Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.mft
File: NDK6HG0LAr7-aMyUrp0t4xB6YEY.mft (raw, json)
Hash identifier: XIJ8iz3Rxb/YtMj8seGXAI1MeFfEzxfTRcIQ8Gzesuc=
Subject key identifier: 9D:32:CE:E8:E1:75:26:23:55:41:F7:CF:0E:D2:57:45:F2:49:C5:1E
Authority key identifier: 34:32:BA:1C:6D:0B:02:BE:FE:68:CC:94:AE:9D:2D:E3:10:7A:60:46
Certificate issuer: /CN=3432ba1c6d0b02befe68cc94ae9d2de3107a6046
Certificate serial: 01987D1C56AB395EE67C9F6F3FBD026CBBF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NDK6HG0LAr7-aMyUrp0t4xB6YEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.mft
Manifest number: 161F
Signing time: Wed 06 Aug 2025 02:01:05 +0000
Manifest this update: Wed 06 Aug 2025 02:01:05 +0000
Manifest next update: Thu 07 Aug 2025 02:01:05 +0000
Files and hashes: 1: NDK6HG0LAr7-aMyUrp0t4xB6YEY.crl (hash: F2HtMslG+SkYikcA0ImzyNF2Un8i03RoJ2tNO7lw/w8=)
2: aDRwFZp3Ye9nOga6oqU2-HxOi5Q.roa (hash: 55fN/khKAT7BHMTfK9zjOz/iWjkXrLDgvWhFUwURpbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NDK6HG0LAr7-aMyUrp0t4xB6YEY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 02:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:1c:56:ab:39:5e:e6:7c:9f:6f:3f:bd:02:6c:bb:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3432ba1c6d0b02befe68cc94ae9d2de3107a6046
Validity
Not Before: Aug 6 02:01:05 2025 GMT
Not After : Aug 7 02:01:05 2025 GMT
Subject: CN=9d32cee8e17526235541f7cf0ed25745f249c51e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:57:5b:06:c2:f6:af:be:5e:84:6a:eb:54:cc:
02:4a:21:34:a5:30:81:16:36:72:0f:91:b2:5c:e2:
fc:04:f9:48:7b:d9:a9:a6:b8:f4:31:e4:c2:7f:05:
25:ac:94:64:89:15:74:8a:43:71:40:4a:ea:cd:93:
39:14:6e:41:45:a5:70:3f:02:3e:7e:4b:33:4b:94:
ec:cd:9e:ad:37:69:33:8a:f1:ca:7e:03:7d:83:66:
db:c1:01:68:6a:b1:be:a0:ab:3d:84:3d:95:70:b4:
3f:2d:ab:d6:2d:f8:a9:fb:6a:4e:12:3d:b4:7a:75:
9b:58:20:22:2c:86:c3:19:fc:ac:4a:ee:a8:3d:1e:
57:da:10:b5:15:6b:3f:8e:ca:fa:0f:c6:bb:2e:c4:
52:37:fa:74:ee:db:c6:6b:22:e6:55:25:15:b3:c0:
3d:ba:ed:32:39:cd:da:88:25:cb:70:62:87:93:3f:
52:e6:c2:5a:4a:9e:90:85:f1:c7:5d:7e:0b:b3:c5:
00:8e:e9:74:29:c3:07:a3:ac:f3:a1:b2:e2:78:42:
2e:18:56:f8:eb:b0:1c:1d:9b:90:98:71:9e:7b:df:
dd:df:20:15:8e:5b:6d:32:d7:20:d8:f3:29:56:21:
0b:08:47:4c:24:9f:81:87:bc:a2:e6:ab:87:6b:ba:
2d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:32:CE:E8:E1:75:26:23:55:41:F7:CF:0E:D2:57:45:F2:49:C5:1E
X509v3 Authority Key Identifier:
keyid:34:32:BA:1C:6D:0B:02:BE:FE:68:CC:94:AE:9D:2D:E3:10:7A:60:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NDK6HG0LAr7-aMyUrp0t4xB6YEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:22:8b:e0:26:5c:e6:a6:dd:d7:b2:14:95:56:54:4e:55:60:
d7:93:be:78:20:f2:61:38:ea:4b:c6:5c:c3:4b:6c:b0:7d:ad:
58:72:79:ad:0a:63:f0:94:e7:31:cc:dd:99:0e:7a:e5:22:c7:
18:d8:e4:49:aa:40:9d:4e:81:07:b6:8a:ca:9b:5c:89:97:fd:
45:ec:e3:df:36:15:49:0d:2c:15:b6:ed:45:93:39:93:36:fe:
e7:ec:80:20:c7:c3:d1:12:d6:42:ed:b5:8f:4e:b6:0a:fc:c1:
1d:03:14:e5:ee:b2:3b:2f:5a:8d:65:fa:6b:17:cc:7c:4f:8e:
13:3d:6c:54:a3:f9:54:0b:d8:95:db:f8:28:3c:c3:7b:c3:8d:
07:5d:4d:9a:18:57:77:94:71:87:42:e4:d8:8a:ee:86:80:8c:
f7:60:eb:0f:56:bc:0e:9c:17:7c:6e:33:34:97:fb:ae:84:f7:
2e:35:f4:43:b3:3c:3f:4f:1f:4e:4a:df:5f:29:2a:df:27:71:
43:c2:41:3b:9f:1f:50:6b:9c:9a:85:95:93:0a:be:39:ce:af:
72:c0:64:07:f9:f4:f9:43:84:0c:e4:0d:8e:bf:e0:f6:fe:a3:
86:b7:17:fa:88:e6:83:79:7d:0b:c8:50:cd:03:c1:eb:8d:4f:
c1:20:fa:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 12:26:08 2025 by rpki-client