Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft
File: NehMBjohgLI_X20xYqdbMJL1wY0.mft (raw, json)
Hash identifier: YbF3d5IsLCaOsKGLIhTU+UZoM+WqF3l8OFTPZFkQpXg=
Subject key identifier: 3B:D8:F5:6B:81:B7:E2:97:BD:74:48:10:27:8F:4D:AE:C2:53:F9:1E
Authority key identifier: 35:E8:4C:06:3A:21:80:B2:3F:5F:6D:31:62:A7:5B:30:92:F5:C1:8D
Certificate issuer: /CN=35e84c063a2180b23f5f6d3162a75b3092f5c18d
Certificate serial: 0197B6D72595A513BF125BA070663407F15A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NehMBjohgLI_X20xYqdbMJL1wY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 14:00:42 +0000
Manifest this update: Sat 28 Jun 2025 14:00:42 +0000
Manifest next update: Sun 29 Jun 2025 14:00:42 +0000
Files and hashes: 1: NehMBjohgLI_X20xYqdbMJL1wY0.crl (hash: EEHwFj+NmTqogxgYfuMBV8DaB4V7ldV8Xt0i+MNExCY=)
2: W3mDa3qMM3UMHKwdjXNmQQYwzCo.roa (hash: uhcnNrB9w8L6u9yOsZumoNimMZDsDc9Fp+1S6uVCDDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/NehMBjohgLI_X20xYqdbMJL1wY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:25:95:a5:13:bf:12:5b:a0:70:66:34:07:f1:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35e84c063a2180b23f5f6d3162a75b3092f5c18d
Validity
Not Before: Jun 28 14:00:42 2025 GMT
Not After : Jun 29 14:00:42 2025 GMT
Subject: CN=3bd8f56b81b7e297bd744810278f4daec253f91e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:21:cc:01:0c:bb:73:a1:f9:9a:93:d0:3e:94:
f9:22:a2:09:5f:53:40:4c:e6:84:ac:20:72:2e:86:
6e:50:21:73:c5:32:9b:de:04:04:82:38:77:02:f6:
09:22:38:71:58:c9:f6:3a:2a:66:33:10:44:51:c1:
bc:90:ad:51:24:9b:b8:0c:5f:2e:ce:00:cc:f4:63:
4f:f6:ea:94:2d:25:09:ec:59:43:f5:c1:1c:23:8e:
92:e1:ed:39:09:44:7e:6a:95:51:3b:b8:40:e5:bb:
bd:c0:75:5a:2e:16:2a:76:8e:02:d6:30:6a:dd:f0:
1d:4d:ed:4b:68:02:3e:15:f5:9f:9b:85:bc:ba:8c:
ff:a6:ec:ce:c4:29:14:ff:8e:47:46:0a:cd:ed:6c:
1a:87:5f:b4:cf:93:b8:e5:1b:72:c1:45:9e:8a:e1:
97:e5:28:86:d6:a9:7e:2d:ab:ba:33:8c:64:98:98:
03:9e:99:13:6c:6b:12:0e:42:66:fd:6f:c3:f6:5f:
61:8e:7c:f6:9e:71:c0:67:41:4b:c0:50:ca:d2:6e:
28:bd:95:05:b5:f7:4a:8b:c2:c2:c0:75:f5:5b:30:
67:28:a1:92:1b:98:aa:c2:1f:73:a8:6d:09:f5:05:
4f:b9:5b:57:e0:50:ce:a2:65:69:39:c6:d0:d2:e3:
75:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D8:F5:6B:81:B7:E2:97:BD:74:48:10:27:8F:4D:AE:C2:53:F9:1E
X509v3 Authority Key Identifier:
keyid:35:E8:4C:06:3A:21:80:B2:3F:5F:6D:31:62:A7:5B:30:92:F5:C1:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NehMBjohgLI_X20xYqdbMJL1wY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:bd:c6:1f:64:b4:d9:c3:88:45:03:d2:71:88:02:1d:8a:cc:
3a:ce:e6:4d:90:70:bb:3a:67:e7:e6:19:ae:8e:9e:e3:9a:12:
01:37:2a:6b:e6:49:22:de:c7:04:c9:94:30:b4:d5:3d:a9:9e:
94:e6:20:ef:53:75:c3:a9:c4:3d:f5:8f:97:5e:e5:d6:b4:b4:
c8:88:8c:6e:af:59:90:d3:6a:83:90:8c:19:d7:b6:ed:c0:4f:
9b:f3:60:5d:1e:f4:c7:2e:8f:e7:5a:0f:d3:0c:39:18:10:98:
96:da:5d:18:9e:92:7a:31:15:3a:a2:13:de:53:63:db:f7:b6:
21:01:0e:7b:19:46:2b:67:aa:7f:cd:0f:9b:5e:5c:8f:3f:93:
ce:c3:2c:1a:a8:73:bc:5d:d6:f5:8a:28:50:88:46:eb:2d:db:
91:0f:b9:46:a2:15:99:bb:60:4b:7d:44:ac:de:86:3e:dc:09:
e4:31:b7:f9:d7:ff:1d:dc:42:05:cd:ae:0b:dd:85:71:bf:fc:
6f:3e:1d:fd:95:b7:a6:a6:cf:73:a4:e1:7c:2a:e0:d6:64:26:
53:cd:6e:e6:ad:4c:f1:5f:1c:24:96:6b:c5:6b:06:0c:2e:74:
b4:da:c7:ad:55:b6:16:62:a9:ba:bb:93:1d:16:4a:e7:05:93:
75:7c:a2:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:46:33 2025 by rpki-client