Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
File: NHjAigY6wtNKGxkeJDY4m77tXpc.mft (raw, json)
Hash identifier: Ra5yjkvx4VFmwEUSGsXxZSWE6RN1g9khJt8L/kIqZjA=
Subject key identifier: FE:C1:B5:98:F7:D4:FB:69:0A:91:36:D9:C3:57:AE:C1:D9:E0:4D:16
Authority key identifier: 34:78:C0:8A:06:3A:C2:D3:4A:1B:19:1E:24:36:38:9B:BE:ED:5E:97
Certificate issuer: /CN=3478c08a063ac2d34a1b191e2436389bbeed5e97
Certificate serial: 0197488C4B7B948D054C683B9625BC3C9B91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
Manifest number: 0BBB
Signing time: Sat 07 Jun 2025 04:00:43 +0000
Manifest this update: Sat 07 Jun 2025 04:00:43 +0000
Manifest next update: Sun 08 Jun 2025 04:00:43 +0000
Files and hashes: 1: NHjAigY6wtNKGxkeJDY4m77tXpc.crl (hash: OOamHpaUjkFjV/XjMySOj0h9JyC0dqYlVvOZGCufPxQ=)
2: pNlFvC-ThONwUDItOe39MOTdmuo.roa (hash: WDsgShsG54TqHBufqeXclF0wXzsc7Ep5HfaFqkIsZUI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:4b:7b:94:8d:05:4c:68:3b:96:25:bc:3c:9b:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3478c08a063ac2d34a1b191e2436389bbeed5e97
Validity
Not Before: Jun 7 04:00:43 2025 GMT
Not After : Jun 8 04:00:43 2025 GMT
Subject: CN=fec1b598f7d4fb690a9136d9c357aec1d9e04d16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e2:16:53:92:dc:ad:a9:6c:04:77:6e:29:4b:
37:5d:14:39:b0:6a:b3:8a:b9:a3:79:8c:27:96:f2:
2d:4a:5a:66:74:ca:44:71:65:60:a4:11:bd:27:19:
56:50:eb:bd:0c:ea:70:be:25:7e:22:a9:74:2f:3e:
76:ea:08:64:4b:2a:cd:a0:4d:ea:59:31:21:da:9c:
da:38:94:f9:6d:09:48:a5:2e:a5:05:94:2b:10:91:
ab:42:21:d3:93:1a:68:95:8d:06:70:fb:83:7b:d3:
c1:31:27:7f:26:63:29:b1:7a:78:94:80:ba:99:c5:
a5:bb:3d:3f:ad:f8:41:1c:53:67:20:c3:1e:22:1c:
ee:d9:2d:8c:46:64:1e:c2:1c:56:7b:eb:13:0f:d7:
0a:41:f5:0b:cc:e1:df:4b:c9:c0:c5:23:22:ba:60:
a6:49:35:fe:5d:ca:ca:8c:bd:9b:ef:9e:65:92:c1:
1c:c1:01:0d:84:05:8b:eb:dd:fa:fe:ed:d8:ee:40:
0c:be:ec:d5:87:ab:ca:cd:07:f2:65:ea:97:03:9b:
77:dd:37:8d:14:5e:e2:db:cd:fd:1f:a7:c6:20:8b:
67:de:69:aa:cf:8d:3f:f8:a8:22:bf:77:43:28:96:
2a:31:28:6d:1e:c0:f2:bc:5e:a3:54:5f:db:f3:40:
4b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:C1:B5:98:F7:D4:FB:69:0A:91:36:D9:C3:57:AE:C1:D9:E0:4D:16
X509v3 Authority Key Identifier:
keyid:34:78:C0:8A:06:3A:C2:D3:4A:1B:19:1E:24:36:38:9B:BE:ED:5E:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:13:92:9e:26:57:0d:9d:3c:8d:86:6f:a2:23:b9:98:f6:e3:
b5:30:82:7c:6f:83:07:43:9a:df:6d:36:06:e0:dd:90:fe:d1:
cd:d8:bc:e8:23:29:cf:e6:07:9a:2b:3e:e0:03:5c:22:77:1b:
4e:0a:3c:2b:27:b6:e4:a8:e7:0d:23:68:c8:c6:c3:b1:34:55:
f2:6a:63:db:96:5c:3d:b3:24:51:aa:19:2f:d4:d8:b9:ea:23:
7d:f9:3b:9b:23:e8:38:03:3a:cd:b4:3e:83:a0:4d:1e:cb:c4:
2c:f5:9a:03:07:74:98:41:49:f0:60:45:ae:f7:35:a9:65:97:
03:47:b9:1e:3a:b1:aa:87:8a:7f:64:b7:93:09:77:a2:5b:f9:
b6:e9:d8:2d:ab:0d:6a:12:f7:9d:2f:a2:9b:35:35:ee:91:f6:
9e:aa:c3:49:c6:e0:83:98:dc:48:08:3e:61:8a:22:6a:eb:88:
79:c4:c1:01:1a:2e:80:73:6b:c5:11:70:43:be:33:31:39:01:
41:2b:ba:b3:27:c5:97:c0:a4:3a:cc:8d:aa:0c:9c:d8:1c:74:
49:d2:cd:56:51:33:a5:11:1a:4e:7f:fc:5a:ac:d9:b9:2a:54:
2d:5a:47:41:1c:6c:56:d6:a5:7b:21:92:83:2a:1c:45:b3:ad:
89:bc:83:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:00:17 2025 by rpki-client