Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
File: NgHDzOanHKshpLut8KuE3ePyurI.mft (raw, json)
Hash identifier: u5LPoQeQl3uZUclymydNI6V43T+7+nWdrnZN02lZG5A=
Subject key identifier: 63:E5:13:4D:B1:5E:55:9E:38:7F:18:72:47:A4:A3:9A:E4:7D:C6:2F
Authority key identifier: 36:01:C3:CC:E6:A7:1C:AB:21:A4:BB:AD:F0:AB:84:DD:E3:F2:BA:B2
Certificate issuer: /CN=3601c3cce6a71cab21a4bbadf0ab84dde3f2bab2
Certificate serial: 019873E4405C5B945FB2EEF55C2A77DC1150
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
Manifest number: 161A
Signing time: Mon 04 Aug 2025 07:03:15 +0000
Manifest this update: Mon 04 Aug 2025 07:03:15 +0000
Manifest next update: Tue 05 Aug 2025 07:03:15 +0000
Files and hashes: 1: Mk7YYF4o9LB74wKwKgBbcKzvyH8.roa (hash: OCqXIpcMD6jOp7DHnSx2liWfa4cjdFDkG92oQWOUUNo=)
2: NgHDzOanHKshpLut8KuE3ePyurI.crl (hash: 6aU7rn8h/4JUqDUVblA76Yue611aKnUN6osoKszwlMY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e4:40:5c:5b:94:5f:b2:ee:f5:5c:2a:77:dc:11:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3601c3cce6a71cab21a4bbadf0ab84dde3f2bab2
Validity
Not Before: Aug 4 07:03:15 2025 GMT
Not After : Aug 5 07:03:15 2025 GMT
Subject: CN=63e5134db15e559e387f187247a4a39ae47dc62f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:0e:50:0a:5b:56:ed:6c:03:a9:35:ca:8b:12:
66:ee:29:31:ce:48:b6:f8:f7:c5:c7:e4:b1:86:0f:
be:d1:fb:05:02:9d:38:ed:f7:f5:5f:dc:68:1f:63:
f4:da:62:c5:b4:d5:11:2a:1d:e2:c8:08:49:65:f2:
bf:a5:98:ee:d5:97:f6:97:99:38:ab:3f:d6:25:ff:
ef:7f:30:5a:cc:8c:80:d6:9a:59:8c:da:f5:d7:0e:
a7:a1:68:b6:e2:eb:0a:8a:8e:ef:35:7a:b6:31:ca:
6a:29:18:68:78:6c:b3:a0:0a:48:6c:ec:b3:73:67:
f5:58:50:33:30:e7:f7:d3:f2:5c:86:4b:59:aa:59:
ec:50:30:2a:7c:77:3d:b7:76:19:a7:e8:c9:86:87:
e6:e3:4a:b2:65:d3:d6:be:b2:1b:8f:cb:38:bd:d6:
3e:4a:d2:1f:54:e8:b9:ed:05:d5:02:fa:ce:89:df:
97:c7:e7:66:f3:30:c7:3b:26:1e:0a:a2:db:b8:37:
57:33:2f:28:88:4b:7d:bd:48:c4:04:db:19:ea:7a:
5a:4a:52:43:06:30:ce:70:cd:80:6f:9a:64:ca:a1:
02:c7:ce:9e:aa:9b:a6:3b:26:64:d0:ce:cf:63:88:
6d:39:dc:fb:44:55:f8:6b:9f:41:b1:c1:21:67:7a:
36:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:E5:13:4D:B1:5E:55:9E:38:7F:18:72:47:A4:A3:9A:E4:7D:C6:2F
X509v3 Authority Key Identifier:
keyid:36:01:C3:CC:E6:A7:1C:AB:21:A4:BB:AD:F0:AB:84:DD:E3:F2:BA:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:47:42:bf:14:af:0e:c4:8f:48:10:ad:79:5d:e2:c7:c8:4a:
5f:4d:53:31:25:c1:36:34:d7:eb:20:f6:90:2f:53:d2:c9:94:
e5:f8:1b:f8:94:a5:f9:f7:df:51:f7:47:7b:ac:a8:86:bf:ec:
30:ce:88:a5:b7:ed:fb:f7:8c:d7:fa:4f:3a:77:4e:df:01:79:
2c:49:78:9e:e8:9e:8f:4a:26:3f:17:c5:69:c4:a1:32:54:87:
7f:db:6a:19:a0:1c:68:42:f2:af:7b:45:29:31:13:15:5d:bd:
8e:9f:87:d7:3f:16:49:18:99:65:dc:ff:d8:30:d4:df:49:33:
66:8c:90:17:37:95:39:87:98:0a:d7:62:ec:ed:33:24:3b:63:
4b:5a:04:6f:09:54:a5:6b:49:e9:53:06:2e:7c:4f:4b:a8:57:
42:af:4b:a4:28:ba:fb:fe:7d:dc:0b:fe:bb:f7:a6:21:e0:c3:
80:e2:c6:35:1c:07:a1:01:c1:2c:15:cb:17:d3:db:8b:c8:65:
0d:e5:c5:5c:86:33:91:45:b3:ed:08:af:ec:f6:5a:2c:2c:a0:
74:83:ba:67:a2:71:71:cc:ed:b5:fd:df:1d:82:19:3d:f5:d3:
81:c6:d4:81:ba:ea:49:74:6f:36:eb:f8:6c:cf:99:dd:a7:ff:
0f:20:38:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:01:50 2025 by rpki-client