Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/91070a-0a96-49df-acff-ec567575418b/1/NUgzKLASxNGWj8IF3gJK8vmx2rw.mft
File: NUgzKLASxNGWj8IF3gJK8vmx2rw.mft (raw, json)
Hash identifier: KoR8VRl8LzHhRiaqJLtOrtjzqr4xrkCi95X08x8g9Xo=
Subject key identifier: C4:67:0E:7E:E2:8E:66:EF:15:72:7A:3C:11:7D:EB:06:19:B2:B2:C7
Authority key identifier: 35:48:33:28:B0:12:C4:D1:96:8F:C2:05:DE:02:4A:F2:F9:B1:DA:BC
Certificate issuer: /CN=35483328b012c4d1968fc205de024af2f9b1dabc
Certificate serial: 0198D473C6D61A379D1A72540B083EA8F99E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NUgzKLASxNGWj8IF3gJK8vmx2rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/91070a-0a96-49df-acff-ec567575418b/1/NUgzKLASxNGWj8IF3gJK8vmx2rw.mft
Manifest number: 02E8
Signing time: Sat 23 Aug 2025 01:03:34 +0000
Manifest this update: Sat 23 Aug 2025 01:03:34 +0000
Manifest next update: Sun 24 Aug 2025 01:03:34 +0000
Files and hashes: 1: NUgzKLASxNGWj8IF3gJK8vmx2rw.crl (hash: xZwiBQRxnKUsUXryW4AI9HCTN8i9q/9jXhVRK6SmjEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/91070a-0a96-49df-acff-ec567575418b/1/NUgzKLASxNGWj8IF3gJK8vmx2rw.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/91070a-0a96-49df-acff-ec567575418b/1/NUgzKLASxNGWj8IF3gJK8vmx2rw.mft
rsync://rpki.ripe.net/repository/DEFAULT/NUgzKLASxNGWj8IF3gJK8vmx2rw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:c6:d6:1a:37:9d:1a:72:54:0b:08:3e:a8:f9:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35483328b012c4d1968fc205de024af2f9b1dabc
Validity
Not Before: Aug 23 01:03:34 2025 GMT
Not After : Aug 24 01:03:34 2025 GMT
Subject: CN=c4670e7ee28e66ef15727a3c117deb0619b2b2c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:40:1e:9e:30:20:b3:52:26:99:bc:6e:db:da:
1b:3a:eb:6a:2c:e4:43:ff:80:ad:19:dd:f9:4c:70:
86:e3:18:03:57:f3:3d:d7:f4:d7:c1:ae:6a:58:b8:
31:26:ff:33:13:6b:d2:42:32:7c:ae:42:e9:88:88:
58:30:10:a0:7d:5f:97:37:ad:01:af:4d:f2:9b:43:
de:07:0b:b4:ae:16:2b:da:8b:be:cb:77:3a:4d:4e:
61:5a:e2:fa:f1:d0:2f:dc:82:cd:6a:64:62:fd:a6:
c4:fd:95:9a:37:b1:d4:51:e3:44:ab:c1:ea:69:1a:
40:04:86:88:0e:69:20:d0:9c:49:38:ec:e0:8d:6d:
d3:1a:b5:6c:e9:3d:02:98:1a:dd:ea:2e:2a:0c:a9:
36:53:ed:47:2d:f6:5d:0f:bc:28:32:c5:54:2b:5e:
fd:ea:70:e8:66:0e:0e:a7:60:82:b3:a3:f0:e3:a4:
f5:ab:a1:c7:5d:73:dd:e7:f9:c7:2e:f6:13:20:71:
e7:f6:f5:35:0d:e4:75:92:d4:73:06:aa:5c:bd:ad:
6b:eb:96:e5:28:e5:67:be:a6:05:2c:8c:95:4a:96:
a9:66:ef:96:dc:60:9e:b8:f2:7d:91:c0:4f:a5:47:
84:b5:46:17:b6:23:d3:87:27:eb:f0:78:83:93:ab:
f9:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:67:0E:7E:E2:8E:66:EF:15:72:7A:3C:11:7D:EB:06:19:B2:B2:C7
X509v3 Authority Key Identifier:
keyid:35:48:33:28:B0:12:C4:D1:96:8F:C2:05:DE:02:4A:F2:F9:B1:DA:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NUgzKLASxNGWj8IF3gJK8vmx2rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/91070a-0a96-49df-acff-ec567575418b/1/NUgzKLASxNGWj8IF3gJK8vmx2rw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/91070a-0a96-49df-acff-ec567575418b/1/NUgzKLASxNGWj8IF3gJK8vmx2rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:c7:31:86:2d:53:11:11:1b:d1:f2:e7:fe:3a:a8:71:ff:5f:
a3:4b:8f:61:ff:74:93:8b:38:f7:41:91:08:af:ee:c4:74:1d:
8c:f3:72:ff:c5:b8:b1:83:59:17:a3:7a:ea:b9:60:05:b8:9a:
fb:56:a1:d3:9a:ac:41:1c:ea:2d:37:e1:4f:cd:7d:98:00:c2:
4d:7f:0c:34:c6:de:69:4b:76:ac:7d:e0:1a:33:55:0d:65:3e:
d3:84:c3:a1:b3:23:01:f0:76:5b:a4:30:80:c2:d6:1a:c9:73:
84:29:cf:e5:16:a4:de:da:f7:84:21:9f:ee:b5:8f:1d:e5:75:
fe:b4:70:17:1c:75:bf:d3:98:fa:2e:41:3d:14:dd:d2:7a:f9:
ca:f5:a0:f7:5c:0b:a7:9a:65:68:91:3d:5f:27:4b:b1:24:c8:
e7:e3:0e:9a:2e:3d:33:d6:e6:f5:5f:a0:41:c3:f4:94:e6:11:
d4:c3:70:01:ac:c0:f2:dc:09:61:ab:e3:f3:b2:9c:3f:76:5d:
e4:96:65:e5:bf:b0:8e:c7:8b:e5:c6:0b:0d:2c:6c:59:d5:65:
f6:f1:51:6b:08:48:d2:4e:68:69:4d:c4:c3:bf:6e:2d:d7:fa:
cb:70:90:14:7c:56:ee:3c:4e:fb:d6:df:17:a0:a0:e7:67:30:
07:ee:c7:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:41:45 2025 by rpki-client