Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft
File: NehMBjohgLI_X20xYqdbMJL1wY0.mft (raw, json)
Hash identifier: MinO8KmVsGH8igGZ++S9mQbAcPm27bODTp2wmL+vzzA=
Subject key identifier: 28:75:96:19:6F:9F:14:BF:34:67:62:59:1B:B4:B0:CC:B3:12:37:A2
Authority key identifier: 35:E8:4C:06:3A:21:80:B2:3F:5F:6D:31:62:A7:5B:30:92:F5:C1:8D
Certificate issuer: /CN=35e84c063a2180b23f5f6d3162a75b3092f5c18d
Certificate serial: 0198D4A7CDAA0C35E21A9572963804778FF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NehMBjohgLI_X20xYqdbMJL1wY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 02:00:23 +0000
Manifest this update: Sat 23 Aug 2025 02:00:23 +0000
Manifest next update: Sun 24 Aug 2025 02:00:23 +0000
Files and hashes: 1: NehMBjohgLI_X20xYqdbMJL1wY0.crl (hash: OelL0VY46kUQ616A1xSqELRf4gL7TL0DBu/OKzDchSA=)
2: W3mDa3qMM3UMHKwdjXNmQQYwzCo.roa (hash: uhcnNrB9w8L6u9yOsZumoNimMZDsDc9Fp+1S6uVCDDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/NehMBjohgLI_X20xYqdbMJL1wY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:cd:aa:0c:35:e2:1a:95:72:96:38:04:77:8f:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35e84c063a2180b23f5f6d3162a75b3092f5c18d
Validity
Not Before: Aug 23 02:00:23 2025 GMT
Not After : Aug 24 02:00:23 2025 GMT
Subject: CN=287596196f9f14bf346762591bb4b0ccb31237a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a1:a1:f8:a3:35:94:05:f6:8f:6f:e7:25:12:
8c:fc:05:5e:f5:a1:f4:8e:8e:2f:f0:9e:4c:9f:21:
4b:a5:d9:86:4e:3a:0a:fe:7f:4f:ea:e5:6e:a0:06:
6c:12:8c:7a:74:a0:01:a0:51:ff:0c:65:1b:ee:05:
63:3f:97:3d:2f:03:ec:82:a6:ed:27:c3:c4:d7:4d:
c4:8f:e9:c7:54:66:b6:16:86:fe:70:40:f8:ba:35:
37:bb:74:11:91:f2:14:2c:e0:7e:2c:7e:e3:fe:88:
80:c2:cc:31:e9:f5:64:1f:c7:58:63:48:61:73:d7:
02:db:ea:0b:38:57:0c:31:a9:ed:e7:ee:55:7a:d3:
9d:a2:cd:12:23:fc:34:02:0b:ff:44:33:60:e3:ac:
4c:52:57:50:43:d7:d3:3e:1a:40:9a:dc:2a:62:46:
6e:71:bf:3b:06:c2:d5:dc:8f:43:76:46:b4:6e:23:
c1:83:30:63:62:12:1d:bb:7e:80:ce:2e:f0:33:1a:
27:be:cd:e5:63:9d:f6:99:92:ee:75:69:db:29:34:
44:75:c3:47:36:ed:71:98:d0:08:c0:79:8d:f4:ab:
9d:8b:4f:ee:7b:c7:a3:ca:d5:04:36:4d:f5:75:21:
a6:90:78:1a:8e:a9:87:b6:96:e2:98:5f:50:31:72:
74:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:75:96:19:6F:9F:14:BF:34:67:62:59:1B:B4:B0:CC:B3:12:37:A2
X509v3 Authority Key Identifier:
keyid:35:E8:4C:06:3A:21:80:B2:3F:5F:6D:31:62:A7:5B:30:92:F5:C1:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NehMBjohgLI_X20xYqdbMJL1wY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:f1:2b:bb:01:e5:9d:56:a4:28:67:84:5e:61:6c:59:08:ed:
0e:47:a7:14:72:7e:9c:bc:2e:78:ee:06:a0:87:54:11:5e:26:
5d:ad:95:96:9e:11:31:15:c2:e7:3e:33:86:93:93:90:06:c0:
11:54:e6:53:9a:d6:a3:b8:2a:55:8d:19:2f:4a:80:41:40:ed:
5d:4c:13:79:96:82:0f:0f:e8:67:9f:d7:8f:a7:8a:8b:0d:1b:
7e:fe:24:52:17:fb:d9:8c:1d:fa:29:16:46:51:29:11:7f:60:
dd:b0:d5:2a:e4:17:a7:7e:5b:a2:d7:f8:54:d3:fe:16:85:5e:
98:3d:c4:ef:2b:66:9f:9a:ba:1a:46:7a:9f:cc:b0:1d:23:8c:
1a:f9:22:ef:e5:ff:bd:29:44:60:68:5c:09:b3:87:a7:d7:3a:
8b:54:55:49:c6:57:cd:e1:21:23:00:3c:84:d8:b7:85:7e:b1:
93:c6:22:b4:3e:e7:e1:98:ac:ba:9a:bb:94:7a:c6:48:ee:2f:
ad:51:d4:50:f5:43:32:2f:55:93:71:d9:f9:6b:68:1d:d7:4c:
ec:c9:87:21:ce:56:e6:6c:ab:87:b5:20:81:dc:c2:4a:46:14:
ef:d6:6f:55:61:e9:be:e8:2b:65:62:16:3d:8a:2c:42:83:c8:
b3:1a:eb:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:25:48 2025 by rpki-client