Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft
File: N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft (raw, json)
Hash identifier: sTD4QusVHyGdKKz6o6n1pkabF1zBAX+pHDfbwb1a5Mc=
Subject key identifier: 9B:E3:C5:2B:7F:50:A6:F7:87:CE:DF:24:4A:50:C2:2E:08:28:07:87
Authority key identifier: 37:63:E4:5B:81:64:93:CC:DB:DD:4B:07:70:8A:21:FB:73:A1:E5:99
Certificate issuer: /CN=3763e45b816493ccdbdd4b07708a21fb73a1e599
Certificate serial: 0197B7B31E96C9E7A6053CE0DBE5B0B96FC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft
Manifest number: 0668
Signing time: Sat 28 Jun 2025 18:00:58 +0000
Manifest this update: Sat 28 Jun 2025 18:00:58 +0000
Manifest next update: Sun 29 Jun 2025 18:00:58 +0000
Files and hashes: 1: M2-x0b6h_vGkWR8MeQS23lu97CU.roa (hash: 3mmEcfVqYQ+5prex0V/rqUj30uad1M5q1mUqvz+8XW8=)
2: N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.crl (hash: SI92ma87mUJ5XbWYX5irZfeJo7+PO98t20xQMhJnCwM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft
rsync://rpki.ripe.net/repository/DEFAULT/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:1e:96:c9:e7:a6:05:3c:e0:db:e5:b0:b9:6f:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3763e45b816493ccdbdd4b07708a21fb73a1e599
Validity
Not Before: Jun 28 18:00:58 2025 GMT
Not After : Jun 29 18:00:58 2025 GMT
Subject: CN=9be3c52b7f50a6f787cedf244a50c22e08280787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:45:13:58:ee:ef:2c:72:11:59:71:66:67:90:
8c:83:33:56:78:32:c0:26:db:c6:78:84:6a:1e:09:
83:7e:23:58:5a:3f:f5:88:2f:8c:34:53:c3:6f:6e:
96:67:e5:a4:51:c6:8d:a3:df:56:b8:25:e5:06:2f:
4d:4f:6f:2a:ed:2c:85:58:23:c9:29:0e:53:0e:52:
87:0a:14:6e:35:98:e7:cc:2e:26:16:96:c7:f2:ef:
e2:f8:b5:fc:64:1f:43:85:a4:70:f8:bb:95:18:f2:
0d:86:e1:1e:bb:b3:49:5f:04:da:20:fb:8c:25:75:
62:fb:49:56:19:5d:f6:31:29:a4:c0:23:e0:41:3a:
1b:d4:35:3e:91:32:8e:89:0c:94:9a:53:c2:10:2e:
07:24:e4:a8:b6:6e:ad:90:e3:d6:47:99:e7:9c:f5:
bd:a1:20:4e:04:38:c2:8d:aa:55:89:52:4a:a7:c9:
00:32:56:18:75:33:28:ce:0c:1a:16:d3:08:75:96:
51:04:eb:92:c9:43:21:6a:be:ef:04:ea:c3:69:23:
25:f2:34:9b:b8:75:9d:5b:2a:b4:0c:94:33:2c:52:
8f:f6:41:7e:c6:c0:21:75:57:9d:86:c9:71:85:03:
68:de:58:52:a4:fe:24:77:62:6d:97:bc:2a:28:e0:
40:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E3:C5:2B:7F:50:A6:F7:87:CE:DF:24:4A:50:C2:2E:08:28:07:87
X509v3 Authority Key Identifier:
keyid:37:63:E4:5B:81:64:93:CC:DB:DD:4B:07:70:8A:21:FB:73:A1:E5:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:38:c9:9d:7d:fc:a0:fb:c9:ab:c8:96:0e:78:34:b6:3a:28:
79:c5:17:28:4b:12:99:39:4d:a9:94:9e:ca:97:1e:08:f4:56:
2a:2a:14:99:0d:f5:03:d1:74:fc:a7:c8:c1:fb:c8:c5:c3:70:
f7:82:b3:42:b7:47:11:23:8a:69:29:d6:44:47:a3:e8:22:29:
6a:49:4d:ef:3d:88:de:69:c3:39:4e:c5:4f:57:6a:9a:48:03:
77:ce:2b:9f:34:9c:d9:b0:ec:8c:9f:8d:02:e4:2d:c8:1e:43:
8c:44:e8:00:19:4c:f1:82:87:c5:fc:4f:7b:5d:c8:56:0e:fb:
37:bc:b1:71:b5:66:49:cc:d7:05:aa:17:cd:40:f9:a2:5a:fe:
3f:1a:3e:71:b3:3f:c5:e2:f1:46:d7:f9:6b:33:a0:44:56:d2:
ec:04:04:92:7d:72:22:cd:b3:f5:3b:3b:96:c3:ef:ab:43:34:
b8:a5:e0:49:7e:74:9a:4c:79:33:8d:8b:5d:a5:f5:88:dc:e9:
15:37:fe:c7:58:06:30:c2:de:07:18:e4:b3:f0:db:90:f8:58:
3c:f8:0e:09:3d:5f:32:16:c9:18:1e:8c:b6:4a:64:4c:30:4f:
a6:f2:27:95:12:ea:88:60:a2:bf:06:c9:c0:d6:40:d9:91:05:
ff:0c:5e:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:54:35 2025 by rpki-client