Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
File: Nia55ERl8L1xPAoeBQED05EdzWc.mft (raw, json)
Hash identifier: ijEzQrUoNx+3CMTJc36cehd5UcsK4roWF956yTOWKVo=
Subject key identifier: DB:51:21:F9:A7:C3:A1:9F:80:C1:64:91:CF:BD:D7:00:FC:B1:ED:B0
Authority key identifier: 36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
Certificate issuer: /CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Certificate serial: 0198D660053C0B0AB46654C354C20C9ACAA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
Manifest number: 0C2F
Signing time: Sat 23 Aug 2025 10:01:13 +0000
Manifest this update: Sat 23 Aug 2025 10:01:13 +0000
Manifest next update: Sun 24 Aug 2025 10:01:13 +0000
Files and hashes: 1: Nia55ERl8L1xPAoeBQED05EdzWc.crl (hash: As+9qHyTx+PvBKRqNnpO3eIAAArXQyX/L4S2JFeOgtE=)
2: ijM-M3pW5i9OPaVJ9z7pdR0nkfo.roa (hash: BaCHQlpNW/709AUvEnmAV++DQu/RFZCpGAAySqc5kGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:05:3c:0b:0a:b4:66:54:c3:54:c2:0c:9a:ca:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Validity
Not Before: Aug 23 10:01:13 2025 GMT
Not After : Aug 24 10:01:13 2025 GMT
Subject: CN=db5121f9a7c3a19f80c16491cfbdd700fcb1edb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ca:83:d7:64:ad:fc:d6:df:47:ea:80:15:d8:
bb:58:86:16:44:45:78:46:d4:4e:dd:50:d4:ce:98:
dd:92:af:4e:b5:32:38:8e:ee:53:7f:8f:74:c6:98:
f6:0e:d2:ab:9f:92:21:be:41:e6:00:b7:34:60:89:
06:f3:b7:0b:85:86:2d:f6:19:04:49:bf:fd:ee:3d:
b7:78:66:e9:d7:58:d5:d8:ae:db:4d:31:0f:09:90:
10:a4:70:da:af:08:7e:fd:29:7d:bb:84:b0:7e:24:
e7:59:2e:a7:70:21:0c:a6:04:64:b4:05:ed:36:93:
eb:bf:e2:88:00:31:c1:f1:e8:d8:2a:e5:f3:0c:3a:
73:42:b4:31:84:93:e5:c4:c0:d0:28:f6:75:74:b3:
be:7b:87:35:36:9a:40:fc:32:d1:fa:a1:82:d8:6c:
bf:37:62:06:12:25:b7:53:1a:c8:30:78:ba:97:80:
c0:c4:09:0a:de:8c:9f:55:24:6a:47:05:cc:5f:5d:
4c:65:55:c7:d3:db:e0:8e:34:d7:6b:9b:77:fc:f0:
31:45:e7:bf:ed:63:b7:65:76:16:ff:47:f0:9d:a5:
d4:0f:0b:2f:2c:c0:6e:6e:d1:bf:39:86:61:0a:20:
de:c7:42:c4:7e:68:08:91:57:ec:cb:d3:4b:29:4f:
80:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:51:21:F9:A7:C3:A1:9F:80:C1:64:91:CF:BD:D7:00:FC:B1:ED:B0
X509v3 Authority Key Identifier:
keyid:36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:e7:a7:c1:f5:63:65:47:61:68:fa:75:ab:c4:0a:0b:72:cb:
32:4d:30:7c:bf:98:23:e1:8a:04:f6:81:01:74:61:00:62:57:
6a:ed:1b:ee:61:fd:32:80:ff:9d:70:7e:5a:19:bb:1c:5f:26:
c4:1a:d7:77:9b:8b:19:70:8d:63:d9:4a:5c:45:f4:88:c3:48:
51:18:61:9d:6f:aa:7e:0c:f2:85:6a:41:e6:5f:9c:7f:db:f0:
1c:a6:ca:c3:92:7f:22:ee:5b:d8:bc:6a:93:ff:5c:fb:0e:02:
2a:e7:4a:4a:4b:dc:28:9e:d3:1d:01:81:1b:a6:bc:69:41:7e:
bd:ac:8d:5f:4f:e6:35:ee:b2:06:e3:ee:cd:ff:53:da:54:ff:
63:21:b1:77:97:50:75:ee:b1:ce:36:fb:aa:06:b2:7a:9c:a3:
a2:f3:75:13:a8:6a:f9:32:f0:be:ec:6a:78:81:50:e6:b7:cb:
66:1a:e0:bc:3e:e4:e2:73:72:63:a3:e2:7b:5b:b5:24:b1:b0:
f1:c3:7d:d5:3b:aa:2c:a3:1d:b1:a1:3e:86:8f:fa:66:ac:6f:
4c:e2:e2:1e:1b:0b:64:c2:b1:53:c0:07:23:38:2e:d5:f8:ea:
f3:e0:0a:a4:4e:47:29:15:51:29:bc:2a:ff:ee:4d:0a:8a:63:
68:d0:0b:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:02:08 2025 by rpki-client