Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
File: NTPUOQNczcXww50bP7FhlbVV_KM.mft (raw, json)
Hash identifier: XJ8l37nLHfj03JLz6uK1pGNu9ZR8Az3bBNHu9oWuZvg=
Subject key identifier: D3:56:BE:DC:C6:30:1C:40:6F:C8:5F:F7:B0:81:FA:D4:A6:18:86:61
Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Certificate serial: 01988FC70E72839F7D496574E0555288D418
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
Manifest number: 0B1B
Signing time: Sat 09 Aug 2025 17:00:43 +0000
Manifest this update: Sat 09 Aug 2025 17:00:43 +0000
Manifest next update: Sun 10 Aug 2025 17:00:43 +0000
Files and hashes: 1: NTPUOQNczcXww50bP7FhlbVV_KM.crl (hash: sFRni89CZmyJ9mZ8KJru34SyMCAOHbjHfX4EDTvEUBo=)
2: rAVoUvT6eIAoJ9DaPocwQDvvkoc.roa (hash: 1BFZOwvrkIRFql6imBqxsdk52Ly1yvo/6JadLNNcDZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 17:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:c7:0e:72:83:9f:7d:49:65:74:e0:55:52:88:d4:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Validity
Not Before: Aug 9 17:00:43 2025 GMT
Not After : Aug 10 17:00:43 2025 GMT
Subject: CN=d356bedcc6301c406fc85ff7b081fad4a6188661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:35:2d:73:15:13:54:43:ce:5c:95:09:90:d1:
74:84:1f:1c:d4:e4:a2:01:02:04:90:c5:af:70:d3:
41:ac:eb:a4:a8:a3:ab:f6:21:01:4e:17:ba:e5:dc:
a3:ce:ed:2e:e6:c3:b3:ed:43:1c:5b:6c:6a:c1:f7:
68:0f:83:42:f9:0b:c4:15:54:17:47:89:21:22:ab:
35:3d:d6:c7:cb:e0:f5:c8:7a:c7:57:91:a1:a7:36:
3e:ed:3a:82:0c:fb:e7:9c:03:48:74:7c:83:1a:53:
ca:40:ff:23:01:ad:b0:ee:44:d8:9f:66:7d:dd:a7:
f7:c1:58:a4:09:ae:4d:5d:0f:13:4a:16:82:67:95:
1f:5e:20:c8:2c:80:e4:c9:cb:e4:bc:e7:2a:71:f5:
b1:60:fe:e2:ad:d3:47:4d:5f:5c:76:17:0b:f3:4a:
1f:2a:c3:fe:0d:a8:59:ac:18:26:ed:30:c3:3b:1a:
1b:8d:2f:ad:c0:d2:b6:21:3a:d0:6c:13:52:45:3a:
81:18:86:62:21:b2:1b:e6:7d:7e:31:a3:75:63:f7:
67:14:41:c3:38:12:15:6b:50:c0:30:13:5d:e9:0e:
52:b2:b5:dc:f7:50:e2:af:56:1e:60:38:31:bc:7c:
94:43:c6:27:e3:2c:3d:31:e6:9a:59:8d:5e:9e:57:
9f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:56:BE:DC:C6:30:1C:40:6F:C8:5F:F7:B0:81:FA:D4:A6:18:86:61
X509v3 Authority Key Identifier:
keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:bf:60:52:28:34:26:22:4a:ae:22:c5:ff:89:5b:77:93:05:
fe:49:56:47:d1:6c:b8:51:e0:78:0f:02:f7:35:b0:ef:1a:f8:
b2:70:67:5e:f2:28:4b:a7:ad:38:f1:00:fb:12:17:2c:20:67:
9e:c3:39:d4:55:8b:a8:94:3e:c2:4b:83:59:ca:59:ad:d1:24:
3d:38:93:df:57:87:be:10:6e:f6:e9:da:3f:b2:48:71:fc:c6:
c5:80:6c:05:ef:ec:3e:b6:08:71:d5:e1:69:66:34:1d:90:e0:
d6:05:af:0c:4b:86:49:43:3d:15:70:f5:79:ed:95:41:df:42:
73:95:4e:9a:9d:df:41:bb:21:49:c9:68:94:20:23:c6:19:f0:
f9:71:c1:9e:32:08:6f:b7:08:5a:23:3b:69:4a:eb:cb:98:05:
58:36:b5:90:2c:22:29:ac:2b:1d:ec:5d:67:8d:5d:34:40:21:
12:7b:db:f2:c4:0e:fb:87:b8:5f:63:7c:0b:2a:d0:e9:08:c7:
2f:ed:f8:40:dc:12:d5:6f:31:54:e4:14:17:11:67:f2:b0:39:
41:18:97:27:50:4a:5f:69:77:7b:f3:9d:59:13:7a:e7:11:17:
22:91:67:b1:2e:5d:9a:30:0b:d4:8f:24:fa:27:91:59:66:fd:
ad:9e:f6:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 03:49:41 2025 by rpki-client