Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft
File: NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft (raw, json)
Hash identifier: r8/2uLlqL9f3UAfU5qYUgAP9VXhdoPlskOrYEtqRGIE=
Subject key identifier: 24:02:2F:65:50:FE:31:BE:7B:3D:A3:31:4E:08:84:4B:DD:6F:EB:5D
Authority key identifier: 35:8A:E5:80:B2:F7:B4:5C:3D:2A:E9:F1:9F:3C:1B:E9:7E:83:9A:AA
Certificate issuer: /CN=358ae580b2f7b45c3d2ae9f19f3c1be97e839aaa
Certificate serial: 0197B745086E65F76B1DF8585C701D3B8561
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft
Manifest number: 11ED
Signing time: Sat 28 Jun 2025 16:00:44 +0000
Manifest this update: Sat 28 Jun 2025 16:00:44 +0000
Manifest next update: Sun 29 Jun 2025 16:00:44 +0000
Files and hashes: 1: NYrlgLL3tFw9Kunxnzwb6X6Dmqo.crl (hash: cv6awaA/LGnKE9azSSkRcOfRp1yOSfGnnpzYKIMoYUk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:08:6e:65:f7:6b:1d:f8:58:5c:70:1d:3b:85:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=358ae580b2f7b45c3d2ae9f19f3c1be97e839aaa
Validity
Not Before: Jun 28 16:00:44 2025 GMT
Not After : Jun 29 16:00:44 2025 GMT
Subject: CN=24022f6550fe31be7b3da3314e08844bdd6feb5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:af:3d:fb:79:e9:db:98:f7:55:ac:42:76:13:
3f:8e:58:4c:71:56:7f:04:85:98:25:e6:4b:aa:d5:
8f:ab:e2:18:72:bb:b0:ed:a3:e7:ed:6a:ff:42:b9:
0f:0f:1a:a1:b0:fa:27:61:f8:ee:33:28:2d:d2:48:
b5:65:4e:76:a1:ab:0c:4b:e3:af:0d:52:62:44:69:
61:38:5b:17:8c:d0:0c:dc:19:ae:bf:1e:9e:f0:6f:
2e:4c:9e:05:86:ff:c3:95:ed:d6:5b:50:df:7a:95:
6a:c5:7a:18:d7:47:f4:0c:13:cf:42:ff:a6:09:dd:
d5:76:72:e4:6e:e3:f3:ef:b5:e2:d3:53:35:68:42:
54:cc:b1:3a:78:3d:c7:84:7f:37:7a:ad:f6:4c:c8:
24:73:7f:3f:89:51:2a:31:32:34:fb:a9:d6:aa:83:
86:e5:68:f7:3c:74:bc:32:85:66:50:95:b8:d0:6f:
9e:95:e5:6a:93:e6:6b:14:3a:36:67:8d:90:96:8f:
d0:0a:c9:39:38:f0:05:5e:b7:82:c6:4c:9e:34:87:
b6:5e:33:c2:21:35:a1:d8:95:83:0f:91:4a:3d:fb:
58:ea:26:59:e1:09:82:11:cc:c2:73:ab:db:65:aa:
23:d1:e9:3d:f9:22:d7:db:bb:1c:d8:4f:9a:f7:05:
24:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:02:2F:65:50:FE:31:BE:7B:3D:A3:31:4E:08:84:4B:DD:6F:EB:5D
X509v3 Authority Key Identifier:
keyid:35:8A:E5:80:B2:F7:B4:5C:3D:2A:E9:F1:9F:3C:1B:E9:7E:83:9A:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:66:e4:fa:46:7c:59:a2:a2:2b:ae:95:9d:4b:05:16:2d:c9:
4c:19:bc:43:62:b8:e8:0f:ed:c6:c9:95:65:6a:a1:84:36:a4:
5f:b3:dd:97:37:d3:61:3e:02:da:33:c9:eb:69:93:a9:c0:19:
23:6c:cf:b9:eb:e8:0f:dc:52:99:2f:24:15:91:ba:fb:b5:8c:
fa:52:ff:ce:aa:aa:69:f8:ac:4d:84:4b:b5:1d:ac:ab:f1:3c:
b5:87:dc:84:d3:ea:ce:9d:8d:f0:ea:59:55:2d:8d:a8:42:91:
30:76:a8:0f:81:9c:90:7d:af:36:ee:e7:5e:db:55:e3:24:6b:
55:34:0e:d6:ce:67:5f:dc:95:e5:51:ba:8d:6e:30:99:cd:01:
00:c0:58:5e:b9:6b:35:c2:8e:16:c2:cc:a7:95:1a:29:e7:4e:
8d:52:70:bd:f6:4a:87:9f:a6:4a:88:36:7f:60:9c:1d:6b:64:
07:9f:c9:37:c2:ff:18:3f:17:c1:b2:9f:da:01:1d:78:af:a7:
12:de:0a:2a:cd:17:cf:e2:fc:fc:6d:3e:cc:78:78:24:ef:f3:
af:cf:05:81:4a:80:88:78:73:7b:8f:5e:7e:29:77:b8:00:66:
8f:a2:ae:e5:f2:1a:44:71:ab:0a:30:58:16:d9:06:25:ee:44:
e5:90:5e:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:38:09 2025 by rpki-client