Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
File: nlf4Q7F__OqpuGNlgf5NVONG3cw.mft (raw, json)
Hash identifier: B9jzm1iaboaeO8val7vm945ZMwdwRZ6gyxYHQS5l2n0=
Subject key identifier: 5F:CF:E8:62:B2:78:DE:D6:D3:C5:AE:0F:51:00:09:1D:6B:02:8E:D2
Authority key identifier: 9E:57:F8:43:B1:7F:FC:EA:A9:B8:63:65:81:FE:4D:54:E3:46:DD:CC
Certificate issuer: /CN=9e57f843b17ffceaa9b8636581fe4d54e346ddcc
Certificate serial: 0197CB39E7282F97B6F988129B78B411C8AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
Manifest number: 0C14
Signing time: Wed 02 Jul 2025 13:00:58 +0000
Manifest this update: Wed 02 Jul 2025 13:00:58 +0000
Manifest next update: Thu 03 Jul 2025 13:00:58 +0000
Files and hashes: 1: IFXNgHuEN8ycsfhuA4dEpX7GYeY.roa (hash: 0NAgcHKOW4VLEuD8zIQn9OzSwjmjjTPr1tkjSBELdjk=)
2: nlf4Q7F__OqpuGNlgf5NVONG3cw.crl (hash: 7OEgEJvNaI2g5+406G+2StqXX1oKV7dEWFQsa9OKgh4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 13:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cb:39:e7:28:2f:97:b6:f9:88:12:9b:78:b4:11:c8:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e57f843b17ffceaa9b8636581fe4d54e346ddcc
Validity
Not Before: Jul 2 13:00:58 2025 GMT
Not After : Jul 3 13:00:58 2025 GMT
Subject: CN=5fcfe862b278ded6d3c5ae0f5100091d6b028ed2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:2a:88:61:39:14:00:17:62:77:98:55:aa:31:
26:7c:5f:22:9c:7a:d4:d6:22:c1:1b:bc:b5:a1:cf:
c4:25:d5:09:16:40:70:1f:60:d9:8b:9f:60:02:06:
79:ca:29:8a:0a:54:8d:21:41:d7:f0:73:2a:37:be:
c2:51:9d:75:37:f8:ff:da:71:61:43:0a:b8:68:8c:
bb:57:cf:a8:c7:50:96:5e:57:cd:f8:3f:cc:c5:16:
f9:c8:7f:f6:bc:d4:bb:b7:c0:73:9d:ab:98:41:5b:
cf:fa:2f:de:a7:8c:6d:c7:1d:fb:5c:6e:83:16:4d:
9f:76:76:c5:cd:ae:50:d7:70:e2:e5:74:ba:9f:d9:
78:a5:ac:ce:63:0b:8f:48:6d:81:e5:d8:5a:b1:eb:
f2:45:c2:4c:c6:69:23:b7:0b:f2:11:5b:99:d7:24:
e5:c4:09:51:e0:59:55:b9:ea:a0:f2:2e:69:24:1c:
08:d1:6f:ab:35:df:7b:81:08:31:24:11:71:cd:9d:
12:12:96:2d:a0:47:c3:9b:e9:13:66:92:43:e8:0a:
2d:91:33:47:26:0f:d8:9e:bf:4a:08:4d:35:fa:66:
a1:92:f8:f0:8b:da:9e:27:f3:ce:13:6a:f8:81:a6:
28:9f:31:37:80:a3:d3:a5:bc:34:f3:13:97:b8:01:
38:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:CF:E8:62:B2:78:DE:D6:D3:C5:AE:0F:51:00:09:1D:6B:02:8E:D2
X509v3 Authority Key Identifier:
keyid:9E:57:F8:43:B1:7F:FC:EA:A9:B8:63:65:81:FE:4D:54:E3:46:DD:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:43:94:bb:16:a2:38:d8:26:5e:7f:09:99:4d:eb:94:fe:81:
3c:27:e4:56:3b:42:61:53:02:c6:9b:36:dd:b0:5b:b5:3b:fc:
94:fe:78:79:b3:66:65:1b:2e:08:c2:d0:88:45:96:bb:2e:73:
8d:ca:78:e9:a2:b6:04:7e:02:25:5f:ea:9e:6a:a0:ac:54:a3:
44:b3:85:b5:e0:a9:ce:cd:14:e0:ab:de:f2:b7:f2:59:60:e3:
40:30:ec:07:ed:09:9a:d7:2b:5d:39:b4:83:64:c7:d0:c1:ca:
db:24:81:fd:ee:2c:f6:ec:8f:81:12:7f:9c:4b:ff:b2:9d:20:
53:7b:bb:79:78:5a:91:f9:6d:31:ca:ad:51:28:ce:5d:99:27:
5c:69:8d:b3:ab:8b:19:00:a4:b0:db:ab:0e:f5:e0:25:fb:27:
7d:7e:55:57:d4:3a:f2:78:75:38:59:6d:87:16:a3:34:a8:e5:
32:a4:55:78:62:b0:88:8e:18:23:31:09:6f:42:50:a9:a7:76:
54:8b:39:e0:9e:34:d6:0a:98:94:c4:3c:1c:16:8b:77:2c:40:
e8:bd:78:a3:0a:98:23:32:aa:84:9d:09:62:1a:96:6d:b5:dd:
81:19:15:2f:f8:4d:8c:ce:aa:e3:56:ec:1a:42:2b:41:1f:cb:
fd:0c:22:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 21:25:25 2025 by rpki-client