Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/afd71b-0268-4409-a383-584a76399414/1/NJxIN9k5hA1fbHSqwINm70v-SHQ.mft
File: NJxIN9k5hA1fbHSqwINm70v-SHQ.mft (raw, json)
Hash identifier: J8B7c08brXpiCRQLLldSPra5UioZkHFPfBTXkFPOG/4=
Subject key identifier: DA:13:99:6A:7A:75:65:C7:39:19:C9:89:2A:3A:E9:6E:BF:94:3C:B4
Authority key identifier: 34:9C:48:37:D9:39:84:0D:5F:6C:74:AA:C0:83:66:EF:4B:FE:48:74
Certificate issuer: /CN=349c4837d939840d5f6c74aac08366ef4bfe4874
Certificate serial: 0197B6A0A224BAB3B5E39CFFA4B2AD5F4F9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJxIN9k5hA1fbHSqwINm70v-SHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/afd71b-0268-4409-a383-584a76399414/1/NJxIN9k5hA1fbHSqwINm70v-SHQ.mft
Manifest number: 01A1
Signing time: Sat 28 Jun 2025 13:01:09 +0000
Manifest this update: Sat 28 Jun 2025 13:01:09 +0000
Manifest next update: Sun 29 Jun 2025 13:01:09 +0000
Files and hashes: 1: NJxIN9k5hA1fbHSqwINm70v-SHQ.crl (hash: 5LPf9BNBlAARJGiLGkYKVdXsBOKX30nWe07KuGlYqkk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/afd71b-0268-4409-a383-584a76399414/1/NJxIN9k5hA1fbHSqwINm70v-SHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/afd71b-0268-4409-a383-584a76399414/1/NJxIN9k5hA1fbHSqwINm70v-SHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/NJxIN9k5hA1fbHSqwINm70v-SHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:a2:24:ba:b3:b5:e3:9c:ff:a4:b2:ad:5f:4f:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349c4837d939840d5f6c74aac08366ef4bfe4874
Validity
Not Before: Jun 28 13:01:09 2025 GMT
Not After : Jun 29 13:01:09 2025 GMT
Subject: CN=da13996a7a7565c73919c9892a3ae96ebf943cb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8e:eb:f4:f3:a7:e3:d7:39:4d:6e:a2:0d:f0:
2b:48:3b:ce:f7:b3:fe:0a:77:e4:15:d1:ef:3f:a6:
1a:73:00:7f:e8:40:da:e7:88:66:99:f8:29:84:cf:
0e:59:40:57:ba:eb:ec:35:3b:c3:1a:1e:3b:9c:53:
c6:f5:a0:8c:32:4e:27:58:dd:fc:94:0d:b8:58:9a:
a2:19:2f:2e:4e:03:f2:4c:83:e5:9f:6b:ff:bb:12:
07:8a:bf:b2:a1:0d:c6:18:5d:e2:b5:1c:0d:fe:35:
f3:82:63:12:a5:c7:94:5d:0c:2a:e2:75:36:b1:33:
df:6d:27:00:42:06:81:91:ce:1e:39:fc:d3:9d:83:
24:e7:7a:fc:59:e0:71:8f:42:b0:1d:6f:06:5a:10:
0f:e5:71:bc:47:39:6f:37:8f:ce:9e:34:8e:70:0f:
be:e7:29:ef:d3:18:e3:39:a7:06:bf:37:b9:e4:90:
25:9e:8e:cd:d2:72:72:a6:0f:5e:8b:24:e1:88:da:
d6:f0:48:ed:d7:26:07:b9:04:b4:81:6a:d4:74:8a:
b7:e8:fd:5c:f5:aa:15:1b:96:f3:8d:91:e5:3b:5d:
24:c6:7a:74:62:38:26:b5:72:ba:20:8d:c9:b5:f0:
1f:5a:5d:9f:07:9b:0a:38:26:cc:26:c3:71:43:4a:
52:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:13:99:6A:7A:75:65:C7:39:19:C9:89:2A:3A:E9:6E:BF:94:3C:B4
X509v3 Authority Key Identifier:
keyid:34:9C:48:37:D9:39:84:0D:5F:6C:74:AA:C0:83:66:EF:4B:FE:48:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJxIN9k5hA1fbHSqwINm70v-SHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/afd71b-0268-4409-a383-584a76399414/1/NJxIN9k5hA1fbHSqwINm70v-SHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/afd71b-0268-4409-a383-584a76399414/1/NJxIN9k5hA1fbHSqwINm70v-SHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:c5:40:6b:f2:3b:33:7a:35:93:a8:f9:26:21:c2:e6:c8:c9:
a0:b5:23:89:23:74:bd:00:f4:a6:f2:b8:1f:a9:41:e4:e7:5c:
3d:47:16:04:fb:39:76:df:20:c4:06:42:8a:73:cb:a0:86:cd:
06:fb:95:83:b1:77:f5:b0:f9:4d:76:72:c8:36:1e:81:6b:5b:
15:e1:2d:86:41:66:bc:f2:d5:60:3a:00:57:59:57:90:06:fa:
06:cf:6a:09:2f:0b:2b:02:ea:9b:a8:d2:81:70:c6:80:b7:f3:
bf:cc:b5:5d:3c:3f:57:59:34:51:95:d7:b3:dd:3a:b7:24:28:
a0:1a:3a:12:69:19:2f:34:f1:27:7d:4d:4e:b9:05:d0:65:c6:
aa:11:7d:6c:bf:0b:7e:92:cd:4d:c2:37:17:e3:3b:29:11:a8:
e4:4a:be:c5:27:42:b4:df:af:b5:7b:2a:78:74:3a:c8:b1:bc:
bc:67:d2:b0:a5:ce:e9:47:b1:fd:ea:94:80:56:21:91:f2:b3:
0a:fa:8c:f7:11:17:21:85:44:5c:d9:31:96:2a:f9:10:9a:4f:
84:04:ba:b0:cc:b2:be:da:fd:bd:ad:71:b0:4c:66:31:68:50:
ae:ab:78:77:ac:10:ce:d0:48:dd:9c:94:fe:e1:c2:56:f5:ef:
4b:01:ca:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:52:27 2025 by rpki-client