Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
File: nGfqNKARpHc4cVg-w5VOeR2MAo0.mft (raw, json)
Hash identifier: a12afb0IkPyZ80aphDxcFxvi9/6ve+9+VSPHmRkDaSU=
Subject key identifier: 8F:4C:6F:40:FC:F1:BC:BB:E8:B1:CC:62:91:4B:E0:79:26:C2:D7:B3
Authority key identifier: 9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
Certificate issuer: /CN=9c67ea34a011a4773871583ec3954e791d8c028d
Certificate serial: 01984A414FCC8722E37654895A3AF37144FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
Manifest number: 0CE6
Signing time: Sun 27 Jul 2025 05:00:50 +0000
Manifest this update: Sun 27 Jul 2025 05:00:50 +0000
Manifest next update: Mon 28 Jul 2025 05:00:50 +0000
Files and hashes: 1: NCPzn1GpZq4vT4gRDeBcmpEUhRQ.roa (hash: Vq8Q1+OKJnlcLx/yX0O6NcYNdeQRXSpw2T1WMWL6+Zw=)
2: nGfqNKARpHc4cVg-w5VOeR2MAo0.crl (hash: xqY4yVO8/9MVz4RoZpPJt1UqMX14vXxtvFYL4YQ1lKg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:41:4f:cc:87:22:e3:76:54:89:5a:3a:f3:71:44:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c67ea34a011a4773871583ec3954e791d8c028d
Validity
Not Before: Jul 27 05:00:50 2025 GMT
Not After : Jul 28 05:00:50 2025 GMT
Subject: CN=8f4c6f40fcf1bcbbe8b1cc62914be07926c2d7b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f4:82:9f:fc:8d:df:33:af:71:a9:fa:e1:85:
a0:4e:e9:a4:00:59:c2:17:3d:5d:4f:30:34:7a:4d:
c1:23:1b:03:46:66:7b:0d:9b:77:5f:6f:75:c6:7d:
e2:f4:b9:02:fc:7b:87:4b:33:23:56:99:6e:c9:3d:
6e:f2:80:c2:8e:3a:45:2b:35:9f:23:49:70:a8:d3:
5c:96:73:8b:2d:7a:f1:89:57:e9:68:b0:e0:ac:bf:
d9:77:3a:f2:8a:91:31:19:df:59:0c:45:10:90:0d:
38:81:68:54:9f:a3:e6:36:af:79:91:12:0a:bc:7c:
5a:8f:d2:50:11:92:3e:fc:e3:c1:b3:56:81:8c:ee:
91:67:b5:f3:31:86:d3:b5:da:3c:36:32:11:07:3e:
eb:92:35:44:82:96:a4:aa:8e:e6:9c:49:13:8d:ce:
fe:e5:1f:d2:85:88:bc:90:e9:6a:ac:de:cc:b9:b7:
f9:6a:2b:59:a0:61:e7:44:61:4a:ad:1f:b4:5f:99:
d3:9a:63:20:72:25:fb:2e:ab:6d:0e:be:e4:84:0e:
fc:9a:60:a5:62:75:77:cc:40:d7:81:dc:d1:bd:80:
39:e2:99:a3:7c:ea:f0:fe:35:83:35:af:ba:41:f4:
47:88:c0:38:85:ac:75:ec:ad:74:de:bc:cf:f0:f3:
db:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:4C:6F:40:FC:F1:BC:BB:E8:B1:CC:62:91:4B:E0:79:26:C2:D7:B3
X509v3 Authority Key Identifier:
keyid:9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:1f:20:7e:c6:20:42:cc:17:a2:47:d9:50:c8:15:16:4e:31:
b5:24:bd:e6:58:ca:32:0f:30:92:14:89:bf:18:19:23:69:3b:
8f:ab:41:e3:33:f6:22:6b:a8:a1:c5:6b:90:17:40:de:46:f1:
7c:32:c3:fc:e1:40:ca:63:66:9d:73:64:09:65:50:e7:92:eb:
c5:47:2e:21:f9:0c:39:97:4d:59:2c:98:41:23:44:ac:fb:cd:
d9:24:8e:4c:de:46:41:de:50:ce:01:f6:85:c2:c3:11:f7:f9:
31:df:bf:89:51:0c:dd:28:b7:e4:31:83:53:e6:f9:45:bd:44:
87:30:9e:f3:2b:e2:a1:8b:b5:4b:ac:47:16:29:97:4b:c2:39:
50:b3:bd:7a:8d:b3:ed:82:aa:25:fc:ab:b1:b1:4f:54:11:42:
6d:ea:7f:d2:c2:c1:f1:9b:e3:64:88:fd:76:94:77:cd:31:7d:
0d:a8:07:25:3f:1f:94:68:9a:03:d9:a1:c8:0e:b3:98:78:df:
8f:8b:69:4c:cd:8c:b4:2f:eb:55:42:dc:73:50:63:c4:cd:72:
59:e6:54:27:f3:25:fc:cf:46:8a:0c:b6:c6:9c:7a:4c:3e:cb:
d5:90:c1:95:d2:1b:2a:23:b0:ce:8b:5a:f2:34:e7:a1:20:2d:
2f:a3:55:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 15:33:58 2025 by rpki-client