Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
File: NgHDzOanHKshpLut8KuE3ePyurI.mft (raw, json)
Hash identifier: qBeLHpgcVyjc8x0h7B4YrthKAyzOkWDkAbdJg+bU8fA=
Subject key identifier: 77:4D:BA:89:04:8C:AE:BA:C2:F8:5C:29:B1:40:80:2C:5E:0F:2A:3E
Authority key identifier: 36:01:C3:CC:E6:A7:1C:AB:21:A4:BB:AD:F0:AB:84:DD:E3:F2:BA:B2
Certificate issuer: /CN=3601c3cce6a71cab21a4bbadf0ab84dde3f2bab2
Certificate serial: 0197B6A15B44152469DCB4AE5603F2972514
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
Manifest number: 15B8
Signing time: Sat 28 Jun 2025 13:01:57 +0000
Manifest this update: Sat 28 Jun 2025 13:01:57 +0000
Manifest next update: Sun 29 Jun 2025 13:01:57 +0000
Files and hashes: 1: Mk7YYF4o9LB74wKwKgBbcKzvyH8.roa (hash: OCqXIpcMD6jOp7DHnSx2liWfa4cjdFDkG92oQWOUUNo=)
2: NgHDzOanHKshpLut8KuE3ePyurI.crl (hash: izhzfP5v9HGdXIpAfPK1Ow9WWbwS30VGJ9FnUv5B7nQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:5b:44:15:24:69:dc:b4:ae:56:03:f2:97:25:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3601c3cce6a71cab21a4bbadf0ab84dde3f2bab2
Validity
Not Before: Jun 28 13:01:57 2025 GMT
Not After : Jun 29 13:01:57 2025 GMT
Subject: CN=774dba89048caebac2f85c29b140802c5e0f2a3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1d:e4:94:a4:b2:2d:1f:36:a4:00:a5:3e:fe:
52:6a:e9:5c:7c:20:5d:35:67:2f:9d:c6:90:4f:c1:
e7:07:48:dc:4b:26:75:73:92:9c:86:44:73:83:20:
be:a5:c6:ba:be:76:64:6f:20:9d:06:80:0c:ab:3c:
c0:80:7c:2b:e2:65:33:5a:6a:91:e2:bf:43:79:c4:
56:46:23:9c:ef:29:f5:d2:b2:69:2f:8e:ee:a9:4c:
3b:12:b7:c5:79:01:df:75:0d:6a:80:5e:c1:d3:87:
aa:51:ca:76:6b:6d:35:fc:e1:60:95:aa:0a:98:e1:
92:50:46:a4:38:1c:55:85:9b:83:ba:65:f3:79:be:
cb:8b:09:d4:0a:43:b9:d9:17:38:f3:a6:23:34:87:
ec:f6:7c:99:94:25:fd:61:50:20:44:6c:d5:fb:8f:
6f:6a:d3:e2:d2:e3:74:54:22:0e:e9:ed:96:3a:74:
ea:78:7a:53:ea:2c:79:d3:f4:45:59:41:83:ee:87:
86:6a:aa:04:08:c5:51:ce:7d:0e:dc:41:b2:3b:60:
9e:8b:b7:c0:95:48:32:fb:d5:02:c3:41:c7:43:9d:
52:de:5d:df:bf:e3:0e:c1:fa:aa:f4:f6:49:a7:36:
34:bc:8b:28:9f:9a:58:4b:ef:82:1c:bc:ab:41:23:
86:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:4D:BA:89:04:8C:AE:BA:C2:F8:5C:29:B1:40:80:2C:5E:0F:2A:3E
X509v3 Authority Key Identifier:
keyid:36:01:C3:CC:E6:A7:1C:AB:21:A4:BB:AD:F0:AB:84:DD:E3:F2:BA:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:65:d8:87:b7:4e:76:59:85:e2:09:41:1b:6c:fc:86:26:fb:
98:fb:8f:07:4e:94:89:5d:7f:ef:8a:0f:df:fd:88:0c:dd:ef:
67:0c:df:b7:96:ae:cd:2f:08:30:37:7e:de:e6:c3:bb:a9:dd:
d1:24:a3:dc:d2:3c:53:83:b5:24:c1:1c:64:00:e8:3d:74:28:
97:60:35:04:09:e1:b8:a8:ea:ac:b0:19:a8:79:ce:6c:94:c5:
2c:f7:46:df:97:82:05:0e:5d:02:dc:0f:62:6e:3f:88:45:9a:
4f:1d:ad:04:c9:f7:ca:39:e2:6e:2e:a5:20:bf:a2:cb:bc:c3:
5f:6d:52:81:2d:8d:06:11:78:92:65:9f:36:b4:a1:f7:9f:83:
af:65:43:68:c9:9c:c4:89:eb:ad:e1:e3:44:30:72:6f:59:2c:
c9:e2:76:da:f2:78:78:29:e7:02:83:92:5a:b1:0e:c8:64:b8:
be:90:2d:e3:26:5e:4d:1b:ad:80:b3:d5:02:79:02:45:93:22:
a3:17:4b:a3:69:6a:cd:d5:d2:38:40:4e:a7:c9:41:5f:74:39:
4e:2b:23:d3:e2:be:6b:e5:67:84:f5:07:45:12:c2:f1:78:28:
a9:73:30:5f:7b:34:ee:4b:d9:49:1d:49:c6:45:52:22:35:ff:
39:7b:e7:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:06:44 2025 by rpki-client