Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft
File: NmTkRiopAqUvgm2uOFZXMe_FvdM.mft (raw, json)
Hash identifier: 4WRtQwrU8bPh2gLTG1GaFGCtrSOT4LDx4ab2rpeT/fE=
Subject key identifier: B4:E9:F9:D1:43:87:9B:DD:7A:74:64:B1:54:01:71:69:80:20:EC:3C
Authority key identifier: 36:64:E4:46:2A:29:02:A5:2F:82:6D:AE:38:56:57:31:EF:C5:BD:D3
Certificate issuer: /CN=3664e4462a2902a52f826dae38565731efc5bdd3
Certificate serial: 0198D92B8DE42F9E7306CF30E2C1A2940CCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NmTkRiopAqUvgm2uOFZXMe_FvdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft
Manifest number: 159B
Signing time: Sat 23 Aug 2025 23:02:46 +0000
Manifest this update: Sat 23 Aug 2025 23:02:46 +0000
Manifest next update: Sun 24 Aug 2025 23:02:46 +0000
Files and hashes: 1: NmTkRiopAqUvgm2uOFZXMe_FvdM.crl (hash: NRz6A0g5W/s5SHAQ+s9JJ/GQ4a//jWMCPzU8/MBGeW0=)
2: bRSiH3Ltu0n345442eKdUINyK3s.roa (hash: WObRy2TpZce8N0K21ZTeL8NwUXrbmFADn/Y+S73z7rk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NmTkRiopAqUvgm2uOFZXMe_FvdM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 17:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d9:2b:8d:e4:2f:9e:73:06:cf:30:e2:c1:a2:94:0c:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3664e4462a2902a52f826dae38565731efc5bdd3
Validity
Not Before: Aug 23 23:02:46 2025 GMT
Not After : Aug 24 23:02:46 2025 GMT
Subject: CN=b4e9f9d143879bdd7a7464b1540171698020ec3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:48:c1:0f:40:8a:1a:30:e2:d3:54:ef:ba:d5:
26:29:0d:c6:71:73:01:b2:2b:2d:d3:4a:03:e0:54:
b1:93:10:8c:4b:c0:78:a9:0c:d3:fd:64:25:13:0d:
f8:ee:94:c3:c1:60:cf:0f:23:e2:9f:7b:4f:93:03:
40:a0:e0:ec:f1:73:a8:c7:93:a2:38:2f:9e:78:6d:
ad:3a:2b:99:78:db:7e:ee:35:72:97:fb:01:a2:9c:
50:09:3b:7f:9a:cd:e8:4e:a0:c0:39:7b:e0:e6:67:
b1:2a:d4:d5:f9:90:12:af:72:f2:18:29:f4:70:ff:
c1:c4:62:63:5b:d6:1d:7a:01:65:a1:a0:2e:64:7e:
75:64:60:18:fb:6d:aa:f8:63:36:14:21:55:c3:fa:
aa:27:82:b5:14:08:76:04:29:b3:81:2b:db:52:b4:
73:0f:d5:bf:3a:06:59:03:ff:64:67:80:21:4f:6b:
4f:a0:7a:99:7f:8c:05:77:8a:42:a3:fe:1a:8b:12:
a4:8a:de:4c:26:a4:f4:94:7a:c3:4c:de:e6:8f:ef:
e8:41:8c:da:76:a4:88:9e:2f:f0:79:ef:0c:49:44:
44:28:67:22:1a:80:15:19:53:21:1c:4e:75:15:5e:
ba:de:78:2f:34:34:54:a3:e4:61:d2:ab:83:36:92:
e8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:E9:F9:D1:43:87:9B:DD:7A:74:64:B1:54:01:71:69:80:20:EC:3C
X509v3 Authority Key Identifier:
keyid:36:64:E4:46:2A:29:02:A5:2F:82:6D:AE:38:56:57:31:EF:C5:BD:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NmTkRiopAqUvgm2uOFZXMe_FvdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:0b:b5:43:cd:66:53:e2:04:ca:ea:27:e0:8c:5d:42:1f:9a:
9b:70:a6:ce:e3:42:eb:74:00:6f:8b:8d:33:ed:f5:a3:62:44:
eb:5a:88:54:8c:3a:87:f3:98:08:db:79:60:76:65:22:ba:e3:
eb:9a:c1:02:8a:10:8a:85:e1:80:73:6d:db:f3:11:ce:23:52:
c2:ad:cc:17:06:a5:67:c0:d9:1e:d6:4b:6e:8c:06:1b:66:e0:
1a:57:42:8c:75:c6:ae:18:7c:23:60:3e:61:1c:26:c8:58:86:
f6:b0:73:77:7b:2b:61:32:70:d5:74:fd:86:42:4c:b5:10:28:
db:61:7c:b7:85:72:9e:38:cd:0f:7c:6d:5d:1d:71:3d:da:c3:
12:22:0d:d6:eb:f8:d5:af:12:4a:30:fe:ca:39:a9:d6:80:79:
c5:1c:34:eb:4b:d5:8b:41:23:fe:dd:6e:7b:a2:83:1c:20:15:
4e:5c:1b:78:4f:76:9a:2f:fb:a5:68:82:34:7b:30:7b:b7:50:
16:0a:7a:04:93:31:94:8c:2b:1d:e2:2e:35:a6:06:f6:b1:16:
db:17:09:b4:6e:d4:e0:9e:26:e4:b1:6c:88:dd:62:c0:70:b6:
05:a5:ee:f5:00:34:3c:8f:3f:09:f2:b0:83:d8:3b:59:54:ee:
f5:82:a7:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 03:10:47 2025 by rpki-client