Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
File: Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft (raw, json)
Hash identifier: U5q4ZCifVFN3gOqy4OB2X+Vhsmm3GCmm0+fGj+X6SFY=
Subject key identifier: C5:AC:C4:F7:8E:82:F0:5F:27:02:0E:EC:D7:4D:7D:91:07:E9:98:7E
Authority key identifier: 36:4D:48:8B:8C:73:1B:91:D4:A5:A2:B9:0A:66:6C:EE:BC:0E:18:C9
Certificate issuer: /CN=364d488b8c731b91d4a5a2b90a666ceebc0e18c9
Certificate serial: 0198D6606425692032468BF5CE9545BCE6E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
Manifest number: 015C
Signing time: Sat 23 Aug 2025 10:01:37 +0000
Manifest this update: Sat 23 Aug 2025 10:01:37 +0000
Manifest next update: Sun 24 Aug 2025 10:01:37 +0000
Files and hashes: 1: Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl (hash: rZ23uUg2ku3xf0OeqZ1N+oJwEREuUzskdd4RmThnwjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:64:25:69:20:32:46:8b:f5:ce:95:45:bc:e6:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=364d488b8c731b91d4a5a2b90a666ceebc0e18c9
Validity
Not Before: Aug 23 10:01:37 2025 GMT
Not After : Aug 24 10:01:37 2025 GMT
Subject: CN=c5acc4f78e82f05f27020eecd74d7d9107e9987e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:e2:53:77:54:d3:9d:5b:61:99:64:80:7c:0e:
a0:13:73:50:17:e7:7f:fd:ee:27:50:cf:a0:19:72:
f2:82:3c:81:9e:8b:5c:f9:60:24:d7:1a:ea:47:8d:
2a:5f:9d:af:55:44:37:03:d8:a6:d8:a0:b2:27:d3:
9e:4a:43:af:60:ce:b9:fc:09:70:87:2e:4d:90:aa:
b7:bd:90:f0:62:0d:c3:b2:35:2b:84:75:43:9e:1c:
c0:73:1c:01:b0:e2:db:0c:fe:4f:72:4b:f2:04:b9:
bd:84:8f:02:c1:0e:80:16:59:69:25:ba:d4:e9:50:
6a:f4:cd:20:5f:06:38:05:3c:b5:b7:67:49:2c:da:
25:3d:d8:bd:fa:ec:07:4f:b5:bc:22:da:c2:c1:03:
37:81:72:84:bd:56:61:f9:c2:52:b6:d4:bb:e2:75:
38:aa:03:60:55:fd:b6:6a:e9:b4:05:05:cd:d4:7f:
36:03:29:1f:97:c0:a3:80:22:5e:12:ab:26:40:24:
15:de:33:40:9e:fc:45:01:36:62:01:50:9a:f4:92:
bf:d0:51:8d:7d:03:ad:0c:52:99:3f:38:59:93:ba:
bc:e1:f4:2d:8b:38:07:f9:78:14:7e:de:0e:c4:b4:
0e:03:ec:ce:82:ea:67:be:05:1b:b6:c3:b6:81:ab:
d4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:AC:C4:F7:8E:82:F0:5F:27:02:0E:EC:D7:4D:7D:91:07:E9:98:7E
X509v3 Authority Key Identifier:
keyid:36:4D:48:8B:8C:73:1B:91:D4:A5:A2:B9:0A:66:6C:EE:BC:0E:18:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:2b:c2:9f:a5:3a:3e:89:de:57:c4:31:2c:8d:85:63:18:cd:
70:6e:ef:ff:a3:e0:90:a7:7b:fd:cc:28:c7:a8:32:ce:0d:cb:
58:da:50:1c:16:e2:7c:ec:34:1c:36:e7:5d:9c:59:e7:29:ff:
5b:ff:4a:6e:ce:ca:2e:94:c8:76:16:4b:2c:f4:b1:6f:2a:81:
88:f3:ca:b5:d1:4e:56:c8:c7:85:65:5f:30:23:de:e2:99:d8:
03:2a:1d:b5:ac:f1:75:1b:b0:53:b0:38:2d:eb:64:1f:36:1c:
c4:43:6b:76:e7:18:3d:3b:22:52:3e:5f:18:31:ed:ba:0b:25:
cf:52:8e:4c:49:5e:7e:b4:94:55:f7:3b:d9:57:80:c5:b2:f0:
79:a7:dc:ee:9e:f0:d7:29:d8:69:74:ae:f4:d2:9d:d2:56:6a:
6e:fd:d0:16:99:1b:a5:72:d4:12:dc:2e:54:06:da:8b:01:09:
5b:95:ae:8c:e7:09:22:ad:d0:17:c6:80:12:f6:e4:32:86:ed:
da:25:ce:0f:29:e5:27:be:ab:ae:03:f5:ce:96:f5:94:d4:02:
99:ec:9e:6d:aa:79:98:b3:b4:3e:ba:c9:eb:0a:f7:0b:fe:99:
5d:a8:ad:72:82:97:3c:71:b1:9c:a2:db:5f:24:66:17:54:25:
ec:c7:57:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:35:43 2025 by rpki-client