Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
File: NZ8eO4BVHpihb8K7y33YfJoO_iU.mft (raw, json)
Hash identifier: M/nrBCpxip8NdBYDCGaCTNop9459AERmnuOtNEd7oTU=
Subject key identifier: 75:B8:0F:BA:EC:18:1A:32:4D:60:47:59:63:12:BF:23:13:06:A6:78
Authority key identifier: 35:9F:1E:3B:80:55:1E:98:A1:6F:C2:BB:CB:7D:D8:7C:9A:0E:FE:25
Certificate issuer: /CN=359f1e3b80551e98a16fc2bbcb7dd87c9a0efe25
Certificate serial: 0198D4E077BB5E158DD81A60298CBEE0BAB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8eO4BVHpihb8K7y33YfJoO_iU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
Manifest number: 0D75
Signing time: Sat 23 Aug 2025 03:02:17 +0000
Manifest this update: Sat 23 Aug 2025 03:02:17 +0000
Manifest next update: Sun 24 Aug 2025 03:02:17 +0000
Files and hashes: 1: NZ8eO4BVHpihb8K7y33YfJoO_iU.crl (hash: bfy4Qugf3tU66QBXDiCJ14BdnJUY0iR9eKkpg0rOZmo=)
2: WQDK9xlCqpMVg3-ZBWFZfqNRgDU.roa (hash: 5EEZG5yrAU7W8n0dqk+GpepBnaLmDeUxI+tSTrknSrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZ8eO4BVHpihb8K7y33YfJoO_iU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:77:bb:5e:15:8d:d8:1a:60:29:8c:be:e0:ba:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f1e3b80551e98a16fc2bbcb7dd87c9a0efe25
Validity
Not Before: Aug 23 03:02:17 2025 GMT
Not After : Aug 24 03:02:17 2025 GMT
Subject: CN=75b80fbaec181a324d6047596312bf231306a678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ad:7d:3a:7f:19:23:b4:45:62:b7:8d:ed:e8:
8e:ec:f8:c3:a4:63:4b:1d:1f:40:6e:90:ef:61:48:
b6:6d:52:51:23:c6:f2:02:d2:e0:5c:d1:84:ee:71:
6f:b2:8b:80:db:35:b4:58:be:e4:30:44:33:e9:98:
79:5d:c3:6b:e8:4c:75:83:5f:a6:98:6c:0f:cb:5c:
76:3f:e9:6c:b3:c2:84:9e:4d:fc:2d:a1:ed:03:6a:
18:cb:58:2c:ad:b1:7e:b0:f4:dd:c3:22:5c:48:b3:
86:01:ab:85:e0:9e:6a:b3:e4:b0:15:fb:a8:f4:1c:
97:fd:74:9b:f4:f4:dd:b3:77:61:9d:2b:e5:81:c6:
67:b7:b6:a0:e4:c0:d2:06:43:d9:c0:b9:89:ea:9d:
66:d9:6e:d9:1c:20:2f:42:58:72:c6:f1:43:47:42:
90:3e:6f:d5:ae:38:34:26:af:90:ca:d8:d5:24:98:
6f:61:84:80:fb:05:79:ae:f9:a7:7a:4f:cc:ee:02:
3c:45:3c:0d:fb:a2:e9:27:6b:d8:a3:95:06:3f:ea:
87:d4:33:ef:3a:20:86:0a:34:5c:3b:36:24:17:38:
a1:92:25:07:e9:25:5b:7b:f0:ea:71:f9:f9:39:6b:
10:ca:38:a3:01:88:20:19:a8:1e:ca:fd:df:9e:4a:
f2:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:B8:0F:BA:EC:18:1A:32:4D:60:47:59:63:12:BF:23:13:06:A6:78
X509v3 Authority Key Identifier:
keyid:35:9F:1E:3B:80:55:1E:98:A1:6F:C2:BB:CB:7D:D8:7C:9A:0E:FE:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8eO4BVHpihb8K7y33YfJoO_iU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:de:27:bf:f9:97:54:06:e6:6b:5b:0c:ec:c4:2f:5e:fa:07:
b8:9d:e4:80:da:8b:9c:f2:b0:1d:0e:09:1a:e3:da:b5:bf:20:
47:d1:85:7b:cc:8c:e9:a7:2d:70:c6:3c:9a:0b:38:bd:25:26:
90:a5:0a:0d:d8:83:2c:bd:3b:a8:5a:19:17:a4:19:bd:4d:48:
0c:11:a5:d8:04:67:70:9d:f5:3c:46:3a:24:8b:6c:74:4e:4b:
c9:b2:f2:e0:69:05:ab:1b:c9:b1:13:cb:5f:9e:19:ef:28:cf:
4c:c4:33:f1:95:d6:c7:c9:52:7c:28:b4:b6:40:e5:6e:77:81:
97:34:e1:8c:e0:28:71:12:36:7f:6f:ae:8a:d2:b9:9d:6e:e7:
06:74:ba:ab:e1:2f:2e:2a:ef:04:ab:9b:57:3e:55:e7:52:95:
ee:4b:08:39:73:86:04:ce:b9:21:bd:44:24:ea:7a:39:b2:33:
11:83:3a:d5:95:54:bb:2c:70:a6:ea:38:de:3d:27:18:a1:27:
a8:92:b9:ee:8a:f2:25:7e:d8:30:37:30:02:2a:7d:c3:ef:5e:
2e:3c:3a:fa:6d:d4:e3:91:67:e7:f0:3f:fc:42:9a:de:73:79:
a8:28:28:d3:b2:67:49:e9:c1:f1:ca:15:92:8b:48:b9:c4:00:
3d:d5:17:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:42:49 2025 by rpki-client