Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
File: NW2albrOGXhcQGR2Y_MdkFYmHC8.mft (raw, json)
Hash identifier: 28TEgpcRmGpJlAwGFZQJuFWg7J+iQsPU05fg53T4mt8=
Subject key identifier: 5A:0F:2C:00:36:E5:8A:EB:8C:71:DE:53:58:CD:E1:94:ED:C3:0B:CE
Authority key identifier: 35:6D:9A:95:BA:CE:19:78:5C:40:64:76:63:F3:1D:90:56:26:1C:2F
Certificate issuer: /CN=356d9a95bace19785c40647663f31d9056261c2f
Certificate serial: 019873E25455A43EC0D33275BF017BF7E358
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
Manifest number: 1615
Signing time: Mon 04 Aug 2025 07:01:09 +0000
Manifest this update: Mon 04 Aug 2025 07:01:09 +0000
Manifest next update: Tue 05 Aug 2025 07:01:09 +0000
Files and hashes: 1: NW2albrOGXhcQGR2Y_MdkFYmHC8.crl (hash: VY5EgG3xwbRltxWe0aE6Qwn3HCk7GxV9/84z+TdhTUQ=)
2: VMysSyLNDVGWd0vcTeYPwlMA5rc.roa (hash: 6+DEgCnpiKyTQCIOlcuNMISjTH2qj/1LJFyn3yXus8Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:54:55:a4:3e:c0:d3:32:75:bf:01:7b:f7:e3:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=356d9a95bace19785c40647663f31d9056261c2f
Validity
Not Before: Aug 4 07:01:09 2025 GMT
Not After : Aug 5 07:01:09 2025 GMT
Subject: CN=5a0f2c0036e58aeb8c71de5358cde194edc30bce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:32:5c:4c:9f:99:09:fd:47:a5:b6:c9:91:29:
d0:14:d2:20:ca:61:b8:9d:3b:0d:3c:e9:54:9b:8a:
f0:36:ad:f4:4e:26:96:bc:96:2f:3c:0c:77:a6:ce:
3a:2e:f1:0f:68:dd:b2:fe:6b:80:ef:51:bc:fa:df:
78:0b:a4:3e:82:df:ed:19:e4:f8:65:78:e6:39:24:
8c:48:38:6d:b9:43:25:de:64:f1:dc:ad:cd:99:f7:
af:f2:68:d8:d4:44:8f:75:92:0a:e6:8c:00:00:7c:
15:b9:55:8c:87:2f:87:cc:86:0c:55:08:fb:b6:da:
ed:32:6c:2f:26:49:01:30:72:39:f1:5b:3a:ac:89:
12:6f:ee:fa:bd:48:12:1e:45:9d:4c:61:d7:ac:d7:
fd:6b:36:60:dc:ed:ff:00:7b:d5:ef:18:bd:f2:5d:
5c:22:47:b2:0d:c0:47:d7:5e:27:78:fb:83:95:b6:
aa:1a:e0:5a:50:9f:8b:dd:87:21:af:a6:3a:74:c8:
d1:92:ac:db:9c:d9:f0:59:af:11:eb:74:8f:e3:18:
55:f4:68:44:78:6e:76:3f:61:9a:f0:86:80:79:ea:
8f:1c:99:bb:6e:a5:74:8e:b2:9c:b0:94:34:52:be:
e1:39:2b:a2:c2:bf:6b:bf:bc:61:03:b6:68:e6:fb:
ca:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:0F:2C:00:36:E5:8A:EB:8C:71:DE:53:58:CD:E1:94:ED:C3:0B:CE
X509v3 Authority Key Identifier:
keyid:35:6D:9A:95:BA:CE:19:78:5C:40:64:76:63:F3:1D:90:56:26:1C:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:38:ee:e4:36:52:a0:68:a2:b9:ed:45:81:be:28:df:01:a8:
5a:73:95:aa:b4:dd:9e:22:63:d8:7a:69:44:d6:5f:de:52:d0:
00:e3:4f:95:64:a9:cf:23:47:d0:61:be:5d:9b:89:26:1a:c3:
6f:0d:63:43:3d:ee:e4:ff:9d:1d:f4:55:2f:6a:75:a2:16:15:
1c:94:0b:e7:7d:5b:7a:6e:fc:e4:18:65:f4:4e:db:57:ad:0a:
3b:24:08:50:99:d3:f2:82:bd:9c:7c:02:25:a8:59:18:1e:e6:
d6:05:66:bd:51:bf:fd:6c:03:96:b5:00:40:e3:1d:9a:2d:02:
d2:5d:c1:19:cb:f3:38:af:26:de:f7:da:c1:f6:85:36:dd:08:
18:d7:b2:a8:3b:39:65:d7:bb:02:66:e7:01:3f:84:2b:3a:a9:
07:95:f2:06:97:56:50:02:0c:c9:2f:5d:3b:54:4c:74:f7:0a:
6a:36:34:d0:39:0b:39:5a:d2:f6:73:7b:33:a1:fa:1f:08:6d:
85:62:6b:01:d2:c2:d1:6c:b7:f9:0c:11:2f:94:9f:5b:27:a1:
7e:02:7b:6e:d8:3a:2a:6d:33:0b:43:2c:fc:8a:52:4e:1e:5a:
59:60:1c:3b:e1:5d:52:54:72:f1:74:b6:4c:f0:cc:94:08:f8:
27:00:e3:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:22:11 2025 by rpki-client