Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
File: NTPUOQNczcXww50bP7FhlbVV_KM.mft (raw, json)
Hash identifier: zjk7R6IkrxozgdV4VNUp2rblXZkykSLSN0a9+eya8mo=
Subject key identifier: 6E:CF:2B:81:26:E1:40:79:14:72:C2:FF:03:52:1A:04:2C:34:8B:92
Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Certificate serial: 0197B77CC7320351EA072A9D952EF4BCE910
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
Manifest number: 0AAB
Signing time: Sat 28 Jun 2025 17:01:37 +0000
Manifest this update: Sat 28 Jun 2025 17:01:37 +0000
Manifest next update: Sun 29 Jun 2025 17:01:37 +0000
Files and hashes: 1: NTPUOQNczcXww50bP7FhlbVV_KM.crl (hash: J639GBG8Ap74DxLC3lAcxnPjctf8O3brZDTlrqdXF8M=)
2: rAVoUvT6eIAoJ9DaPocwQDvvkoc.roa (hash: 1BFZOwvrkIRFql6imBqxsdk52Ly1yvo/6JadLNNcDZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:c7:32:03:51:ea:07:2a:9d:95:2e:f4:bc:e9:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Validity
Not Before: Jun 28 17:01:37 2025 GMT
Not After : Jun 29 17:01:37 2025 GMT
Subject: CN=6ecf2b8126e140791472c2ff03521a042c348b92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6a:77:d8:a5:91:a2:63:e8:cf:73:52:4d:a5:
1a:57:b4:c1:fa:38:a1:21:c3:ef:89:be:a1:cf:58:
fd:01:ae:df:dd:aa:bf:9f:c3:86:82:9f:9f:31:68:
bd:31:05:30:e0:ae:4e:1b:a3:ad:4b:31:46:33:5c:
f0:7b:1e:c7:66:28:94:8c:e5:c9:4b:05:1c:62:4e:
8d:50:3e:53:82:e2:a0:c9:32:9d:f6:28:5f:8c:93:
e9:03:73:0b:a2:1c:78:df:61:2d:7c:c0:48:db:bd:
b0:68:cc:36:ea:63:57:34:9c:a6:65:86:31:c5:61:
ba:79:93:a1:bf:d9:01:e6:d4:4a:88:6d:f7:51:5c:
4a:69:bf:90:48:96:fe:07:bf:0a:2d:8e:15:7b:06:
ee:ea:8a:a6:52:61:7c:52:49:bc:73:5c:3f:73:e5:
df:57:58:1d:cc:46:58:50:46:06:e1:b5:33:d8:da:
ca:0a:6d:3c:fc:35:40:01:be:34:f1:2f:18:c5:4a:
ac:0d:4b:7b:c8:39:e8:c3:44:44:16:47:62:79:1a:
ce:2d:37:f5:d4:17:7b:91:6a:2c:04:11:c1:43:c8:
15:ca:a3:32:a3:af:21:3b:61:b2:6b:dc:a6:78:0d:
16:6f:6c:84:4d:43:af:56:d1:9f:d7:9c:92:c2:7d:
83:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:CF:2B:81:26:E1:40:79:14:72:C2:FF:03:52:1A:04:2C:34:8B:92
X509v3 Authority Key Identifier:
keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:57:13:c6:8b:29:3d:f5:e8:2c:2d:62:7a:be:c6:85:1e:41:
2c:00:69:00:38:1f:58:ba:7f:c9:f7:b8:96:4a:10:77:90:25:
a4:45:4e:2c:85:bd:f3:45:82:52:fc:ab:c3:c7:82:ae:6d:a1:
73:7a:4a:a4:c8:78:a1:5b:f2:66:d9:29:14:02:6a:40:d7:24:
04:b6:89:d4:e5:aa:ae:f4:39:fc:02:7c:16:9d:4d:1e:c7:3c:
af:d0:f4:df:d4:99:af:aa:cf:fd:c9:eb:69:aa:ea:97:cf:1a:
13:e6:71:f6:d0:4c:6b:dd:77:b3:dc:0d:d2:14:72:71:2a:8f:
40:f3:e6:0f:4f:70:e5:44:68:d7:da:52:66:de:46:dd:c4:7f:
53:b9:a9:53:34:a8:5c:91:e5:62:21:68:ec:17:4e:cf:f3:8c:
8d:e6:2e:35:4c:3f:fe:7e:26:97:70:15:08:1b:2f:75:ca:e3:
26:af:e0:3e:db:53:7c:aa:13:1e:a0:db:e5:b5:e7:84:47:55:
37:30:71:84:a5:85:41:17:16:35:ad:87:85:89:b7:60:9e:15:
7e:e5:4c:d1:fd:e1:f8:82:8a:43:21:fb:00:8a:6b:b4:e2:70:
9e:37:09:b9:7c:b9:b6:1c:3e:2c:16:d7:9f:74:e7:b7:52:2d:
6f:83:0b:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:03:20 2025 by rpki-client