Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/d2233c-a741-4bd9-b6db-7ed998ddb85a/1/nmw2D-XITxlWHHrpu89PnPpHi08.mft
File: nmw2D-XITxlWHHrpu89PnPpHi08.mft (raw, json)
Hash identifier: cJ1XlyriFxFzkoQh598MKsVTOJzvaklpLXtO3rAkrt8=
Subject key identifier: 86:81:6F:2D:3D:9C:6D:95:26:CA:9D:7C:5A:0D:9A:3C:00:27:14:9E
Authority key identifier: 9E:6C:36:0F:E5:C8:4F:19:56:1C:7A:E9:BB:CF:4F:9C:FA:47:8B:4F
Certificate issuer: /CN=9e6c360fe5c84f19561c7ae9bbcf4f9cfa478b4f
Certificate serial: 019848C0B515A083303B7ECDA0F740835B03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nmw2D-XITxlWHHrpu89PnPpHi08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/d2233c-a741-4bd9-b6db-7ed998ddb85a/1/nmw2D-XITxlWHHrpu89PnPpHi08.mft
Manifest number: 08B8
Signing time: Sat 26 Jul 2025 22:00:45 +0000
Manifest this update: Sat 26 Jul 2025 22:00:45 +0000
Manifest next update: Sun 27 Jul 2025 22:00:45 +0000
Files and hashes: 1: nmw2D-XITxlWHHrpu89PnPpHi08.crl (hash: MYuMoIZwXrKpge/IdmXo5hiiTXVKchpvcLFv4OaxEg4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/d2233c-a741-4bd9-b6db-7ed998ddb85a/1/nmw2D-XITxlWHHrpu89PnPpHi08.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/d2233c-a741-4bd9-b6db-7ed998ddb85a/1/nmw2D-XITxlWHHrpu89PnPpHi08.mft
rsync://rpki.ripe.net/repository/DEFAULT/nmw2D-XITxlWHHrpu89PnPpHi08.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 22:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:c0:b5:15:a0:83:30:3b:7e:cd:a0:f7:40:83:5b:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e6c360fe5c84f19561c7ae9bbcf4f9cfa478b4f
Validity
Not Before: Jul 26 22:00:45 2025 GMT
Not After : Jul 27 22:00:45 2025 GMT
Subject: CN=86816f2d3d9c6d9526ca9d7c5a0d9a3c0027149e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f3:70:06:06:02:5e:8e:ca:b4:ca:28:bc:cd:
7a:47:d4:72:97:54:26:f9:f3:3f:32:e1:47:64:4b:
d1:10:48:1b:62:fc:ec:66:12:3a:a5:13:5b:6f:ff:
25:64:dd:ef:3b:a5:17:fa:aa:38:be:ca:aa:ad:b8:
55:27:ed:51:d2:c0:52:ad:67:ce:87:23:ee:66:81:
53:3c:d6:46:14:45:45:7a:5a:c2:91:34:b3:80:62:
19:f7:9a:ed:f8:41:93:5c:e0:ff:83:63:83:d9:f8:
a2:8e:e6:ad:a0:e1:88:a9:44:69:c7:44:28:98:73:
34:5c:bc:d6:8d:37:43:06:ec:90:f6:c1:a4:91:21:
27:dc:92:16:af:b2:a2:f7:e9:e7:0e:11:36:a6:e2:
af:85:e0:0a:9f:5c:d5:9f:a8:81:6b:8e:54:37:ad:
92:77:9d:0c:d8:14:48:03:81:af:36:55:6f:76:c5:
ad:d1:3f:70:6c:03:de:21:a1:70:8d:85:05:7e:69:
07:87:c1:35:f7:9e:16:79:dc:ed:7e:06:dc:83:7c:
37:0d:94:fe:18:f3:56:f9:99:7d:5b:bc:4f:6c:cf:
83:29:22:bc:f1:57:27:81:eb:2f:ea:f1:e6:de:8f:
46:d4:79:ce:03:14:10:e5:6e:f9:2f:46:2a:d7:ff:
b9:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:81:6F:2D:3D:9C:6D:95:26:CA:9D:7C:5A:0D:9A:3C:00:27:14:9E
X509v3 Authority Key Identifier:
keyid:9E:6C:36:0F:E5:C8:4F:19:56:1C:7A:E9:BB:CF:4F:9C:FA:47:8B:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nmw2D-XITxlWHHrpu89PnPpHi08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/d2233c-a741-4bd9-b6db-7ed998ddb85a/1/nmw2D-XITxlWHHrpu89PnPpHi08.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/d2233c-a741-4bd9-b6db-7ed998ddb85a/1/nmw2D-XITxlWHHrpu89PnPpHi08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:10:09:90:4e:80:f4:b1:e7:89:32:8d:27:4b:03:bb:0a:67:
7c:ec:bc:4f:64:64:be:f2:02:49:14:71:0e:01:48:34:62:3b:
48:40:cb:a0:ea:0e:57:bf:d1:13:7a:82:91:3f:9a:a0:ce:86:
fc:db:e7:93:a4:a6:78:2e:44:22:01:b6:f1:c8:96:18:ae:08:
f3:40:c8:46:04:9c:3f:77:c1:8f:5a:a3:cd:96:e6:c2:8a:10:
8c:50:d4:25:63:bb:83:5e:67:2a:89:c9:62:d5:4e:b4:a1:b8:
32:ec:a7:42:63:67:d2:41:91:c7:77:ab:e7:fd:eb:8d:e7:dc:
3a:ac:d6:69:db:e3:e9:97:c2:2e:25:32:22:d2:37:d9:5b:68:
ac:a6:10:ba:e0:45:0b:a5:a9:8e:21:4c:4e:fc:15:26:f2:5d:
82:4d:69:35:92:18:6e:0d:30:67:99:12:19:ff:90:1f:33:c0:
da:ec:a8:ef:74:8b:82:83:c9:3c:77:d0:37:a7:20:ec:56:ef:
d7:18:ff:9b:a7:03:8b:4e:3c:8a:a0:f2:75:05:e9:7c:bc:f7:
ce:d6:3c:31:c5:fb:1d:7d:6d:2c:3a:25:bf:36:51:70:3f:b5:
28:5b:ad:8e:8a:f7:e9:e4:3e:1e:bb:a4:11:d7:78:fd:08:d0:
1d:8f:0a:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 07:09:51 2025 by rpki-client