RKRk-IZw3ASHKFiUOQptYs.mft (raw, json)
Hash identifier: lTY7jPnFIwgExQ4jLr25QIBCV+g9LrK16oCvRNJh/Q0=
Subject key identifier: 76:2C:FA:F1:D9:A1:E1:F1:17:17:17:AB:8B:05:E6:5C:CB:56:CD:12
Authority key identifier: 36:E7:CF:DD:12:91:93:E2:19:C3:70:12:1C:A1:62:50:E4:29:B5:8B
Certificate issuer: /CN=36e7cfdd129193e219c370121ca16250e429b58b
Certificate serial: 0197B70E7A552B0AA45638B44A7CAAB33489
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NufP3RKRk-IZw3ASHKFiUOQptYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft
Manifest number: 0FA6
Signing time: Sat 28 Jun 2025 15:01:08 +0000
Manifest this update: Sat 28 Jun 2025 15:01:08 +0000
Manifest next update: Sun 29 Jun 2025 15:01:08 +0000
Files and hashes: 1: NufP3RKRk-IZw3ASHKFiUOQptYs.crl (hash: CQDxD65+QnmDUQHteb5wHu0IYIVwJlTmFyz03v1xoqI=)
2: TQTaN9R3PROnWSlPAnOimZ3OkV0.roa (hash: 6MvOdY9qe95Xeb6bYl6JjgUIxMzjpmO+qyLURJWgUDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/NufP3RKRk-IZw3ASHKFiUOQptYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:7a:55:2b:0a:a4:56:38:b4:4a:7c:aa:b3:34:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36e7cfdd129193e219c370121ca16250e429b58b
Validity
Not Before: Jun 28 15:01:08 2025 GMT
Not After : Jun 29 15:01:08 2025 GMT
Subject: CN=762cfaf1d9a1e1f1171717ab8b05e65ccb56cd12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3e:6f:c9:7e:2f:1f:b8:57:e1:ef:39:6c:9b:
c2:2d:b3:4a:ba:91:aa:b7:c2:f8:2f:f4:5d:40:e8:
f5:06:73:7e:a1:fd:69:b3:75:f1:33:5f:23:5b:92:
ab:28:54:11:eb:7e:95:41:e5:8f:fc:61:0d:2e:ac:
26:34:36:e5:02:e2:0b:d4:64:96:ad:35:af:a0:ce:
5a:59:5f:e2:e8:54:3c:c0:18:22:8e:f1:d2:63:e3:
fb:ed:70:06:33:38:53:37:85:bb:eb:84:71:c2:0f:
30:4f:35:ac:11:0c:d3:1f:39:80:63:72:cd:85:9f:
b4:c0:e9:6b:02:9e:b3:dc:b3:8e:3c:55:e4:78:1a:
9c:eb:21:62:dd:2b:74:f5:f5:d3:26:74:0d:0f:db:
a1:ac:20:6f:db:ac:05:a3:89:14:ef:a9:f4:99:49:
db:fa:3e:29:a4:06:c4:ec:16:53:d0:0f:0d:8e:b9:
a9:fb:3e:38:f8:a5:0d:96:df:23:7d:50:95:c4:90:
3e:64:35:f3:ff:dd:b4:8a:48:7c:2e:d4:fa:6c:e2:
60:d5:0f:67:b8:39:0d:8e:ac:5c:0a:80:bd:f7:0c:
db:98:30:78:92:ec:e9:ab:a4:e1:ae:a9:6e:b8:ce:
12:81:93:b3:66:5c:ae:ec:90:33:a2:e9:a2:56:5d:
1a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:2C:FA:F1:D9:A1:E1:F1:17:17:17:AB:8B:05:E6:5C:CB:56:CD:12
X509v3 Authority Key Identifier:
keyid:36:E7:CF:DD:12:91:93:E2:19:C3:70:12:1C:A1:62:50:E4:29:B5:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NufP3RKRk-IZw3ASHKFiUOQptYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:f6:3d:e2:0c:62:3b:91:c4:6e:6b:f6:01:20:4d:55:1f:0c:
0f:95:b3:00:f9:49:b9:12:3c:90:ca:fc:d2:16:f5:2b:26:5e:
54:49:33:8b:e0:0f:6c:83:46:e1:df:ef:08:9f:88:a0:07:1d:
39:08:9c:ac:59:36:a2:22:b9:a2:b1:23:f5:b0:60:87:bd:ba:
d8:10:17:ec:57:9e:d9:71:46:a8:bf:37:87:09:d1:de:33:11:
cf:b2:b7:35:b7:e6:22:e1:be:1b:4c:96:a3:68:06:97:36:4a:
ec:f7:c2:16:13:bf:dd:e8:6d:ad:fa:2b:dd:4f:30:0a:db:cc:
83:e3:5a:49:b7:bf:a8:a4:af:27:6e:8a:4f:78:b5:cd:79:92:
33:ee:61:be:3a:b6:32:a3:16:e1:e3:66:b8:4e:ac:2f:31:87:
8b:54:cf:07:05:97:20:09:ca:f1:4d:67:00:52:e3:91:f1:bf:
45:f6:14:77:94:b5:b6:6a:88:7a:a6:ec:03:6a:ca:31:1a:34:
6e:57:e7:86:45:5e:04:48:bd:a8:67:e6:e1:a0:c8:01:ac:74:
c0:8a:bb:2f:0b:ae:fd:c0:02:53:7d:77:36:5f:28:ea:69:63:
c5:66:e4:30:8a:02:d9:e6:e6:2d:8a:12:09:4a:7c:55:e9:74:
a4:41:09:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:21:57 2025 by rpki-client