Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/de77ae-29e3-4a04-a027-6638c3eb4027/1/NDLzVG3kPONceHHFVLizDvY1wlE.mft
File: NDLzVG3kPONceHHFVLizDvY1wlE.mft (raw, json)
Hash identifier: 3OnIvlZ+wEs+xQV6pBb0VGSA8NwN3OFQlzyxkKtak1I=
Subject key identifier: 7E:E3:62:DE:B1:96:A0:D0:09:FC:71:C0:59:61:26:FA:91:CB:F3:82
Authority key identifier: 34:32:F3:54:6D:E4:3C:E3:5C:78:71:C5:54:B8:B3:0E:F6:35:C2:51
Certificate issuer: /CN=3432f3546de43ce35c7871c554b8b30ef635c251
Certificate serial: 0197718847AC39577AA3F5142F03688911FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NDLzVG3kPONceHHFVLizDvY1wlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/de77ae-29e3-4a04-a027-6638c3eb4027/1/NDLzVG3kPONceHHFVLizDvY1wlE.mft
Manifest number: 0138
Signing time: Sun 15 Jun 2025 03:00:46 +0000
Manifest this update: Sun 15 Jun 2025 03:00:46 +0000
Manifest next update: Mon 16 Jun 2025 03:00:46 +0000
Files and hashes: 1: NDLzVG3kPONceHHFVLizDvY1wlE.crl (hash: IlQV2gpLcp4nlqWXkmnnsTCE2gHm+VqidIE9P5QMAPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/de77ae-29e3-4a04-a027-6638c3eb4027/1/NDLzVG3kPONceHHFVLizDvY1wlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/de77ae-29e3-4a04-a027-6638c3eb4027/1/NDLzVG3kPONceHHFVLizDvY1wlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/NDLzVG3kPONceHHFVLizDvY1wlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:88:47:ac:39:57:7a:a3:f5:14:2f:03:68:89:11:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3432f3546de43ce35c7871c554b8b30ef635c251
Validity
Not Before: Jun 15 03:00:46 2025 GMT
Not After : Jun 16 03:00:46 2025 GMT
Subject: CN=7ee362deb196a0d009fc71c0596126fa91cbf382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a5:67:db:70:cf:bc:1c:67:6e:a3:99:31:a3:
14:14:db:2d:bd:72:94:c9:f5:d8:90:45:c1:78:1a:
51:37:bd:31:11:13:c3:94:54:60:8a:fe:bd:17:75:
90:96:a8:3c:04:7c:73:a1:99:1a:29:a0:85:ec:81:
ad:06:6c:0a:89:b1:f6:41:59:82:46:a0:d0:ae:7e:
b8:e1:41:da:e0:82:21:36:d3:7e:ae:6c:ad:a7:91:
a0:5b:8f:99:c3:a1:fb:2a:94:03:05:f6:b4:a8:76:
16:0c:90:1d:f9:10:41:a2:ec:88:ad:29:72:be:be:
85:7b:0a:7d:de:3f:7b:20:bf:e3:c5:1f:bb:d1:00:
70:f8:0b:33:64:9b:14:18:8f:9e:b1:5f:ed:f2:21:
2b:80:5d:3d:cd:cd:31:6e:47:a2:03:ed:be:90:fe:
46:a2:e7:20:37:5b:fa:f7:fb:71:2b:64:8c:8b:88:
ee:63:3b:ed:21:39:9d:21:a0:7e:59:c8:0c:58:7b:
df:01:94:16:38:da:1e:a5:fb:71:3d:ce:05:d0:7d:
9e:5f:96:b1:d5:0c:1e:47:72:73:c7:cc:95:88:26:
98:9b:b1:4c:03:24:e5:4e:6b:21:c0:b7:54:e6:e6:
89:92:90:84:1f:2e:f2:ba:80:3e:a7:8b:7c:87:a0:
ad:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E3:62:DE:B1:96:A0:D0:09:FC:71:C0:59:61:26:FA:91:CB:F3:82
X509v3 Authority Key Identifier:
keyid:34:32:F3:54:6D:E4:3C:E3:5C:78:71:C5:54:B8:B3:0E:F6:35:C2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NDLzVG3kPONceHHFVLizDvY1wlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/de77ae-29e3-4a04-a027-6638c3eb4027/1/NDLzVG3kPONceHHFVLizDvY1wlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/de77ae-29e3-4a04-a027-6638c3eb4027/1/NDLzVG3kPONceHHFVLizDvY1wlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:67:59:a2:d0:13:54:a3:9d:3c:95:e7:e5:5b:d9:64:2c:5b:
a4:2f:60:a3:75:37:32:8b:80:86:bd:19:db:44:87:94:4a:03:
95:9c:45:e9:a8:4b:4b:05:26:4d:ef:e0:a1:81:67:59:b5:0e:
c5:41:42:07:23:bb:0e:eb:f5:44:32:99:a7:1c:6f:11:79:9c:
f7:db:c4:bc:36:59:aa:6a:3a:c8:0b:8a:ca:3c:58:13:96:77:
6e:9f:71:0e:e8:a8:75:07:c7:3f:1b:7b:28:56:cf:44:e3:38:
99:0e:d0:b4:2b:4d:76:16:75:f9:0c:35:42:a3:91:d9:c2:75:
09:fb:50:dd:61:b7:cb:dc:ee:35:6d:18:f8:97:44:15:b6:8d:
e5:c3:df:e7:43:54:1c:cb:75:6a:c3:6e:8d:b6:b4:a3:e3:a0:
b4:b7:29:b7:cb:2f:10:2d:f2:06:d4:a8:de:c0:6f:37:43:ba:
0f:5e:d7:e0:85:40:96:87:7e:a7:a0:b4:69:aa:bf:e3:68:46:
8e:d9:52:d7:f2:4e:fa:6e:1a:f8:90:f9:46:b5:84:c5:af:94:
e7:ba:7f:a0:7b:df:cc:d9:f6:51:33:a0:9e:b7:f6:8d:c7:e3:
6f:9f:17:f7:89:77:ef:78:e3:d0:d0:29:53:93:1b:14:d6:6c:
13:3a:b7:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:08:12 2025 by rpki-client