Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
File: NIMjF9JURDS2WeVpIHHY5MSTiwY.mft (raw, json)
Hash identifier: HCdfeGrnxoiUmP96fDAKyYJH2uWopLfH+RihoU25t58=
Subject key identifier: 14:CF:7F:51:14:A0:0B:43:BF:85:67:FB:11:F6:3D:15:E8:EA:0A:83
Authority key identifier: 34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
Certificate issuer: /CN=34832317d2544434b659e5692071d8e4c4938b06
Certificate serial: 019916882C76CEEF0B402C0404E9A65DB276
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
Manifest number: 03DD
Signing time: Thu 04 Sep 2025 21:00:46 +0000
Manifest this update: Thu 04 Sep 2025 21:00:46 +0000
Manifest next update: Fri 05 Sep 2025 21:00:46 +0000
Files and hashes: 1: NIMjF9JURDS2WeVpIHHY5MSTiwY.crl (hash: QekHLYpScAaoZtqZpMbu7ejxUaKbjKTJN71ntcVlJJ4=)
2: x2Xaez7Ra9vjvF4FG3Er4hO4ovk.roa (hash: T67Ch/iuLueDDibfJIFSKnLQW9UiEIt+71JVmL/jUzg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 19:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:88:2c:76:ce:ef:0b:40:2c:04:04:e9:a6:5d:b2:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34832317d2544434b659e5692071d8e4c4938b06
Validity
Not Before: Sep 4 21:00:46 2025 GMT
Not After : Sep 5 21:00:46 2025 GMT
Subject: CN=14cf7f5114a00b43bf8567fb11f63d15e8ea0a83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:dd:1a:ea:e5:f3:de:52:97:cb:73:70:3d:5f:
2d:15:66:81:50:fc:d6:2e:0f:e4:09:82:fc:c6:46:
d2:b6:ec:e6:f6:3e:2b:68:fd:ff:9e:9e:5b:14:83:
ee:6f:43:7c:72:07:90:70:a0:c9:d4:1e:8c:81:22:
db:6a:09:20:bd:1d:9f:5c:81:c7:a5:03:ce:11:69:
c7:9b:e5:eb:e6:ef:95:39:69:9f:0d:26:4a:99:6e:
1d:15:55:ea:8b:85:7c:79:3c:a8:63:1b:00:53:82:
13:74:e5:dc:dc:2a:c8:df:e5:1b:74:ab:ee:3a:04:
ef:60:80:ca:71:6b:e9:9e:da:de:ce:f4:03:51:1a:
d3:d2:9a:59:f4:77:0d:92:65:f1:ab:0a:65:e3:a7:
d3:36:82:97:0b:c3:61:94:df:80:37:9e:45:c0:66:
2b:ce:aa:f5:77:c2:16:4e:3c:1b:91:8d:bf:57:62:
34:97:1a:18:3f:82:ca:dd:8b:07:cf:b0:21:bf:89:
f3:a1:92:21:12:a4:09:69:a6:c8:f9:bf:9d:f8:3a:
ed:e7:0e:1e:07:77:14:e3:45:ce:2e:82:1c:05:e0:
2f:62:1b:2c:68:47:c9:0a:bc:a6:13:6a:8f:e6:85:
57:45:af:7a:4d:4b:a4:cc:ff:d0:47:ef:62:56:31:
6d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:CF:7F:51:14:A0:0B:43:BF:85:67:FB:11:F6:3D:15:E8:EA:0A:83
X509v3 Authority Key Identifier:
keyid:34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:6e:d4:5a:6d:78:3e:3d:ec:7a:10:90:8c:d7:76:0d:7c:8e:
62:dc:d9:f3:88:0b:fb:6c:f0:e9:a4:6a:30:8e:39:e6:0e:2b:
40:b7:01:c1:b1:df:ce:09:b3:0c:05:93:1e:b8:f8:e7:ef:ca:
e8:1a:93:ae:cb:67:d8:32:2d:12:4c:6c:69:ef:a5:03:36:49:
03:1e:c0:d2:3b:8c:7f:f6:15:c5:81:0f:59:7d:7f:ab:9b:ac:
d9:c1:f1:bf:1d:94:f9:d5:28:af:1a:27:2a:f3:5e:7d:77:e0:
44:44:ad:8f:ea:b4:af:c2:d2:05:f8:fd:61:64:5c:15:51:90:
94:b6:48:b0:b0:28:e2:4a:ac:df:ff:d2:0e:c7:57:1a:7c:fd:
3a:37:5c:cf:d5:9f:36:55:f8:b6:00:d0:cd:a6:3c:0e:c2:eb:
78:69:4d:53:bb:f0:47:ed:8e:73:fe:9b:f4:17:d1:c3:a8:57:
0d:11:db:b4:ba:27:23:e1:4b:df:50:df:de:ec:cf:bc:94:07:
b0:b5:bb:c6:b8:c9:4a:c4:29:15:50:60:f2:a2:65:ac:e2:07:
0e:12:be:38:2f:d9:c1:5a:d3:60:7f:b0:84:de:ef:13:8d:cd:
3b:a7:f4:ce:76:86:53:97:55:94:06:87:00:65:c4:af:50:3e:
2f:19:14:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 04:27:22 2025 by rpki-client