Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
File: NgAOvu0kK5VkrclUhTI7lr1vXAI.mft (raw, json)
Hash identifier: t9WXPRldA1ZmeyGgE06Fg5I2mmkn2DmK2PoHUU5m3Ew=
Subject key identifier: 39:8C:02:32:B1:F9:A8:5F:D1:6D:BB:B3:C2:8A:C5:FC:51:7B:85:DE
Authority key identifier: 36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02
Certificate issuer: /CN=36000ebeed242b9564adc95485323b96bd6f5c02
Certificate serial: 01984BC1675FFA36FEC9C34BFC92A565ADF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
Manifest number: 1170
Signing time: Sun 27 Jul 2025 12:00:22 +0000
Manifest this update: Sun 27 Jul 2025 12:00:22 +0000
Manifest next update: Mon 28 Jul 2025 12:00:22 +0000
Files and hashes: 1: NgAOvu0kK5VkrclUhTI7lr1vXAI.crl (hash: xpRWUjnPnazSkctv3yxfGcA4LHIr+9Ul5sV3RRaTGrc=)
2: PcqW_01nYr_g65r_pcHJ33ZMGuA.roa (hash: ldAGcbaFd4WhyCTSLv1tpLkIbH81eRDfpjEnAMP8NwM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:c1:67:5f:fa:36:fe:c9:c3:4b:fc:92:a5:65:ad:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36000ebeed242b9564adc95485323b96bd6f5c02
Validity
Not Before: Jul 27 12:00:22 2025 GMT
Not After : Jul 28 12:00:22 2025 GMT
Subject: CN=398c0232b1f9a85fd16dbbb3c28ac5fc517b85de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ec:f0:44:c5:6b:48:7e:a9:00:e2:f8:bb:56:
44:46:04:5e:11:43:54:45:a1:28:4b:4d:a1:82:21:
51:99:65:7f:25:96:65:9a:68:bd:8f:33:30:48:dc:
e2:cd:05:f0:e0:44:24:68:79:87:37:ac:87:8e:f7:
db:70:b0:2b:b7:28:c2:6a:8f:f2:d1:b9:06:3a:94:
5a:30:d0:7c:35:59:9f:92:7f:0c:16:23:72:dd:ee:
50:41:48:f8:11:a9:e2:33:91:b7:8f:cd:69:61:39:
0f:12:92:2a:a3:8b:e0:69:ef:02:4b:a3:a9:3a:e9:
7d:66:0d:ba:0d:55:3c:61:cb:78:c6:8d:6d:cf:ed:
d0:93:cb:40:8a:25:36:21:09:64:9e:2d:1f:36:1b:
f7:9c:56:70:bd:f1:8c:5d:dc:9e:2b:f1:3f:af:a4:
f2:63:90:0b:3a:52:b5:1c:90:43:17:5a:d4:0a:45:
7e:68:1d:1c:0e:02:25:5a:c3:0a:6a:8c:42:52:c2:
3d:24:fa:ef:24:d0:e5:38:da:7f:91:1a:d4:1c:49:
88:1b:b7:95:9b:ae:2e:e9:f9:b8:b6:81:d5:06:55:
bd:9d:08:d1:13:b6:da:e3:fe:e0:4e:65:a9:6f:2d:
9d:73:b8:00:93:58:b8:86:0c:6f:3d:14:2f:bb:29:
f7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:8C:02:32:B1:F9:A8:5F:D1:6D:BB:B3:C2:8A:C5:FC:51:7B:85:DE
X509v3 Authority Key Identifier:
keyid:36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:bf:04:f3:0a:59:f8:9c:e4:71:3b:19:f5:58:68:d6:bc:5b:
08:4e:27:c4:f5:69:1f:3f:cd:6d:ec:9f:ee:56:88:38:b6:1d:
dd:36:f3:9f:38:c8:85:df:84:0b:d2:45:4f:33:92:28:9e:41:
5a:30:9f:11:f5:8c:a8:f3:14:9c:c0:a1:3a:04:21:99:17:5b:
ec:04:52:e3:9f:f5:12:7c:22:b3:9a:8a:ea:c0:e9:31:b0:84:
90:9a:d7:7f:af:19:0f:01:40:e4:37:73:ec:9d:68:82:2e:d7:
54:7b:fa:ac:92:9d:a4:b3:98:bd:7d:73:0d:c5:97:f8:ff:2c:
fd:04:b2:51:cc:3c:a2:fe:49:53:52:dc:56:97:07:6a:67:2b:
5b:fc:48:66:28:ce:4b:47:8d:26:bd:ff:00:2a:af:d5:cb:2e:
30:95:1b:91:fc:a3:9f:ca:60:ae:0f:0a:b3:d4:b4:be:c1:c7:
b4:f4:14:ab:16:f9:60:91:5d:49:66:ff:8d:26:a7:32:2b:c8:
bd:bd:87:57:15:d8:32:0d:9e:49:4c:f6:b4:16:bc:ab:81:d1:
d2:96:15:74:b7:3f:84:c0:af:01:e8:14:53:c9:d8:4b:c6:21:
d4:44:57:06:d3:84:0c:15:2b:19:9c:c5:a2:9a:1c:4b:51:f5:
83:b1:b5:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 13:36:08 2025 by rpki-client