Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/f6b2bd-190b-4d0f-ba46-59e6325dd22b/1/NREZcs9Nkki9sYjTtBmuD7flZGs.mft
File: NREZcs9Nkki9sYjTtBmuD7flZGs.mft (raw, json)
Hash identifier: VZlRurBcBcum9MHXhhF3GIWFu2OiuEcY1TfQVKHB/4s=
Subject key identifier: 68:6D:2C:05:DF:E9:07:5A:A8:12:0F:58:F7:62:BA:B5:AB:11:2B:4F
Authority key identifier: 35:11:19:72:CF:4D:92:48:BD:B1:88:D3:B4:19:AE:0F:B7:E5:64:6B
Certificate issuer: /CN=35111972cf4d9248bdb188d3b419ae0fb7e5646b
Certificate serial: 019896A576D6CDB62E533B50198551879856
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NREZcs9Nkki9sYjTtBmuD7flZGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/f6b2bd-190b-4d0f-ba46-59e6325dd22b/1/NREZcs9Nkki9sYjTtBmuD7flZGs.mft
Manifest number: 0E37
Signing time: Mon 11 Aug 2025 01:01:22 +0000
Manifest this update: Mon 11 Aug 2025 01:01:22 +0000
Manifest next update: Tue 12 Aug 2025 01:01:22 +0000
Files and hashes: 1: NREZcs9Nkki9sYjTtBmuD7flZGs.crl (hash: WDXw4AoVkr+5VOHLIRCdNqhxGdHbDXOcU7bijVMpGfA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/f6b2bd-190b-4d0f-ba46-59e6325dd22b/1/NREZcs9Nkki9sYjTtBmuD7flZGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/f6b2bd-190b-4d0f-ba46-59e6325dd22b/1/NREZcs9Nkki9sYjTtBmuD7flZGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/NREZcs9Nkki9sYjTtBmuD7flZGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a5:76:d6:cd:b6:2e:53:3b:50:19:85:51:87:98:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35111972cf4d9248bdb188d3b419ae0fb7e5646b
Validity
Not Before: Aug 11 01:01:22 2025 GMT
Not After : Aug 12 01:01:22 2025 GMT
Subject: CN=686d2c05dfe9075aa8120f58f762bab5ab112b4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:cc:89:89:2d:04:c7:24:30:e8:3c:f7:dc:7b:
05:99:ba:26:66:aa:f5:a1:ca:01:55:e7:98:85:fc:
83:51:00:af:8e:e1:fa:9b:42:93:d8:40:4d:df:ed:
e2:7b:bf:c4:e4:e3:ff:fb:74:6a:e0:e6:d4:2e:b2:
d8:6a:8a:0a:de:b8:03:cd:54:a6:3b:55:98:b2:06:
8e:7f:d8:b6:e7:29:d1:30:3d:b1:91:e2:5f:e1:9d:
d4:4c:95:8a:6d:c8:75:84:dd:38:a1:68:dd:af:16:
39:57:bc:23:c7:ab:a0:98:57:60:37:8d:c3:83:56:
48:0c:26:27:b6:0d:2a:23:64:79:bf:46:e6:75:6f:
0f:c3:35:ea:18:bc:a7:56:dc:e1:3f:55:6b:b4:51:
73:2a:fa:14:e6:2b:f1:51:7d:8f:e5:a7:68:97:8e:
c3:e2:d6:dc:f6:5e:5d:33:de:39:30:94:60:2c:0d:
ea:1d:82:54:53:f0:a4:4b:8a:67:e8:7f:7d:33:3c:
51:8a:39:7a:c1:b0:6c:ed:b2:66:3a:53:ff:76:3f:
41:31:13:ba:ea:3e:47:27:93:2c:4f:fb:50:5e:2f:
3e:14:1b:29:1c:81:1f:03:2e:ef:0c:a6:12:cc:e1:
2f:29:2f:80:44:3d:65:60:b0:23:e2:e6:55:68:05:
12:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:6D:2C:05:DF:E9:07:5A:A8:12:0F:58:F7:62:BA:B5:AB:11:2B:4F
X509v3 Authority Key Identifier:
keyid:35:11:19:72:CF:4D:92:48:BD:B1:88:D3:B4:19:AE:0F:B7:E5:64:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NREZcs9Nkki9sYjTtBmuD7flZGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/f6b2bd-190b-4d0f-ba46-59e6325dd22b/1/NREZcs9Nkki9sYjTtBmuD7flZGs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/f6b2bd-190b-4d0f-ba46-59e6325dd22b/1/NREZcs9Nkki9sYjTtBmuD7flZGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:9d:ca:85:17:d5:1d:c6:c2:c0:b2:d0:ec:ad:66:07:21:39:
4f:a2:7d:89:c8:4b:9c:1b:42:e1:e7:06:25:f0:51:12:42:db:
73:8c:9b:ab:1c:57:e3:e6:b3:8c:31:2c:55:08:e9:31:d6:ef:
9a:56:ed:ea:ed:ad:ce:68:fe:6c:bf:08:3c:d4:ea:ad:99:d7:
f8:14:e0:55:ff:75:12:5a:7e:c3:96:7c:2a:06:6f:8a:16:f9:
48:66:26:fe:78:0b:65:99:07:02:22:6e:fe:4e:7c:e1:5f:a7:
ff:f4:ea:2d:de:81:c6:c6:00:0e:04:c8:03:2c:93:e2:97:63:
be:c8:30:48:cb:6e:7c:ff:e3:18:9a:48:9e:df:d8:69:24:1c:
b7:3c:9a:92:b0:1c:fa:08:97:d3:16:20:44:83:5d:e0:0b:46:
15:30:52:63:dc:b1:21:c6:0c:2b:6b:d3:4a:21:1f:96:7e:4a:
b8:d9:53:3d:4b:df:fa:bc:19:26:52:37:9d:80:21:c1:09:ce:
7b:5d:fe:52:50:86:d2:27:90:82:b6:41:46:cd:89:e2:4f:55:
ae:eb:b7:09:20:a5:6a:18:1a:c2:cc:71:77:51:84:77:01:ce:
f6:4b:79:b0:fe:e6:71:f3:12:13:f3:0a:e4:84:3f:bf:5e:26:
05:eb:59:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 10:03:06 2025 by rpki-client