Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft
File: NawwjJT1exHO4bqE7xJ4RHxnhes.mft (raw, json)
Hash identifier: /EXKfkwlX8/f24wxol9DEUbQnF0gjPYpdrFQsV8q/ug=
Subject key identifier: B7:CD:57:E9:8C:AB:B2:F0:80:A5:AB:21:3D:8A:69:CB:F0:46:B4:EC
Authority key identifier: 35:AC:30:8C:94:F5:7B:11:CE:E1:BA:84:EF:12:78:44:7C:67:85:EB
Certificate issuer: /CN=35ac308c94f57b11cee1ba84ef1278447c6785eb
Certificate serial: 0197B7452329B4AE8EA279E7642F5F519304
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NawwjJT1exHO4bqE7xJ4RHxnhes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 16:00:50 +0000
Manifest this update: Sat 28 Jun 2025 16:00:50 +0000
Manifest next update: Sun 29 Jun 2025 16:00:50 +0000
Files and hashes: 1: NawwjJT1exHO4bqE7xJ4RHxnhes.crl (hash: aw0+3AV6lut4rIpLDNyoBIwu79MQ6GOXnnY28fAegwU=)
2: ge72rIVKenfFe0v5asZR_PaxIp4.roa (hash: o9engqettqOIJ9n8PYQ/SXW11G8NZE3fZOewqKwRqSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft
rsync://rpki.ripe.net/repository/DEFAULT/NawwjJT1exHO4bqE7xJ4RHxnhes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:23:29:b4:ae:8e:a2:79:e7:64:2f:5f:51:93:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35ac308c94f57b11cee1ba84ef1278447c6785eb
Validity
Not Before: Jun 28 16:00:50 2025 GMT
Not After : Jun 29 16:00:50 2025 GMT
Subject: CN=b7cd57e98cabb2f080a5ab213d8a69cbf046b4ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:95:4e:2d:e5:7b:51:7d:80:35:4b:01:b6:63:
bb:b4:8e:b5:e9:e4:7d:b7:ee:53:07:49:b3:52:da:
6a:b1:27:99:e2:3e:d3:60:01:27:05:35:dc:49:fa:
de:11:b4:ab:2d:95:76:0d:53:2b:68:57:a3:83:c8:
14:92:9e:29:9b:3e:69:1d:04:6f:34:2d:fb:40:2a:
d4:a0:a6:40:54:b7:73:fc:ed:24:d4:12:1e:ff:0e:
77:79:c8:17:ec:b9:e2:43:68:28:29:91:8f:2c:a9:
65:fc:75:85:06:6b:ed:4e:e7:cc:da:98:14:c7:98:
2c:92:73:8b:8c:10:23:6f:a9:96:2b:63:1d:54:91:
45:4b:09:f3:d8:70:40:13:fd:2c:12:06:1e:39:20:
40:7e:a3:45:0e:ae:a0:1c:cb:7f:b5:43:1a:ed:d2:
5d:21:25:c5:6a:78:a2:91:9f:ad:f4:a2:54:9d:6e:
66:b1:fe:0e:ea:71:0c:d6:32:11:85:fe:68:21:df:
bb:80:9f:cc:88:7c:eb:76:e2:29:a6:1a:e6:d9:92:
56:f6:b3:87:ca:05:65:0e:cc:63:86:a1:6f:36:f4:
b1:7f:96:86:12:ff:72:e0:9e:f9:fd:80:52:81:e4:
e3:aa:80:ae:5b:a1:e5:1e:f8:c3:49:3f:8a:b6:8f:
e1:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:CD:57:E9:8C:AB:B2:F0:80:A5:AB:21:3D:8A:69:CB:F0:46:B4:EC
X509v3 Authority Key Identifier:
keyid:35:AC:30:8C:94:F5:7B:11:CE:E1:BA:84:EF:12:78:44:7C:67:85:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NawwjJT1exHO4bqE7xJ4RHxnhes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:99:aa:b1:85:d1:9f:65:7b:83:ab:89:cc:05:4b:46:1f:b0:
a8:e7:75:11:0e:2c:fa:7d:93:09:d7:f5:1a:f4:8c:2a:2a:03:
7f:33:25:46:82:76:71:a0:ba:36:b7:32:ff:63:27:f6:79:87:
b1:5a:30:42:55:22:f4:89:cf:3d:b9:e1:d3:72:c6:5f:44:7e:
9e:26:fd:bd:52:bd:b3:bd:b0:14:a3:5b:64:46:97:48:7e:05:
21:66:5e:fd:ff:49:ed:2d:2a:52:e0:62:dd:d0:15:ab:c1:27:
24:2a:f5:a1:27:2c:d5:19:bc:fa:1a:53:d8:11:a9:99:b5:bd:
0a:67:4f:aa:74:73:c9:24:08:3e:b3:0e:d1:0d:f8:36:80:47:
9b:98:97:cc:ec:85:04:31:3e:54:e5:3d:ba:48:aa:c2:f1:d0:
47:7d:0c:22:4e:06:f8:08:d7:f1:da:fe:7e:73:bb:b6:ca:b0:
5b:d2:ca:ec:92:94:56:4c:40:8c:95:7f:60:a4:54:22:04:45:
fd:f0:fa:e8:db:d7:63:e5:5e:64:59:75:a9:ea:ab:1b:dc:7f:
ec:13:58:be:bf:25:74:92:cc:e1:73:8a:01:a0:e7:7b:30:69:
79:89:ed:40:eb:2f:cb:9e:e4:e6:c5:50:57:7a:d1:37:f9:25:
bf:7d:73:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:09:36 2025 by rpki-client