Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
File: NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft (raw, json)
Hash identifier: 7oypAl+ItIKNVa9e1IHUVXWU3lySAJqmpZlP630n+Ec=
Subject key identifier: E6:77:7F:D9:0B:E1:97:4C:BD:E6:F7:EA:4F:EF:E2:63:48:30:17:CC
Authority key identifier: 35:D7:DB:AA:75:EF:34:20:D8:D9:45:91:30:ED:01:DC:53:51:36:FB
Certificate issuer: /CN=35d7dbaa75ef3420d8d9459130ed01dc535136fb
Certificate serial: 0198906BB2E6B431A6A4AA1B9392CDAC2CE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
Manifest number: 03F7
Signing time: Sat 09 Aug 2025 20:00:33 +0000
Manifest this update: Sat 09 Aug 2025 20:00:33 +0000
Manifest next update: Sun 10 Aug 2025 20:00:33 +0000
Files and hashes: 1: NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl (hash: +idkcA18PuMCuZx9oJfb60YIdyRnVX/Zc/Ola4OEefc=)
2: okivhnQi7w6GWYPlNEAmkXkmxpY.roa (hash: k4R8rWTOlMy3O5fk1lka5CmGZaX0JQEHHbZQX1i51u4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:90:6b:b2:e6:b4:31:a6:a4:aa:1b:93:92:cd:ac:2c:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35d7dbaa75ef3420d8d9459130ed01dc535136fb
Validity
Not Before: Aug 9 20:00:33 2025 GMT
Not After : Aug 10 20:00:33 2025 GMT
Subject: CN=e6777fd90be1974cbde6f7ea4fefe263483017cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b3:f8:b7:92:56:23:11:66:e8:69:02:0b:55:
cc:9d:ca:e3:4c:4b:07:3f:c7:59:e6:67:c2:3c:7c:
0b:47:6b:fd:7b:7e:95:b7:2d:f5:ca:c8:38:21:9b:
21:77:99:8b:b3:a6:a4:89:d0:2a:41:75:ac:dd:ae:
85:56:b7:38:41:79:0a:bc:44:a6:3a:ee:b9:3c:53:
7a:65:57:74:54:36:b9:ed:35:77:e5:63:19:7b:14:
5e:40:9f:08:ae:6d:c4:8e:13:f7:b3:fc:92:fb:65:
e7:78:fe:6b:0e:3f:7d:e0:03:08:38:27:16:b5:73:
5c:58:65:8b:f4:a1:34:db:ca:e2:c7:96:ec:52:bd:
61:b2:31:a2:cb:d6:0d:ac:74:01:79:10:08:2e:4e:
bb:0b:db:48:28:ab:83:cc:68:c1:0f:f4:b2:db:37:
3f:6d:ff:65:b7:8d:c2:eb:ab:95:24:47:99:fa:e3:
47:7a:1d:fb:d9:99:38:03:6f:3d:6b:ec:2c:5c:27:
78:20:7f:1b:fa:f1:7d:ca:3b:98:4e:3c:3c:53:f6:
3f:b9:4b:c9:bb:60:01:69:d5:eb:ba:41:cd:4b:b5:
41:b7:c3:af:d1:43:d2:b6:a1:5a:5c:af:af:88:81:
e2:6b:13:e4:ac:73:fa:ea:8d:b1:e0:13:b5:c9:8b:
1d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:77:7F:D9:0B:E1:97:4C:BD:E6:F7:EA:4F:EF:E2:63:48:30:17:CC
X509v3 Authority Key Identifier:
keyid:35:D7:DB:AA:75:EF:34:20:D8:D9:45:91:30:ED:01:DC:53:51:36:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:26:9c:94:9a:a5:48:be:2f:cd:cb:47:ea:9f:12:01:53:3b:
de:20:cd:de:82:93:a8:df:ae:ad:a0:ee:5f:35:47:79:5b:c7:
2c:9c:9c:e8:29:c0:8d:32:34:34:14:86:d2:03:ac:63:84:74:
25:c9:51:f8:8b:4d:73:55:c5:84:35:3c:9a:42:40:2f:b1:c5:
df:c7:cd:6a:70:b9:43:cf:5b:83:db:a8:ec:df:b2:9c:a4:61:
8b:48:d6:b2:a0:81:61:85:c1:bf:d4:6a:78:f3:15:ab:28:cf:
22:f6:db:84:9d:43:0e:a9:26:de:a5:6e:1e:8f:b4:6e:71:5c:
c3:7f:0a:b0:05:c1:fe:1f:22:ac:a7:b5:e7:64:6f:60:4a:75:
3b:5e:94:f6:ac:47:39:14:69:b3:99:31:90:5e:e3:03:5b:96:
bd:69:fe:84:6a:c4:32:91:89:1a:73:fc:5d:0d:4f:0a:a5:23:
2c:ff:82:8f:01:31:72:d3:de:8a:c1:a8:a4:f6:f0:61:f9:06:
8a:ab:84:69:6c:f0:90:fb:c6:ea:54:ef:f0:55:2a:22:e1:66:
d4:e7:74:39:0b:f4:cc:de:9d:c0:e9:e4:a3:41:54:0e:e4:24:
f1:54:89:15:e5:76:51:25:a5:e6:de:24:fc:22:27:3c:a6:47:
4d:b0:27:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 04:29:44 2025 by rpki-client