Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft
File: NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft (raw, json)
Hash identifier: p8aNz9PLYyBR8TiP/bICPef72/ikCaudyoCCVyIMiF4=
Subject key identifier: 07:AA:C5:61:0D:58:04:E3:9E:8C:41:51:12:6B:A8:98:4D:0F:F2:A3
Authority key identifier: 35:16:52:B8:38:FF:2D:96:72:AC:8C:A6:6B:A6:60:DD:4E:45:D6:99
Certificate issuer: /CN=351652b838ff2d9672ac8ca66ba660dd4e45d699
Certificate serial: 0199179AC96154903FCF964150089176EFCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRZSuDj_LZZyrIyma6Zg3U5F1pk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft
Manifest number: 0B50
Signing time: Fri 05 Sep 2025 02:00:44 +0000
Manifest this update: Fri 05 Sep 2025 02:00:44 +0000
Manifest next update: Sat 06 Sep 2025 02:00:44 +0000
Files and hashes: 1: NRZSuDj_LZZyrIyma6Zg3U5F1pk.crl (hash: ZaE2B3Qhqp+vCH8IbDjY/vDoEoxxzVCHTBKkV41qSgI=)
2: Zk0y4tHHB8Yu3r49IrGLEovlzps.roa (hash: Z8BlFARu3PiIVKgAzCmvXp/n3Elo4eu1cJ/tXUB0sZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft
rsync://rpki.ripe.net/repository/DEFAULT/NRZSuDj_LZZyrIyma6Zg3U5F1pk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:9a:c9:61:54:90:3f:cf:96:41:50:08:91:76:ef:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351652b838ff2d9672ac8ca66ba660dd4e45d699
Validity
Not Before: Sep 5 02:00:44 2025 GMT
Not After : Sep 6 02:00:44 2025 GMT
Subject: CN=07aac5610d5804e39e8c4151126ba8984d0ff2a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8f:9a:59:eb:6b:b7:c1:be:00:9d:dc:1d:bd:
ac:22:aa:02:a0:7b:71:e8:a6:1e:3e:5d:51:85:22:
97:66:16:83:83:2f:95:af:c3:d0:78:51:ea:05:38:
44:5b:2d:00:8d:55:93:2d:fd:7a:56:a9:4a:ba:32:
e0:42:fb:5d:3e:e7:8d:5b:80:3a:e0:2c:08:b0:36:
d4:93:cf:9f:65:1d:c4:7a:17:24:1b:4b:0c:82:cf:
34:33:a2:17:d7:88:b1:f2:c3:3a:4e:71:e5:6d:37:
ff:dd:34:bb:52:eb:58:0f:14:f7:32:4b:f2:44:4c:
fc:4f:1d:06:c3:18:16:0d:b1:3c:40:ff:a6:53:a1:
e6:40:30:1f:93:7b:0e:d3:f6:0a:b8:1c:4a:71:4c:
43:64:be:a4:c1:bf:0a:16:b4:35:9d:6f:a3:6a:a3:
7e:cb:26:77:87:01:50:1e:80:4c:56:c2:3b:77:3d:
5f:bf:96:c1:95:41:0f:df:5c:eb:a4:86:50:91:d7:
e2:0f:6b:ec:aa:3d:83:f0:df:7d:48:1f:85:a3:41:
1f:e7:bb:60:b5:3d:a6:b2:14:d2:3d:e9:f5:61:97:
51:ef:42:69:d7:0a:ec:53:f5:87:66:ce:c9:30:88:
8e:2d:71:06:f6:de:f1:82:87:43:65:7c:c1:63:41:
46:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:AA:C5:61:0D:58:04:E3:9E:8C:41:51:12:6B:A8:98:4D:0F:F2:A3
X509v3 Authority Key Identifier:
keyid:35:16:52:B8:38:FF:2D:96:72:AC:8C:A6:6B:A6:60:DD:4E:45:D6:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRZSuDj_LZZyrIyma6Zg3U5F1pk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:77:34:35:09:a7:fb:91:1d:c4:b2:76:9a:0a:94:2d:45:c6:
58:f3:d8:20:2b:93:24:18:d1:9c:5b:2a:34:c9:cf:7a:04:a1:
5c:aa:e7:20:d0:fb:ab:d9:f2:98:67:55:2d:33:03:3a:30:1c:
d5:11:47:10:aa:f7:fb:04:f4:dd:b8:72:6e:b5:9a:bb:1a:0f:
3f:a6:78:f1:6c:e4:89:12:cc:e7:88:e4:b3:34:6b:96:24:f5:
79:f7:1c:58:db:5c:22:1b:1d:ed:4e:94:4d:f7:12:af:e2:00:
42:d1:57:94:bb:7f:2c:03:df:cf:b4:ff:fb:8a:49:8d:69:2a:
10:ca:29:0e:46:b7:49:ec:40:a3:5b:08:94:8b:f3:a6:a1:12:
8c:e0:5f:47:e2:7d:80:64:0d:72:64:74:09:81:c6:0c:0e:0c:
4e:b7:7d:2d:1c:b4:27:1c:bb:5c:af:03:95:a0:92:b3:e1:99:
0d:73:66:8d:2c:fe:14:8f:52:e3:57:f1:35:e3:fb:bc:76:23:
f0:47:e0:4a:fb:7a:36:d9:c6:8f:1b:fd:68:44:22:4b:88:63:
34:31:5b:11:a4:2d:b2:9a:51:75:b4:62:fc:79:98:ef:30:41:
50:19:f6:71:e0:52:0a:4a:b5:ef:7a:5b:a4:d7:88:27:8b:b9:
aa:71:05:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 11:17:15 2025 by rpki-client