Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.mft
File: NkYhMZiJnt-otCrdRzraIYdI4QQ.mft (raw, json)
Hash identifier: BVBwAI8vGpOp4NgaAF+AB3805J3nGgqW9jDHBcdaTJ0=
Subject key identifier: 7C:F9:87:4A:55:B7:D5:3C:62:6E:FC:44:8B:33:51:71:AB:81:66:33
Authority key identifier: 36:46:21:31:98:89:9E:DF:A8:B4:2A:DD:47:3A:DA:21:87:48:E1:04
Certificate issuer: /CN=3646213198899edfa8b42add473ada218748e104
Certificate serial: 01987CAE1C37BC421ACD436A3D4486B371C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NkYhMZiJnt-otCrdRzraIYdI4QQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.mft
Manifest number: 0B90
Signing time: Wed 06 Aug 2025 00:00:41 +0000
Manifest this update: Wed 06 Aug 2025 00:00:41 +0000
Manifest next update: Thu 07 Aug 2025 00:00:41 +0000
Files and hashes: 1: G2aa7vj-d_CA2HuKW-IASCzWaSQ.roa (hash: pv32os3ZPwMAxeQUj3RBQ+FwWykK77hFOgeqqDGQkeE=)
2: NkYhMZiJnt-otCrdRzraIYdI4QQ.crl (hash: zeOQ0ltw4clP5knlTC5v9qrDiKPLYLWM0ZzkdIjnFbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/NkYhMZiJnt-otCrdRzraIYdI4QQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:ae:1c:37:bc:42:1a:cd:43:6a:3d:44:86:b3:71:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3646213198899edfa8b42add473ada218748e104
Validity
Not Before: Aug 6 00:00:41 2025 GMT
Not After : Aug 7 00:00:41 2025 GMT
Subject: CN=7cf9874a55b7d53c626efc448b335171ab816633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:96:13:96:9b:43:10:31:6c:0f:53:0d:71:5e:
04:54:2e:79:62:cd:91:97:06:d4:b9:54:cd:26:34:
11:16:bb:2c:af:df:0e:2d:37:87:d6:09:93:a2:e7:
da:65:73:01:b0:43:0a:b6:dc:3e:16:b1:82:a3:8f:
4f:68:a1:06:9c:7b:3d:e6:7d:f6:e3:06:7c:2c:ba:
31:d1:cf:a1:2a:0b:d6:c3:43:a8:1a:15:4c:b2:da:
ff:d8:e5:70:a1:30:77:49:da:41:e0:2c:61:33:19:
b5:3d:fc:4d:e4:10:00:f4:5b:32:10:71:01:32:94:
b8:4a:ca:97:bf:c2:40:e6:eb:00:83:23:48:f4:25:
4d:da:0a:7e:9b:f3:ad:d9:40:2f:cd:91:f2:53:5a:
e6:76:33:63:cc:3e:ba:2a:a1:e9:d9:eb:b2:17:b3:
f4:2e:ff:8b:45:81:be:69:aa:ad:23:06:2a:6f:db:
91:1a:fb:1d:9e:9b:8c:bf:ed:fb:fb:13:5c:a9:9c:
3b:08:0c:b4:57:98:5d:c7:64:98:f8:09:7a:54:96:
6f:73:a1:21:f0:87:f0:e8:62:2a:76:c2:a7:89:a4:
24:cd:7e:2b:26:e4:c3:f3:2c:eb:5c:c1:47:04:f5:
d2:a1:fe:72:29:39:5e:4b:10:64:d4:de:33:75:95:
43:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:F9:87:4A:55:B7:D5:3C:62:6E:FC:44:8B:33:51:71:AB:81:66:33
X509v3 Authority Key Identifier:
keyid:36:46:21:31:98:89:9E:DF:A8:B4:2A:DD:47:3A:DA:21:87:48:E1:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NkYhMZiJnt-otCrdRzraIYdI4QQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:da:cb:2b:91:a6:1f:71:45:ea:bf:c3:cf:59:f4:78:ca:57:
b7:46:d4:07:8b:44:02:0b:6a:db:a0:38:29:de:2e:0c:c4:94:
20:1c:fd:9a:bf:5f:e2:47:38:9b:40:e0:43:4c:68:7f:8f:f1:
6d:e8:61:99:66:c3:30:0b:a3:21:7a:ed:9a:4b:f9:d5:44:7b:
07:5b:d4:a1:02:7e:0d:0a:12:b9:35:97:14:8f:85:a6:36:62:
4c:9a:ae:c3:79:46:e0:5a:d2:ff:18:dd:e9:9e:c4:fd:3f:6f:
d5:25:e6:41:67:46:af:9c:7c:51:f2:56:1f:50:0b:55:2d:ba:
e2:ed:f1:04:e4:d9:70:9c:51:f7:59:d2:2a:11:b3:fe:1a:4f:
32:cc:bd:9e:c2:bd:ae:57:61:22:e6:02:72:f7:d0:30:b2:0a:
5d:23:0d:d3:7a:66:9b:89:2d:e9:16:04:5e:b2:68:c4:c0:a8:
68:77:35:44:bd:25:c2:0c:03:98:8d:27:e3:81:7a:56:f1:02:
59:0a:1f:ef:6a:a2:50:cb:4d:48:99:8f:46:97:d3:70:58:7a:
80:71:29:1d:7b:85:8b:d5:6b:18:02:98:96:ef:42:fb:54:6f:
3f:01:67:04:f8:50:35:21:6f:28:ea:37:03:f6:c9:7a:10:91:
35:3e:54:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:35:08 2025 by rpki-client