Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft
File: NawwjJT1exHO4bqE7xJ4RHxnhes.mft (raw, json)
Hash identifier: /+TuWSD1Y9YRHGaWMtbZpaWwjea0/58ApAR2tB8YFMQ=
Subject key identifier: 44:12:49:29:A2:9E:C8:78:6F:44:D7:F2:04:9A:C6:CB:5E:C4:9E:C2
Authority key identifier: 35:AC:30:8C:94:F5:7B:11:CE:E1:BA:84:EF:12:78:44:7C:67:85:EB
Certificate issuer: /CN=35ac308c94f57b11cee1ba84ef1278447c6785eb
Certificate serial: 0198D515933EDF88FDC6C492DC59EE320E13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NawwjJT1exHO4bqE7xJ4RHxnhes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 04:00:17 +0000
Manifest this update: Sat 23 Aug 2025 04:00:17 +0000
Manifest next update: Sun 24 Aug 2025 04:00:17 +0000
Files and hashes: 1: NawwjJT1exHO4bqE7xJ4RHxnhes.crl (hash: /GKyJrm78j3bI8hQPPnV6kztzVpH7VNdNOy9arIthCA=)
2: ge72rIVKenfFe0v5asZR_PaxIp4.roa (hash: o9engqettqOIJ9n8PYQ/SXW11G8NZE3fZOewqKwRqSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft
rsync://rpki.ripe.net/repository/DEFAULT/NawwjJT1exHO4bqE7xJ4RHxnhes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:93:3e:df:88:fd:c6:c4:92:dc:59:ee:32:0e:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35ac308c94f57b11cee1ba84ef1278447c6785eb
Validity
Not Before: Aug 23 04:00:17 2025 GMT
Not After : Aug 24 04:00:17 2025 GMT
Subject: CN=44124929a29ec8786f44d7f2049ac6cb5ec49ec2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7d:52:56:96:b6:62:35:33:d2:5c:ef:0e:f0:
51:94:6b:19:a6:3d:6c:29:93:1d:83:7b:40:1d:b9:
56:4f:e4:09:ba:1d:97:23:96:1a:81:5d:0d:2d:8b:
b8:f8:ea:86:d5:d9:8a:a2:0b:76:76:bc:9f:f6:0d:
29:fe:f6:96:6f:b4:e1:ba:0c:3b:48:b3:23:45:a3:
b4:e6:44:5b:af:ac:70:2f:15:a4:ef:96:34:cf:7b:
33:98:d3:84:d4:4d:e3:bd:aa:c8:af:ae:80:cc:c6:
6f:d5:0e:40:14:e2:be:79:4c:70:4b:83:e8:ad:84:
93:8c:cd:6c:42:e6:1c:ce:71:5e:e1:9c:76:a4:85:
d6:ed:f4:e8:d4:8d:db:c7:94:9a:f5:c2:65:81:f5:
c2:2a:ea:b6:10:fd:c4:57:cf:af:aa:c5:5a:25:bc:
1b:d6:bb:33:af:ab:8a:3f:a9:96:84:1c:1d:2b:86:
14:41:d5:47:a5:c3:bf:28:0f:96:a0:5d:d4:5a:ed:
8c:1c:e9:3d:53:cc:63:e9:53:97:37:10:2d:06:64:
0e:f6:96:20:2d:e5:df:ab:10:6d:db:bf:d2:68:19:
33:67:7d:c8:25:ef:30:e6:1b:ef:b9:20:b6:8f:27:
93:55:74:71:20:24:87:fc:04:f7:67:95:5e:8b:be:
bd:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:12:49:29:A2:9E:C8:78:6F:44:D7:F2:04:9A:C6:CB:5E:C4:9E:C2
X509v3 Authority Key Identifier:
keyid:35:AC:30:8C:94:F5:7B:11:CE:E1:BA:84:EF:12:78:44:7C:67:85:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NawwjJT1exHO4bqE7xJ4RHxnhes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:a7:0f:25:c2:a3:37:52:e4:b0:cc:83:4f:cc:9d:c8:4c:34:
4b:09:be:cc:56:ec:fe:fd:de:ad:3a:0e:63:a8:93:7a:b1:ed:
5b:e7:d7:d8:70:ca:bf:bd:dd:ed:89:11:7e:40:f4:c3:29:47:
98:fa:56:ef:2a:da:00:4a:4d:08:f6:6b:c4:0d:bc:a2:37:9b:
43:f9:38:db:9d:54:e7:ff:5e:fd:a0:c4:0d:3f:dd:b3:c9:25:
aa:59:61:f5:d9:b2:71:4c:50:a6:e8:33:0c:c8:89:77:7f:5f:
1b:85:0e:77:d9:a3:bc:53:9e:4f:36:5d:85:47:ee:6b:cd:55:
9a:c7:bf:94:57:6c:cb:b6:98:ab:4e:1b:0b:03:e9:43:db:38:
71:b1:0b:1a:11:7d:81:c7:50:95:ea:8a:76:8b:55:ea:5b:4b:
23:8e:37:97:2e:17:89:3c:67:77:9f:4c:66:6c:8b:12:bd:d6:
8c:45:a8:37:28:77:9b:1b:c0:ba:b0:4b:f3:04:20:46:8a:d7:
5b:aa:62:09:a0:85:92:9a:63:da:7c:b6:98:e2:44:4e:f5:37:
d1:9a:48:19:0a:99:84:a2:44:bc:55:a4:c2:df:b1:09:03:b4:
d6:10:78:35:54:1a:66:98:91:d9:31:a8:13:54:3e:07:44:02:
4b:36:27:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:29:40 2025 by rpki-client