Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/cd8206-764e-4a31-ace7-d308542a1d86/1/NkYULOMpCrZ4bT0w8mteQf1oTd4.mft
File: NkYULOMpCrZ4bT0w8mteQf1oTd4.mft (raw, json)
Hash identifier: heOKgkOsd86U48R66gKlBxMnoRP2rHd4HKV8fo2XzYQ=
Subject key identifier: AE:95:3F:EA:2E:2E:53:EF:A9:2E:38:A4:B8:E3:2C:76:65:C7:28:DE
Authority key identifier: 36:46:14:2C:E3:29:0A:B6:78:6D:3D:30:F2:6B:5E:41:FD:68:4D:DE
Certificate issuer: /CN=3646142ce3290ab6786d3d30f26b5e41fd684dde
Certificate serial: 019894EDB5DD681298C908F90D40EC1D509E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NkYULOMpCrZ4bT0w8mteQf1oTd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/cd8206-764e-4a31-ace7-d308542a1d86/1/NkYULOMpCrZ4bT0w8mteQf1oTd4.mft
Manifest number: 0A05
Signing time: Sun 10 Aug 2025 17:01:03 +0000
Manifest this update: Sun 10 Aug 2025 17:01:03 +0000
Manifest next update: Mon 11 Aug 2025 17:01:03 +0000
Files and hashes: 1: NkYULOMpCrZ4bT0w8mteQf1oTd4.crl (hash: 31BCWCOTbQ0YYVou49rv+6AjYzydRjIeamJMlvehBFM=)
2: T5kWJ0zgWJZajIuh22W4Yozr5Js.roa (hash: nOTln1QfZH/4DaY3ZoWPaEWuEELecZ3pWov8YJOX40U=)
3: yrfnq6Apo3g6hYK2SXicNIxd3BQ.roa (hash: mz8tGW+kk5vYLIpkvgBjBz5ynzM4w4t5pl379UMfAPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/cd8206-764e-4a31-ace7-d308542a1d86/1/NkYULOMpCrZ4bT0w8mteQf1oTd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/cd8206-764e-4a31-ace7-d308542a1d86/1/NkYULOMpCrZ4bT0w8mteQf1oTd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NkYULOMpCrZ4bT0w8mteQf1oTd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:94:ed:b5:dd:68:12:98:c9:08:f9:0d:40:ec:1d:50:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3646142ce3290ab6786d3d30f26b5e41fd684dde
Validity
Not Before: Aug 10 17:01:03 2025 GMT
Not After : Aug 11 17:01:03 2025 GMT
Subject: CN=ae953fea2e2e53efa92e38a4b8e32c7665c728de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8b:04:0c:82:6f:e5:20:50:ea:c0:38:e4:bf:
b2:19:e9:70:3b:b9:09:e2:6a:3d:fd:43:fd:87:56:
51:8a:14:b4:d4:9b:17:59:35:6e:17:f3:fb:ce:ae:
72:59:d1:3a:08:cb:57:08:e2:b0:24:6f:f4:00:b7:
9f:1a:7c:e4:61:6b:4d:2b:1e:0a:72:bd:76:33:cd:
00:ed:05:d8:87:37:90:8a:2f:c2:a6:a5:45:43:2e:
f4:70:f7:84:77:fd:31:16:87:a9:bd:63:6d:0c:da:
52:7a:0e:28:f5:76:04:d8:a7:27:c9:ae:0b:d3:1b:
35:d4:e7:b5:72:62:3a:76:88:61:36:79:ac:74:35:
d2:4f:3e:7c:af:07:ce:d8:85:26:52:5b:c5:53:c7:
53:85:34:ba:02:ef:9e:6f:07:13:93:25:af:7e:90:
a8:4a:de:43:95:99:6a:c2:c4:65:c8:b8:6d:05:2e:
d3:1a:49:68:01:26:6f:18:f5:55:f2:fa:c7:30:d0:
ab:a8:f3:44:e8:ad:84:02:fd:e7:96:00:90:25:3d:
2b:4c:c8:20:e3:99:30:41:13:2b:ed:c0:98:b1:1c:
95:d5:f7:47:7e:b0:d3:5f:38:f3:a7:eb:19:cf:2f:
c2:2e:76:94:11:65:a7:b1:3c:7e:fc:2e:8b:97:8a:
b4:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:95:3F:EA:2E:2E:53:EF:A9:2E:38:A4:B8:E3:2C:76:65:C7:28:DE
X509v3 Authority Key Identifier:
keyid:36:46:14:2C:E3:29:0A:B6:78:6D:3D:30:F2:6B:5E:41:FD:68:4D:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NkYULOMpCrZ4bT0w8mteQf1oTd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/cd8206-764e-4a31-ace7-d308542a1d86/1/NkYULOMpCrZ4bT0w8mteQf1oTd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/cd8206-764e-4a31-ace7-d308542a1d86/1/NkYULOMpCrZ4bT0w8mteQf1oTd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:32:dd:ed:7b:d4:74:ae:12:61:21:c0:d9:21:ec:0c:b3:4d:
98:4d:dc:fe:0f:dd:9b:cf:e2:c8:e6:e8:ce:cb:4a:c4:ad:d8:
19:5d:37:e6:96:14:3e:0e:27:08:28:79:f2:b0:79:1a:e6:f9:
55:44:c9:e3:e8:0b:2d:2a:1e:5c:ea:03:fd:6d:05:94:52:0b:
d3:3d:a7:c2:d0:41:30:53:03:66:9a:68:fa:e3:14:18:40:7e:
23:c7:8f:86:8e:28:59:b0:24:dd:13:d5:38:7a:ea:b1:8f:18:
9f:7f:08:ed:c2:21:8c:d9:52:03:18:ed:a9:27:08:26:43:33:
da:4d:80:04:7f:11:dc:5e:d1:2c:bc:bc:3f:42:54:f3:5f:bc:
20:7c:1c:10:ea:cb:80:0d:88:7e:33:1e:1f:e3:0d:3a:28:e1:
a7:f9:b2:fb:67:c2:9b:85:6a:61:28:02:ed:79:77:d9:8f:38:
3a:33:eb:b2:0f:08:ef:eb:cb:bf:09:1c:d1:31:67:03:cf:d4:
b6:3b:4c:d0:2f:7c:47:c5:4f:84:2e:b2:6a:f6:f6:a8:d9:60:
90:d0:88:4a:72:23:19:47:e7:8f:c8:0a:6b:13:c2:ca:72:af:
61:32:02:78:ef:8f:95:41:7f:0d:28:04:0f:c3:26:df:3f:3b:
68:e3:94:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 18:13:21 2025 by rpki-client