Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
File: NgAOvu0kK5VkrclUhTI7lr1vXAI.mft (raw, json)
Hash identifier: ErnZSAtb7ZP+XIqh0NZd+jYOx94CbzOKnh2sCXQdfLo=
Subject key identifier: 96:C4:2B:6B:5F:4B:AB:3D:7C:45:96:65:6C:D5:C1:57:0E:FE:BB:CC
Authority key identifier: 36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02
Certificate issuer: /CN=36000ebeed242b9564adc95485323b96bd6f5c02
Certificate serial: 0199C457B34C55A0A23F7C6FBBB930C38F99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
Manifest number: 1233
Signing time: Wed 08 Oct 2025 15:01:45 +0000
Manifest this update: Wed 08 Oct 2025 15:01:45 +0000
Manifest next update: Thu 09 Oct 2025 15:01:45 +0000
Files and hashes: 1: NgAOvu0kK5VkrclUhTI7lr1vXAI.crl (hash: Yu2IPqrpAhgj37c6kftztFcE4swXt0heMFMgxjzKvyQ=)
2: PcqW_01nYr_g65r_pcHJ33ZMGuA.roa (hash: ldAGcbaFd4WhyCTSLv1tpLkIbH81eRDfpjEnAMP8NwM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Oct 2025 13:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:c4:57:b3:4c:55:a0:a2:3f:7c:6f:bb:b9:30:c3:8f:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36000ebeed242b9564adc95485323b96bd6f5c02
Validity
Not Before: Oct 8 15:01:45 2025 GMT
Not After : Oct 9 15:01:45 2025 GMT
Subject: CN=96c42b6b5f4bab3d7c4596656cd5c1570efebbcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6c:f6:e5:51:00:4d:e5:87:0b:b1:09:30:af:
a7:d8:11:8b:7d:4d:fc:36:a7:23:6d:68:b2:24:9a:
80:2d:e0:58:23:d5:3d:1f:93:1c:64:30:45:51:f3:
96:5c:f9:8d:41:53:5b:4c:2d:53:e6:5d:b7:61:93:
0b:26:e1:7d:98:19:94:b9:8d:74:78:e7:b1:aa:9b:
6e:79:44:ef:a4:e0:f6:e7:65:8e:7d:61:1d:dd:60:
3a:11:09:13:21:bd:2c:2d:06:87:7d:ca:2d:91:df:
ab:27:7b:1c:79:d1:08:2b:05:4e:21:94:e5:57:88:
a3:d7:e2:65:89:3f:c6:4c:3a:95:89:1a:8f:4f:6f:
a9:1b:ea:f8:c0:28:6d:1e:1b:d1:76:53:62:73:e0:
9a:27:22:af:12:17:2c:6c:1e:8c:ba:e1:bf:e0:c8:
7b:d6:79:2f:09:2a:7e:05:34:0c:1d:a9:28:52:e5:
44:58:57:71:2a:4b:1d:e9:22:2b:33:23:00:13:c2:
d5:ca:6f:df:a1:3c:a3:3c:51:1a:32:6b:9f:74:13:
b9:37:58:15:6a:bd:5f:a6:e3:07:11:cd:f2:31:d6:
12:65:77:10:7d:71:f0:e5:67:10:6f:2d:de:75:cb:
94:b0:cc:77:41:9f:64:5f:43:ff:26:99:1d:bd:ce:
0c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C4:2B:6B:5F:4B:AB:3D:7C:45:96:65:6C:D5:C1:57:0E:FE:BB:CC
X509v3 Authority Key Identifier:
keyid:36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:58:68:68:09:a7:6c:66:97:c8:11:60:92:54:10:7f:79:ea:
11:ed:c3:22:60:93:11:08:62:fb:d2:bc:fc:75:d2:88:4b:db:
5c:22:99:77:29:5a:8b:90:9b:23:a4:46:7d:7f:c7:ee:41:2c:
fc:35:f2:5b:46:1b:f7:1e:03:40:9b:4f:f3:77:aa:b3:79:74:
80:e3:62:6a:71:83:84:e8:e2:d1:32:1a:ea:3e:ee:f8:12:6c:
30:ce:e2:ba:5b:a3:b3:db:e1:50:d0:47:c8:99:75:86:28:11:
72:71:97:56:8a:24:4e:aa:a9:29:d8:69:20:5d:e7:a4:b2:c5:
ef:7a:8a:c8:10:cb:40:40:19:d2:5d:d8:8d:d9:f2:09:35:1f:
1c:82:af:f5:24:05:3b:15:27:e8:b5:3d:7d:a1:f0:96:29:e7:
e5:fe:fd:80:2a:be:58:4d:a2:00:88:5d:b7:57:cf:32:b3:f9:
0b:22:37:89:36:2a:e9:6a:1a:47:85:56:14:e9:d9:9e:67:92:
7b:95:b1:7c:f5:f6:36:d7:be:3d:92:3f:df:01:4f:d8:4d:4d:
22:b2:74:ca:90:7d:77:27:9e:2e:b5:0b:fb:09:3e:47:7b:f8:
55:00:83:25:27:08:91:2c:b0:a9:f8:db:d1:02:1e:98:10:a6:
a1:3d:b1:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 8 21:00:55 2025 by rpki-client