Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
File: Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft (raw, json)
Hash identifier: 8rXEo3M50Dx/mmN3VCKe4Saz8qpdWW51F3r8VP0ik4c=
Subject key identifier: 3F:44:0C:E3:E8:E8:46:E4:7D:68:2A:14:CE:E6:D1:2F:AF:3B:3C:E8
Authority key identifier: 36:4D:48:8B:8C:73:1B:91:D4:A5:A2:B9:0A:66:6C:EE:BC:0E:18:C9
Certificate issuer: /CN=364d488b8c731b91d4a5a2b90a666ceebc0e18c9
Certificate serial: 01984B542D0EF86AE97B79A11D5BF3A1AA35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
Manifest number: 0114
Signing time: Sun 27 Jul 2025 10:01:04 +0000
Manifest this update: Sun 27 Jul 2025 10:01:04 +0000
Manifest next update: Mon 28 Jul 2025 10:01:04 +0000
Files and hashes: 1: Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl (hash: LG34bKIbuGGhoay1dCGtusK0J6Br9zIpSvx07DRqQpM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:54:2d:0e:f8:6a:e9:7b:79:a1:1d:5b:f3:a1:aa:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=364d488b8c731b91d4a5a2b90a666ceebc0e18c9
Validity
Not Before: Jul 27 10:01:04 2025 GMT
Not After : Jul 28 10:01:04 2025 GMT
Subject: CN=3f440ce3e8e846e47d682a14cee6d12faf3b3ce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f8:09:79:ee:e3:5d:0f:55:a0:9f:d3:c8:4a:
4c:45:bf:83:d6:95:e5:c1:0e:06:dd:41:b8:43:79:
61:ea:5f:7b:57:f0:a3:aa:2c:ae:38:c6:62:ed:44:
4c:2a:82:25:b8:be:5f:1a:78:c6:75:24:d2:2b:6b:
a5:27:ab:0f:67:55:ea:42:4e:03:1a:e5:2e:d0:4a:
e3:8e:9a:6f:ac:02:e1:73:da:af:0f:84:ee:7c:ce:
8f:5e:85:62:ec:94:04:73:78:7a:ca:50:a1:9a:71:
c0:77:04:16:5c:2a:64:3f:b4:98:38:bc:a2:6c:4a:
23:df:58:ed:b7:17:c1:e8:55:73:64:20:58:54:17:
0b:d0:0d:4f:fe:01:1d:d2:c8:a2:84:1f:0a:5f:fd:
30:7c:f3:0c:77:7f:65:0f:28:2f:5d:75:14:98:54:
7f:4d:2d:3c:0f:de:37:16:e8:73:d0:39:db:a0:af:
98:8f:24:f8:fe:15:e8:6c:87:44:e9:da:8e:66:b4:
4a:77:17:6a:f8:92:7b:eb:2b:be:ca:f7:35:a0:f2:
8e:bf:bb:3d:ec:42:ab:e8:42:9f:8e:77:6f:c3:24:
c6:9d:b9:99:67:68:f0:c4:5f:cd:9c:71:8f:f2:76:
fe:16:a9:89:ee:86:43:7f:94:2f:46:e2:a1:82:b0:
23:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:44:0C:E3:E8:E8:46:E4:7D:68:2A:14:CE:E6:D1:2F:AF:3B:3C:E8
X509v3 Authority Key Identifier:
keyid:36:4D:48:8B:8C:73:1B:91:D4:A5:A2:B9:0A:66:6C:EE:BC:0E:18:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:b8:33:bc:eb:aa:71:7c:7f:00:20:3d:6d:40:18:74:44:dd:
29:94:cd:f2:1c:13:96:14:f4:c8:7c:f4:28:9d:20:b4:7f:c2:
e0:3d:08:48:cb:a4:0e:2a:61:54:08:ef:65:52:49:e9:6c:df:
a7:56:39:8c:ea:d3:70:7d:a7:ef:41:ee:35:05:a2:bc:26:44:
50:69:b6:eb:42:09:4b:42:39:9d:be:e6:c9:9b:11:2f:83:25:
1b:b9:31:43:78:9e:95:4a:08:fd:c2:61:ee:f7:f3:66:5e:6a:
84:b8:17:97:a6:c2:ac:75:04:8a:c4:0e:26:f5:91:63:df:0b:
24:fd:ee:18:64:85:62:db:4a:d6:4b:9f:d2:b1:28:39:04:29:
c4:7b:0a:3b:19:8c:1d:18:ab:2c:88:70:e6:4d:d8:68:17:ee:
7a:c1:21:b6:ef:96:eb:8e:84:4f:1a:22:eb:85:a3:59:d5:d5:
45:b8:dd:de:01:f4:9f:98:3b:33:44:a2:d4:fb:87:3a:4c:14:
6a:41:4c:54:87:31:13:5d:fd:94:68:b8:aa:86:20:af:1d:e6:
f0:12:ed:45:23:82:5e:fa:f3:9f:b4:bf:f3:c2:4e:94:d1:96:
78:04:b3:e7:62:d2:a7:95:93:3f:50:ee:76:06:fe:20:c0:34:
4f:b2:e8:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 12:02:39 2025 by rpki-client