Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
File: N8ZRc24kPV6mzsymOv20oDEtdzA.mft (raw, json)
Hash identifier: O4f9wNwMewyM8KbznnY0F5lM837escPttdpr6vOIQp4=
Subject key identifier: 8D:80:B7:8D:A8:D6:21:1E:54:29:8C:F4:EF:0F:66:3C:5C:BB:A6:94
Authority key identifier: 37:C6:51:73:6E:24:3D:5E:A6:CE:CC:A6:3A:FD:B4:A0:31:2D:77:30
Certificate issuer: /CN=37c651736e243d5ea6cecca63afdb4a0312d7730
Certificate serial: 019748FA0F3353813EA897C1DFC4C392A67C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 06:00:36 +0000
Manifest this update: Sat 07 Jun 2025 06:00:36 +0000
Manifest next update: Sun 08 Jun 2025 06:00:36 +0000
Files and hashes: 1: N8ZRc24kPV6mzsymOv20oDEtdzA.crl (hash: 35zdfUoSw9HzUn1xLoocrehTfl/R786GKgOzGuTuEi4=)
2: ZRv7bLa28b8tf6OWanURzCF5xRg.roa (hash: oK8tGS8JdWtsRZmm08fTUJdRLOafRX6MArGF8Pv/FL0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:0f:33:53:81:3e:a8:97:c1:df:c4:c3:92:a6:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37c651736e243d5ea6cecca63afdb4a0312d7730
Validity
Not Before: Jun 7 06:00:36 2025 GMT
Not After : Jun 8 06:00:36 2025 GMT
Subject: CN=8d80b78da8d6211e54298cf4ef0f663c5cbba694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b3:85:e8:10:72:1b:87:cc:79:88:5f:57:23:
d7:3e:bb:68:d2:67:8c:65:09:f2:fd:3a:f4:2e:70:
1d:20:21:3f:3e:e3:f2:34:01:39:72:be:d7:cc:7c:
70:98:b0:fb:49:b3:09:91:c9:d2:53:05:a9:5a:91:
ce:6a:94:0b:13:f1:d6:87:b8:44:cf:2a:d4:49:ab:
05:1d:32:2b:bd:1e:ea:4a:a1:7e:45:28:39:e4:c5:
61:02:c7:a9:f8:31:10:a2:34:67:b4:01:f8:b3:35:
1f:d2:ce:33:d2:c9:eb:de:44:28:2e:04:94:47:54:
67:68:de:8d:80:f9:fe:d2:b4:4a:b7:37:74:14:b6:
26:28:43:76:8b:27:1b:4d:84:0e:d9:fa:4e:99:47:
1d:39:7c:a1:7e:17:8e:e3:af:ed:d8:5a:b6:4e:62:
c4:60:db:07:0d:c1:f2:27:b5:91:79:2d:bc:e1:76:
55:3c:87:57:21:b9:94:e1:6e:1b:6e:e5:08:ed:a6:
86:64:cc:f4:49:34:cb:78:c0:34:79:2d:f2:fd:37:
c2:38:79:dd:48:ff:d6:57:bb:f3:e8:b6:a4:1f:fb:
b8:4f:0f:bf:54:aa:ba:7d:8d:e2:f0:10:01:40:60:
ed:05:2f:72:23:ed:83:2f:b0:7d:d4:6d:20:a8:af:
c2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:80:B7:8D:A8:D6:21:1E:54:29:8C:F4:EF:0F:66:3C:5C:BB:A6:94
X509v3 Authority Key Identifier:
keyid:37:C6:51:73:6E:24:3D:5E:A6:CE:CC:A6:3A:FD:B4:A0:31:2D:77:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:fd:34:26:68:f1:10:e9:6f:41:25:2e:c2:0a:65:9a:f3:6e:
ac:50:d1:33:50:64:2f:b4:85:cc:ce:83:6b:71:3f:9f:2c:43:
0e:e3:2c:fd:0e:96:95:4f:8e:97:ce:4a:eb:0e:8c:86:07:7b:
53:1a:3b:2b:96:65:d2:9b:af:1d:35:b5:1a:e9:f2:25:91:2b:
d7:43:4b:16:74:8c:0e:5b:42:1b:bb:fa:a0:e0:91:1b:46:1a:
38:43:b8:3f:3d:98:a3:93:c0:97:7e:b7:66:25:45:f7:76:12:
c2:0d:c1:34:ef:64:02:56:ac:61:be:95:7e:18:51:af:17:57:
d5:9f:6d:78:82:77:f2:89:f8:57:33:12:5f:8f:c9:5f:dd:c0:
19:c7:91:bb:f1:ea:7a:9b:78:0f:9e:b5:a9:f7:00:88:a8:42:
34:fe:f9:a8:36:e5:97:81:c6:ad:83:af:27:42:e0:6f:32:de:
35:8b:f3:d4:27:ad:30:8f:6b:ff:9c:47:36:46:b0:e2:17:65:
a4:b2:4f:66:e3:85:2d:c0:59:9c:d0:1b:11:31:95:c1:27:a1:
f7:c7:69:aa:d0:69:3f:f4:fc:c8:a3:dd:3d:7a:cd:cd:8e:cb:
8d:f5:bc:d9:1c:1b:04:31:7c:34:f5:2f:cd:1d:66:84:c6:b6:
d8:36:67:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:37:02 2025 by rpki-client