Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.mft
File: NiQhSOPmNqkDQ_PpUES439udHNk.mft (raw, json)
Hash identifier: lyn6ZoxDUzj5hE/nHwwxMwIX/Nhp6d8IwhO/vA+SD8U=
Subject key identifier: A7:24:0C:D3:4A:BD:D8:D8:EF:44:DD:F0:30:F5:59:67:0C:1E:F0:BC
Authority key identifier: 36:24:21:48:E3:E6:36:A9:03:43:F3:E9:50:44:B8:DF:DB:9D:1C:D9
Certificate issuer: /CN=36242148e3e636a90343f3e95044b8dfdb9d1cd9
Certificate serial: 0198978081CF4E54C480F09DF5418996C83F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NiQhSOPmNqkDQ_PpUES439udHNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.mft
Manifest number: 0184
Signing time: Mon 11 Aug 2025 05:00:38 +0000
Manifest this update: Mon 11 Aug 2025 05:00:38 +0000
Manifest next update: Tue 12 Aug 2025 05:00:38 +0000
Files and hashes: 1: NiQhSOPmNqkDQ_PpUES439udHNk.crl (hash: o2Z5Gn/0ahUaU0aLF7pr92VabePiv89tO4R0xyjL4NM=)
2: zIR-Nz3H2D4s_KM8Bm98PoR8Mws.roa (hash: vxeo0iUuDX5Ze9Stf4uTh6KeWV+Vu5qvbWwTZuqVEFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.mft
rsync://rpki.ripe.net/repository/DEFAULT/NiQhSOPmNqkDQ_PpUES439udHNk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:80:81:cf:4e:54:c4:80:f0:9d:f5:41:89:96:c8:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36242148e3e636a90343f3e95044b8dfdb9d1cd9
Validity
Not Before: Aug 11 05:00:38 2025 GMT
Not After : Aug 12 05:00:38 2025 GMT
Subject: CN=a7240cd34abdd8d8ef44ddf030f559670c1ef0bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b6:ca:1c:5b:ed:f4:3b:1c:c4:bc:65:69:b2:
8b:40:a2:3c:15:03:1b:cd:48:bd:19:2a:95:42:a2:
4d:c7:07:09:c7:bc:b5:cf:83:82:63:db:a2:82:bd:
ba:19:4e:43:a8:68:0a:99:d6:fd:8b:a2:36:33:ba:
c2:bf:de:d0:68:f5:4f:1b:6f:12:b5:43:75:55:b3:
ac:96:1e:71:bd:f9:4f:da:82:fd:60:5a:0a:b4:6c:
85:cb:74:5d:03:05:64:3a:e8:58:04:6e:36:c3:f8:
66:a9:57:0b:f5:1a:47:bc:52:c3:df:f4:9e:49:c6:
6c:e0:ab:70:14:69:66:8f:54:80:60:21:23:11:03:
69:86:6f:1c:93:25:17:81:11:45:d0:5c:c7:0a:68:
ff:19:dd:96:60:7e:a1:a3:93:dc:80:1e:72:88:74:
cd:43:c6:fa:5c:86:31:10:c7:e8:8e:3d:b6:00:47:
77:62:3c:a3:98:15:a2:9c:b5:20:7e:4e:5b:87:39:
77:be:77:83:66:cd:82:97:c5:76:c3:44:d2:7e:02:
9a:9f:74:7c:01:c4:49:74:5e:9c:03:a6:e2:c3:3b:
21:25:cc:0c:e6:a4:6a:d0:1a:d1:d5:c5:2d:8e:25:
67:db:23:1f:47:11:d8:94:8a:32:78:f1:cd:74:ff:
b3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:24:0C:D3:4A:BD:D8:D8:EF:44:DD:F0:30:F5:59:67:0C:1E:F0:BC
X509v3 Authority Key Identifier:
keyid:36:24:21:48:E3:E6:36:A9:03:43:F3:E9:50:44:B8:DF:DB:9D:1C:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NiQhSOPmNqkDQ_PpUES439udHNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:93:c1:8c:e5:0a:8f:69:74:ca:7e:cb:f6:f2:b6:b6:19:25:
ed:af:e2:ad:a9:b7:11:47:75:14:c0:9b:f6:7d:0e:0b:e8:c0:
77:8c:82:87:30:d1:9c:78:d3:80:65:00:e9:e6:91:3e:7c:fd:
e0:e6:da:22:bd:23:1b:70:69:45:8d:4d:ef:b1:44:12:cc:12:
0e:c6:a0:4f:62:82:1c:75:a6:c1:be:17:53:1b:06:53:15:37:
06:c9:47:7b:78:e0:a7:6f:49:4c:af:54:53:04:64:d6:ce:c2:
2c:01:5f:fe:69:0d:3e:44:a7:45:29:60:a5:84:fc:6f:3b:69:
71:15:68:ae:6b:1a:af:c5:e5:9b:3b:b3:af:8f:5c:a0:a8:9a:
dd:23:c4:a9:eb:d4:7f:ee:31:57:a9:ba:0f:83:c3:d5:14:c2:
ee:9a:3b:09:66:61:a7:d1:35:2c:0e:15:28:5c:1e:97:23:2b:
8b:0c:68:d0:9e:d4:4d:e8:ee:44:77:ce:d0:ae:5f:6c:2d:86:
d7:d5:6b:6d:86:00:a6:b9:f1:cf:c2:80:22:35:aa:dd:3d:52:
86:fd:6d:0c:16:6b:63:da:c4:11:6c:bf:b2:72:5c:a5:92:cf:
37:21:5f:d4:d2:dc:5a:7c:1c:2c:5b:52:2f:58:c0:43:ef:49:
d0:8a:34:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:25:51 2025 by rpki-client