Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
File: NTPUOQNczcXww50bP7FhlbVV_KM.mft (raw, json)
Hash identifier: 3ZGSQQ43kiz0qlZUv0pVB3MksKd13mabWW7V9gb1Y0g=
Subject key identifier: 67:C9:62:76:99:93:26:04:20:2F:FC:65:3C:A3:B4:F8:F0:9A:D4:06
Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Certificate serial: 0197684E71CAA2EC568668AA5E48E1A50D03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
Manifest number: 0A82
Signing time: Fri 13 Jun 2025 08:01:00 +0000
Manifest this update: Fri 13 Jun 2025 08:01:00 +0000
Manifest next update: Sat 14 Jun 2025 08:01:00 +0000
Files and hashes: 1: NTPUOQNczcXww50bP7FhlbVV_KM.crl (hash: 3IUglu/68QWxQ/nDc79/IVMQVuwyIDFRbk0krz5Vt0U=)
2: rAVoUvT6eIAoJ9DaPocwQDvvkoc.roa (hash: 1BFZOwvrkIRFql6imBqxsdk52Ly1yvo/6JadLNNcDZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:4e:71:ca:a2:ec:56:86:68:aa:5e:48:e1:a5:0d:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Validity
Not Before: Jun 13 08:01:00 2025 GMT
Not After : Jun 14 08:01:00 2025 GMT
Subject: CN=67c9627699932604202ffc653ca3b4f8f09ad406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f3:99:5f:df:88:21:5b:15:50:36:81:57:63:
89:b0:fb:ce:42:3a:36:93:00:50:19:0a:2b:07:5a:
48:67:d5:df:34:f7:18:68:8b:03:bb:fe:e2:b6:ac:
1b:62:54:56:f0:a6:c8:a1:e3:26:df:eb:97:02:f7:
68:a4:4e:12:17:00:ef:5d:da:fc:72:13:e3:7d:c5:
88:15:03:3e:b5:b1:79:3c:39:e0:1e:41:a7:fe:57:
9d:85:93:46:9e:57:c2:42:9f:42:bc:29:60:45:95:
26:2f:05:b8:37:9f:68:85:6d:4a:8e:db:ba:a5:9a:
96:cb:f6:5c:29:a6:8f:51:c0:e2:af:ae:4b:ed:e1:
a8:9b:7c:c6:71:7f:90:d5:c9:d6:1a:17:e6:bc:65:
33:da:cf:12:44:37:30:da:2f:45:82:07:bd:97:d0:
6a:76:8b:02:15:84:1a:f2:32:a1:58:ad:43:0d:c7:
7c:28:00:df:8e:a1:dd:21:70:99:c7:77:ff:db:50:
31:24:e5:06:10:e7:4d:18:18:ea:4f:68:54:e5:7e:
d5:e1:f6:bf:17:59:14:96:a9:8f:b2:ff:56:e6:d8:
b7:b7:40:b9:5a:3d:6d:06:31:88:9f:ce:e8:32:34:
1c:b4:99:9b:2a:c4:f7:da:5a:db:47:77:b5:a5:5d:
cc:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:C9:62:76:99:93:26:04:20:2F:FC:65:3C:A3:B4:F8:F0:9A:D4:06
X509v3 Authority Key Identifier:
keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:03:4a:d4:ad:ec:88:2f:03:60:67:39:3b:e7:b0:a0:c0:a0:
ee:83:8a:40:23:28:d3:94:29:eb:39:ab:65:5f:9e:0d:5e:57:
72:13:99:18:4b:94:0b:b7:64:7a:d8:c6:20:e4:2f:f9:70:4a:
42:90:a2:96:05:57:4f:fe:ec:e9:f1:fc:4c:56:86:2f:73:ae:
5a:99:da:a3:f4:77:70:85:4f:d9:f9:84:5c:f0:0a:b8:d6:68:
bf:08:8c:b7:56:08:6c:8a:09:3e:b6:1d:05:a7:c1:ed:12:7a:
59:fe:d2:5b:79:ec:ac:14:61:5a:82:0f:30:0e:e1:a2:52:30:
ce:1a:87:70:d8:f5:50:c6:ee:2f:75:cc:07:78:c7:b4:d7:6c:
7c:63:5d:27:71:97:3e:1a:31:f4:ef:6c:7e:90:57:8c:5a:54:
b4:c5:20:e0:60:50:35:86:07:f1:9a:ed:81:da:7a:35:68:0d:
e2:93:9f:62:ea:77:a1:31:a6:c1:34:21:0b:bf:15:c7:d8:c4:
2a:23:11:56:14:75:56:09:c3:1e:84:40:9c:c8:4d:39:d2:40:
83:06:3a:cf:60:5b:1d:37:44:b2:f1:f5:0a:1e:8a:b4:84:0e:
11:96:92:aa:2f:57:5a:b2:43:fe:d9:60:0c:cd:73:ef:06:f9:
99:cc:1f:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 14:51:09 2025 by rpki-client