Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
File: N8ZRc24kPV6mzsymOv20oDEtdzA.mft (raw, json)
Hash identifier: coUkja4EdCCouTmGgRU7rf4pT+PgRfylQblK360uaTw=
Subject key identifier: 45:F8:AD:4B:6C:7F:B6:A7:AE:2F:06:73:38:A5:7C:1E:B1:62:69:3D
Authority key identifier: 37:C6:51:73:6E:24:3D:5E:A6:CE:CC:A6:3A:FD:B4:A0:31:2D:77:30
Certificate issuer: /CN=37c651736e243d5ea6cecca63afdb4a0312d7730
Certificate serial: 0199221F0F50B0B4A64F8780B1B9EA68ED84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 03:01:24 +0000
Manifest this update: Sun 07 Sep 2025 03:01:24 +0000
Manifest next update: Mon 08 Sep 2025 03:01:24 +0000
Files and hashes: 1: N8ZRc24kPV6mzsymOv20oDEtdzA.crl (hash: 4AS6X155/omejJYtPboqEcG8kS37MdNwDXUvjwL+0uU=)
2: ZRv7bLa28b8tf6OWanURzCF5xRg.roa (hash: oK8tGS8JdWtsRZmm08fTUJdRLOafRX6MArGF8Pv/FL0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:0f:50:b0:b4:a6:4f:87:80:b1:b9:ea:68:ed:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37c651736e243d5ea6cecca63afdb4a0312d7730
Validity
Not Before: Sep 7 03:01:24 2025 GMT
Not After : Sep 8 03:01:24 2025 GMT
Subject: CN=45f8ad4b6c7fb6a7ae2f067338a57c1eb162693d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f8:4b:89:48:09:68:55:86:0a:ba:75:94:04:
ea:a5:1c:ae:94:4d:b5:d8:49:2a:47:29:bb:05:16:
f6:73:c1:96:57:07:7e:96:42:cf:fe:9d:d3:22:a0:
03:44:18:fe:94:16:82:49:cb:f9:70:be:45:6e:99:
24:4c:99:8e:b1:fb:fe:55:73:97:67:7e:be:87:e8:
f9:cd:55:dc:7c:e3:16:b2:7a:93:63:ec:25:bc:16:
29:3f:f9:7a:46:50:8f:8b:e4:62:0c:95:7e:90:dc:
71:57:cf:7a:10:17:eb:c4:ff:e9:b1:c7:6f:db:1b:
20:73:98:64:6a:b6:0b:21:88:71:36:d7:a2:29:d8:
6a:74:33:5e:a5:c1:b4:3c:ab:19:9f:55:fd:97:f3:
0f:70:80:b3:cc:62:e5:1c:ac:41:29:36:ec:ae:7a:
18:c9:d4:15:8b:77:d9:58:fb:55:c2:39:46:c4:c3:
26:02:1c:72:f1:40:db:1c:50:d9:49:e2:63:43:75:
45:4c:f9:ce:8a:68:bc:8e:0c:bc:4b:29:7a:c9:3c:
a1:1e:2a:2f:e7:79:b5:50:e7:7d:6c:52:e5:27:39:
fd:16:90:98:8d:3c:bf:f4:7f:e3:71:33:48:f1:8e:
19:5f:c4:c9:c0:f6:1c:83:35:75:28:b2:7a:d4:69:
54:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:F8:AD:4B:6C:7F:B6:A7:AE:2F:06:73:38:A5:7C:1E:B1:62:69:3D
X509v3 Authority Key Identifier:
keyid:37:C6:51:73:6E:24:3D:5E:A6:CE:CC:A6:3A:FD:B4:A0:31:2D:77:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:8e:70:ea:90:69:84:e9:9f:5b:99:52:3a:a5:dd:71:cc:e5:
aa:57:33:53:6d:7a:07:be:0f:fd:2a:f9:82:85:dc:5c:64:4c:
e2:94:ae:0f:3d:0a:20:40:8e:29:40:9a:64:54:1b:df:e0:10:
8f:70:a3:d2:29:20:30:d8:72:32:77:ba:a3:bc:ca:a5:bb:5c:
44:ea:06:56:f2:54:5c:84:24:8c:e4:f9:16:cc:ac:11:f8:67:
8b:9b:9b:e6:2e:f4:10:e2:2c:98:67:ed:08:35:d2:9a:7b:36:
75:b8:a4:14:0e:ca:c0:ac:ac:7b:7e:70:6b:35:24:09:b5:f9:
88:4e:ea:b3:30:6c:b3:42:f5:8a:a1:b4:da:65:d4:e3:86:91:
60:82:0b:9c:66:2a:4e:e0:2c:13:40:7a:94:d0:b1:77:89:a0:
68:ea:93:18:cf:fb:03:23:db:f3:f0:14:52:47:e6:a8:e3:8d:
bf:f1:3e:5a:cd:9c:40:64:07:41:a3:82:7c:8c:c0:3a:1a:26:
85:1f:1c:59:11:09:aa:44:89:1d:63:45:04:38:d2:33:85:a8:
5c:e4:74:0f:6c:6b:3e:73:62:d0:3b:e7:d0:49:6c:a4:04:fc:
7b:0a:e9:31:5c:7a:9b:63:a7:bd:b5:d9:b6:57:9d:d9:c0:a0:
33:49:7a:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:46:14 2025 by rpki-client