Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
File: NYx3zUAYPEEVsr8NznFuC8XQv9U.mft (raw, json)
Hash identifier: WNkWNlt9+1i97uEBBvwsn4sGwx+dHpitjyVpwEgclJI=
Subject key identifier: 52:1C:A5:04:81:55:A8:4D:7D:8B:C8:A3:21:82:95:48:D2:4D:10:A4
Authority key identifier: 35:8C:77:CD:40:18:3C:41:15:B2:BF:0D:CE:71:6E:0B:C5:D0:BF:D5
Certificate issuer: /CN=358c77cd40183c4115b2bf0dce716e0bc5d0bfd5
Certificate serial: 0197B7B328B64D402F00982DAA2EE49F87B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
Manifest number: 0320
Signing time: Sat 28 Jun 2025 18:01:01 +0000
Manifest this update: Sat 28 Jun 2025 18:01:01 +0000
Manifest next update: Sun 29 Jun 2025 18:01:01 +0000
Files and hashes: 1: NYx3zUAYPEEVsr8NznFuC8XQv9U.crl (hash: mkjYTzirOTVUml/4xRq8TcfGYcWnmrEFGiRrMo0X9LY=)
2: zdd_itkr61DwlSbiF7xORGma-Mg.roa (hash: s7+y8n33Kdf5OFXebrrUAhH6tASSitV8ofo7STn/T1o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:28:b6:4d:40:2f:00:98:2d:aa:2e:e4:9f:87:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=358c77cd40183c4115b2bf0dce716e0bc5d0bfd5
Validity
Not Before: Jun 28 18:01:01 2025 GMT
Not After : Jun 29 18:01:01 2025 GMT
Subject: CN=521ca5048155a84d7d8bc8a321829548d24d10a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:57:7d:88:c7:ba:dc:3f:fc:3d:62:33:67:df:
ed:ae:d3:fb:a4:92:eb:c5:27:12:47:82:77:c9:d7:
e9:43:86:7c:6f:3d:ea:fb:37:1a:ff:af:e0:dd:a9:
0d:e0:14:fd:e4:b3:cc:f6:bb:a1:23:fc:7f:2b:6d:
8b:fb:55:28:1f:53:77:e1:a0:70:17:fc:92:79:75:
82:82:7a:f3:b1:59:3d:c1:ec:d6:e8:e2:aa:2d:2a:
d2:34:c9:8f:86:b9:70:ea:80:27:7a:e3:29:8b:32:
06:2f:96:c5:55:87:35:67:65:98:df:92:f2:23:11:
5c:b2:f8:69:4c:ec:23:ad:53:a1:af:d6:37:3e:65:
18:ab:ea:36:b1:ca:70:ff:e1:39:79:e0:2b:86:66:
82:29:81:23:83:14:89:7f:ee:8f:06:b0:59:36:ab:
2c:6a:9a:97:17:71:2e:01:d3:32:0a:35:47:49:77:
31:0f:8a:06:09:a2:a5:58:8b:9f:34:e3:cd:d2:5e:
42:6f:47:67:4e:88:08:40:ce:38:bc:d6:d2:d1:17:
28:b0:a3:2e:a4:fb:6d:54:68:89:89:80:5e:88:67:
db:eb:a1:c9:95:f5:e6:77:79:bd:9f:bb:43:87:58:
5e:83:b9:50:54:24:10:75:a4:54:ee:5d:a3:c9:d5:
91:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:1C:A5:04:81:55:A8:4D:7D:8B:C8:A3:21:82:95:48:D2:4D:10:A4
X509v3 Authority Key Identifier:
keyid:35:8C:77:CD:40:18:3C:41:15:B2:BF:0D:CE:71:6E:0B:C5:D0:BF:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:9d:ef:19:81:d8:a7:6b:c1:7e:8c:d4:e7:59:df:fd:4e:4d:
24:9d:b3:53:bb:27:df:4b:43:3a:14:a8:60:69:c7:e0:e4:39:
6b:7c:cc:2b:02:79:5a:b2:23:62:e1:5a:0c:d9:12:99:6e:1a:
75:8b:ff:48:b2:17:f6:38:e0:f6:01:11:c4:f2:33:55:75:55:
4e:ed:a4:28:2a:11:e0:cf:ed:5a:62:e2:6a:32:7a:eb:62:cc:
5a:4b:8a:04:ef:26:47:f2:6e:ea:7f:0e:b6:e2:b7:81:4f:42:
72:82:1f:19:4c:fe:f3:6b:63:c5:94:8f:7c:ab:db:9f:0c:6f:
d3:c4:c4:8e:02:15:bf:a9:76:0e:28:64:f5:77:b2:ed:33:d4:
37:ef:d4:4b:c1:b8:54:c5:74:31:56:ee:c5:24:ff:b1:3f:8d:
41:57:cd:48:fe:ed:31:27:a2:5c:69:4a:af:96:f4:75:91:d3:
9b:3a:68:c4:de:c3:99:b3:d2:74:4b:12:22:48:0d:3d:b9:1d:
ba:22:57:17:53:c5:fc:80:ec:07:df:04:34:14:1f:5e:3d:28:
99:6c:b3:9e:a1:99:9a:55:ea:11:db:77:da:a5:ae:6d:b7:95:
e9:e0:f0:5c:3b:ef:8b:29:13:d7:88:d4:ac:da:0b:91:d8:31:
73:fb:43:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:24:53 2025 by rpki-client