Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.mft
File: NM-cB0OwPV4EX0bprPToAKnxio4.mft (raw, json)
Hash identifier: 1Q7WNpEgVq/JF+FAjkTMat1+KVQl7/su+wRnQld71VY=
Subject key identifier: CE:43:62:13:D5:06:B6:54:41:86:0F:CE:1A:08:3C:97:47:E8:88:1A
Authority key identifier: 34:CF:9C:07:43:B0:3D:5E:04:5F:46:E9:AC:F4:E8:00:A9:F1:8A:8E
Certificate issuer: /CN=34cf9c0743b03d5e045f46e9acf4e800a9f18a8e
Certificate serial: 0198D4DFD3D0F50F398499843614C717ECFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NM-cB0OwPV4EX0bprPToAKnxio4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.mft
Manifest number: 0B55
Signing time: Sat 23 Aug 2025 03:01:35 +0000
Manifest this update: Sat 23 Aug 2025 03:01:35 +0000
Manifest next update: Sun 24 Aug 2025 03:01:35 +0000
Files and hashes: 1: NM-cB0OwPV4EX0bprPToAKnxio4.crl (hash: AxBrrr0hSx+DI7l9e8eSTNtlbvFsW0hVXZWkRNfEeMo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NM-cB0OwPV4EX0bprPToAKnxio4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:d3:d0:f5:0f:39:84:99:84:36:14:c7:17:ec:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34cf9c0743b03d5e045f46e9acf4e800a9f18a8e
Validity
Not Before: Aug 23 03:01:35 2025 GMT
Not After : Aug 24 03:01:35 2025 GMT
Subject: CN=ce436213d506b65441860fce1a083c9747e8881a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:df:8c:84:27:26:f6:ab:06:5e:0a:52:25:02:
a7:d5:bf:60:76:32:56:39:c3:a8:a7:5c:54:f3:53:
08:79:bf:f8:c1:ba:e0:5d:70:53:62:2d:a2:c2:e2:
96:ff:ec:a6:40:4b:92:52:3b:86:db:d4:db:57:2e:
fc:c8:9d:29:d1:12:fb:20:c1:38:fc:3c:15:16:70:
79:df:8f:67:f3:59:60:05:65:31:86:0c:f3:89:91:
f7:a9:6c:fb:c6:c0:99:28:ae:e2:c6:ef:f3:67:ef:
61:a9:8a:98:ff:0e:7f:6a:23:85:c2:a9:83:82:4e:
82:64:7f:98:f1:af:85:c0:a4:e3:01:00:f6:5a:e3:
9c:7f:f7:9e:18:d7:47:42:cd:66:81:00:80:c9:74:
39:7a:48:0a:32:f1:9a:5c:40:99:39:a0:7a:f5:8b:
ab:03:ee:b7:e6:2b:43:cf:70:75:f7:7d:29:d9:5a:
d2:29:1a:08:a8:53:71:bf:11:78:bd:aa:db:55:61:
f2:74:e7:10:24:9d:b3:d6:e1:f9:ec:4e:1b:f8:30:
23:2c:8f:fd:e3:b8:ea:9d:2a:37:b4:cf:2a:9b:35:
15:5c:a8:32:a5:02:54:24:8a:37:f9:72:9b:b2:85:
78:5d:ef:68:0c:60:41:49:30:30:78:16:fb:56:b6:
21:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:43:62:13:D5:06:B6:54:41:86:0F:CE:1A:08:3C:97:47:E8:88:1A
X509v3 Authority Key Identifier:
keyid:34:CF:9C:07:43:B0:3D:5E:04:5F:46:E9:AC:F4:E8:00:A9:F1:8A:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NM-cB0OwPV4EX0bprPToAKnxio4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:2e:ab:82:06:ba:dc:d7:c7:d2:27:e1:61:8a:67:af:ea:52:
9b:50:bc:72:ba:f1:47:1f:7b:cf:a7:dd:cb:a6:91:8f:e4:d3:
c2:bb:14:63:c7:65:71:da:bd:0b:4c:ba:d2:04:da:4d:0f:ea:
94:19:66:46:b3:7d:d3:e6:81:af:2c:89:11:be:30:e4:51:76:
43:07:fb:5b:d6:0f:02:2d:fa:55:be:58:ce:fe:17:6e:c7:0f:
69:3c:6f:45:7e:ed:cf:f8:e7:c6:1e:8d:07:95:26:55:f2:58:
68:f6:f1:76:31:70:3a:b7:ba:7e:a5:e2:a1:78:c1:fd:03:4f:
f7:a4:a4:86:d8:4a:cb:f4:da:26:37:83:20:fb:cf:72:f9:9e:
03:42:8c:07:c7:d4:bf:97:3a:b1:32:fa:0c:5d:25:50:44:05:
40:4a:a7:69:29:02:d7:ba:6c:f1:02:bb:e8:c0:44:27:46:bc:
99:74:b9:12:cf:d8:d9:8d:1f:eb:c3:54:b0:19:e2:81:37:0e:
64:d9:02:26:d1:d7:81:d5:ae:5d:ba:76:f6:ba:32:ef:a1:74:
dd:03:89:5c:09:e9:58:3c:ad:e5:62:b4:c5:66:d9:92:75:c7:
e7:26:39:ec:1f:59:b1:e1:db:b9:af:07:17:4e:33:a3:98:01:
37:d3:e1:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:49:25 2025 by rpki-client