Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft
File: NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft (raw, json)
Hash identifier: fvYea5eqIR3FOWT5xaOurUJNEkXUJYpTgzPVeGXliac=
Subject key identifier: 5E:E7:27:74:1A:C4:86:35:5A:53:31:68:01:37:F6:87:B1:02:BA:F5
Authority key identifier: 35:14:FF:67:F3:B8:D4:F6:F6:BD:A2:3E:CB:BC:7B:0F:09:FE:60:80
Certificate issuer: /CN=3514ff67f3b8d4f6f6bda23ecbbc7b0f09fe6080
Certificate serial: 0197B6A0C53AEA3971EC69AC68C6EFE8D93C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft
Manifest number: 0F1A
Signing time: Sat 28 Jun 2025 13:01:18 +0000
Manifest this update: Sat 28 Jun 2025 13:01:18 +0000
Manifest next update: Sun 29 Jun 2025 13:01:18 +0000
Files and hashes: 1: NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.crl (hash: pPGa1M2zkmuVp276/a3w9RFBaWPmK/yUx0NAZCStp0Q=)
2: j7uIJiPhcZxIrIipfuK1rqo935Y.roa (hash: 7J2YXXzcaOGsarNoeRvp5q8jGItI0Hy8Dxn5tPP/JpQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft
rsync://rpki.ripe.net/repository/DEFAULT/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:c5:3a:ea:39:71:ec:69:ac:68:c6:ef:e8:d9:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3514ff67f3b8d4f6f6bda23ecbbc7b0f09fe6080
Validity
Not Before: Jun 28 13:01:18 2025 GMT
Not After : Jun 29 13:01:18 2025 GMT
Subject: CN=5ee727741ac486355a5331680137f687b102baf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:96:01:16:05:08:df:8f:f4:63:d3:35:cf:d2:
d3:15:f1:fc:8b:ac:a6:08:e9:bd:3d:2a:c9:bc:6c:
60:61:1c:3c:50:b6:62:51:cb:97:71:cd:ca:07:2a:
64:4f:52:76:73:65:b2:f5:9d:85:db:8d:da:39:38:
93:f0:2f:8a:d4:46:10:65:71:75:2d:43:b4:59:de:
8f:60:59:c8:f0:ae:af:8c:4d:0e:aa:0a:0e:6a:e9:
4f:d2:ae:7f:71:a1:b9:78:07:d7:c6:b6:4f:71:f5:
e7:5f:c4:dc:5b:06:2e:9d:89:da:8a:70:80:6f:28:
b2:f2:ab:10:62:e1:e9:71:ec:ec:c1:e7:3e:54:d5:
d8:59:96:39:34:7c:15:73:b7:dd:14:77:ca:69:8f:
6d:c8:62:b6:0a:c6:75:95:64:38:55:37:d8:12:39:
76:4f:35:15:e8:ab:4e:f3:e5:66:d4:3b:e6:44:49:
90:2c:93:a3:75:82:e8:36:70:8a:dc:a8:87:ce:2e:
e3:e2:e7:5f:f7:f3:0b:40:a3:4e:61:2a:6b:6d:26:
b6:33:68:89:d4:13:dd:d9:00:27:96:6b:2d:f9:37:
99:a8:f0:62:5c:9c:56:c0:25:ba:31:11:5d:a8:33:
70:e3:05:5f:69:24:63:d2:59:27:b9:65:30:ca:80:
28:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:E7:27:74:1A:C4:86:35:5A:53:31:68:01:37:F6:87:B1:02:BA:F5
X509v3 Authority Key Identifier:
keyid:35:14:FF:67:F3:B8:D4:F6:F6:BD:A2:3E:CB:BC:7B:0F:09:FE:60:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:45:dc:6f:85:48:4a:3f:cf:61:39:7c:c8:73:21:e3:b6:aa:
36:71:78:54:f5:44:6e:ac:74:8d:12:c9:a4:dd:11:31:38:3c:
fd:12:26:10:90:d5:d9:65:81:ec:11:cf:d2:57:82:c6:bd:6c:
39:0f:46:da:c9:5a:f4:32:ca:ff:11:78:c8:5c:1b:a4:3e:e7:
58:a5:18:12:fe:c3:26:7f:ad:4a:c0:5b:81:10:32:54:e1:32:
16:a5:e5:69:66:f4:15:8a:55:1d:71:00:0f:46:6a:65:a1:98:
1a:26:52:1a:b7:a9:d1:29:b4:7b:da:17:6f:4e:61:56:09:1c:
63:c9:fe:c5:3f:2a:1b:71:b2:4a:a8:69:1e:bb:b4:0b:38:87:
3c:f8:3c:ea:1b:07:39:ad:a0:23:f0:cd:9f:c0:91:9d:68:15:
2e:3e:06:b0:b4:0e:88:f8:06:0f:4b:f5:6e:bb:c2:8a:72:38:
29:4d:39:94:73:a9:31:5d:f6:d4:0b:06:28:e4:91:9b:a2:c3:
68:34:59:2d:b1:d7:29:cc:3c:c6:42:a8:07:be:b2:5c:83:13:
d0:8c:93:63:c3:b8:82:4f:25:12:9a:57:20:e8:5b:ae:54:ca:
e5:44:7a:77:01:bb:12:cc:b7:17:a7:d3:26:74:06:c3:57:53:
97:6e:90:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:19:20 2025 by rpki-client