Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
File: NQtAztNuMfkF4abo4DxiHp-_yyk.mft (raw, json)
Hash identifier: irxqPrWhadgMd4aXpaN0jrS871Idai/CbNs1H2aB8j8=
Subject key identifier: 30:B3:78:8B:EF:C2:46:79:9C:D0:12:59:E0:49:EF:56:FC:5E:22:04
Authority key identifier: 35:0B:40:CE:D3:6E:31:F9:05:E1:A6:E8:E0:3C:62:1E:9F:BF:CB:29
Certificate issuer: /CN=350b40ced36e31f905e1a6e8e03c621e9fbfcb29
Certificate serial: 019881686834FC11E295049B1ABED7D977E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
Manifest number: 135B
Signing time: Wed 06 Aug 2025 22:02:39 +0000
Manifest this update: Wed 06 Aug 2025 22:02:39 +0000
Manifest next update: Thu 07 Aug 2025 22:02:39 +0000
Files and hashes: 1: NQtAztNuMfkF4abo4DxiHp-_yyk.crl (hash: tuUkXN8Stgjvk8EudvT9bUQvUsjBMpgN/8iQaCVZbKw=)
2: u7-gL9wSp2bGW7DIF24NVuhmOKc.roa (hash: tP75Wdne3vqUbGN0hrtXpkGNXdZlPHZwjnI3xiXFlak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:68:68:34:fc:11:e2:95:04:9b:1a:be:d7:d9:77:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=350b40ced36e31f905e1a6e8e03c621e9fbfcb29
Validity
Not Before: Aug 6 22:02:39 2025 GMT
Not After : Aug 7 22:02:39 2025 GMT
Subject: CN=30b3788befc246799cd01259e049ef56fc5e2204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:dd:c0:64:4b:b3:5f:8b:9d:c0:19:b4:a5:f7:
65:5c:62:0d:00:62:d7:73:37:f5:ec:a9:2e:48:96:
a5:e3:3c:b8:a9:1f:42:2c:10:3c:96:f0:b8:67:c0:
b6:c9:60:d3:98:e2:d3:76:4c:ea:7e:ba:e6:21:e3:
1a:d2:8d:7f:dc:e0:7e:78:ac:0c:10:86:64:22:67:
57:53:cb:74:e3:49:ef:dd:c8:12:54:41:f5:cb:42:
06:b6:00:5a:8f:ae:71:2d:e7:61:14:d6:ec:be:e1:
b5:01:79:37:40:05:a6:8f:9b:62:a6:08:aa:d6:a0:
5f:6d:c2:df:58:40:9a:3a:37:a4:9f:6b:fb:7a:2f:
86:47:2a:3f:a5:a1:ce:6a:08:56:50:bd:07:f6:d3:
5f:1f:09:f1:be:44:18:3f:1f:17:72:58:23:b3:78:
4c:61:eb:d9:4b:13:18:0e:28:9c:ec:07:3b:e7:62:
50:db:8b:3d:fb:35:af:e4:f6:08:f0:59:9f:7a:ca:
22:6f:0e:90:9f:e6:2b:ba:da:63:e6:35:07:6e:0a:
8c:f6:02:71:6d:62:c0:6d:61:46:7c:03:f1:70:28:
a0:41:bb:4c:d0:1e:a5:96:91:20:4c:37:64:ca:c2:
21:db:98:96:2a:db:e9:f9:e8:ff:64:cf:5f:03:d5:
70:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:B3:78:8B:EF:C2:46:79:9C:D0:12:59:E0:49:EF:56:FC:5E:22:04
X509v3 Authority Key Identifier:
keyid:35:0B:40:CE:D3:6E:31:F9:05:E1:A6:E8:E0:3C:62:1E:9F:BF:CB:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:0c:70:b3:c2:1f:a8:a6:59:78:cd:d7:e7:5d:7f:2d:b3:e6:
4e:28:a7:29:48:de:a0:4d:3e:21:4b:ee:dd:df:32:f4:e4:a3:
48:b4:3b:b0:b4:51:3d:74:81:31:4d:05:b2:97:be:c0:6a:2f:
b4:a8:07:4f:0e:72:5d:8d:c7:55:d7:10:19:c3:76:2c:95:01:
a6:c4:ab:36:02:ce:f4:ab:f2:79:ef:7b:95:15:f5:d4:f5:4a:
e9:66:b0:6f:89:27:46:de:9d:77:ca:4c:96:85:45:c0:a6:30:
6f:b7:5b:ce:50:74:5e:f6:21:52:47:b0:18:ae:70:eb:08:c7:
5c:d7:0c:ad:e9:e4:70:8b:b0:fe:b0:ad:44:c9:b9:73:2d:ea:
5d:5a:c9:f8:bb:fc:38:8a:99:ca:c7:c8:3d:e0:61:d1:14:bf:
6f:7d:41:2c:48:69:e7:39:e6:c2:12:67:66:06:1e:ff:98:8e:
40:67:cd:dd:50:36:27:c5:6c:b8:13:c2:03:ad:7c:85:e2:be:
69:70:be:24:8e:74:ac:b1:43:e0:65:c9:6c:3a:71:4e:87:3b:
97:7c:20:6c:60:b0:fb:64:bb:79:21:ec:58:18:a6:da:31:2b:
ac:0a:c0:65:01:2b:85:a3:db:08:6a:bd:88:8b:42:dc:44:3b:
73:0f:aa:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 00:26:25 2025 by rpki-client