Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/da8b6b-19fa-4976-baa0-329211029a1a/1/NfGlc5FRU96CiQ6uEwMGf6aLKHc.mft
File: NfGlc5FRU96CiQ6uEwMGf6aLKHc.mft (raw, json)
Hash identifier: exp9DEI0Fc+6tALklyiU4fhNE7SULZvMEFIQF0aJobI=
Subject key identifier: BE:68:5B:BE:CB:4E:C4:6B:CB:23:D1:51:4B:04:D4:35:11:39:A7:76
Authority key identifier: 35:F1:A5:73:91:51:53:DE:82:89:0E:AE:13:03:06:7F:A6:8B:28:77
Certificate issuer: /CN=35f1a573915153de82890eae1303067fa68b2877
Certificate serial: 0197470BA710E133513251B39B4DFE750C73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NfGlc5FRU96CiQ6uEwMGf6aLKHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/da8b6b-19fa-4976-baa0-329211029a1a/1/NfGlc5FRU96CiQ6uEwMGf6aLKHc.mft
Manifest number: 107D
Signing time: Fri 06 Jun 2025 21:00:35 +0000
Manifest this update: Fri 06 Jun 2025 21:00:35 +0000
Manifest next update: Sat 07 Jun 2025 21:00:35 +0000
Files and hashes: 1: 64AufSKo0ctGsskBfGJHYgegDUM.roa (hash: TxQbijMyiwaYhEgR6gv3I6pa/f1D2b/JYXZHussR2b4=)
2: NfGlc5FRU96CiQ6uEwMGf6aLKHc.crl (hash: LMExnOvHfUperIrSwFcwlcrr54dOofhIVSgPeoelT8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/da8b6b-19fa-4976-baa0-329211029a1a/1/NfGlc5FRU96CiQ6uEwMGf6aLKHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/da8b6b-19fa-4976-baa0-329211029a1a/1/NfGlc5FRU96CiQ6uEwMGf6aLKHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/NfGlc5FRU96CiQ6uEwMGf6aLKHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 21:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:a7:10:e1:33:51:32:51:b3:9b:4d:fe:75:0c:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35f1a573915153de82890eae1303067fa68b2877
Validity
Not Before: Jun 6 21:00:35 2025 GMT
Not After : Jun 7 21:00:35 2025 GMT
Subject: CN=be685bbecb4ec46bcb23d1514b04d4351139a776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c8:de:8c:81:98:da:22:6b:bb:83:15:ba:c1:
ac:20:3d:13:39:04:f8:f7:83:0a:24:d5:e8:e6:f7:
f6:5a:01:19:5f:d7:fc:7c:c6:ff:c5:08:32:2b:eb:
67:8a:d6:6e:ee:2c:90:3e:29:99:c3:a5:07:d0:c7:
39:b4:9b:78:ed:cb:73:be:2f:7f:98:d7:d1:44:c3:
ac:81:c8:65:79:11:29:67:59:a3:a6:32:d7:f6:2c:
d3:a1:9a:fa:74:e4:37:2b:38:bc:3a:84:24:f5:56:
f3:03:0e:fa:44:cf:4b:c9:2a:c5:09:d4:02:0e:5c:
8f:83:ed:4e:73:a7:1e:7a:ea:bb:a1:5c:42:f2:db:
43:88:e1:2d:a8:a6:45:99:4c:4e:16:3d:9e:e6:d0:
9e:e3:ad:38:58:6c:ca:e9:76:4d:7d:86:d1:66:e9:
2c:f7:59:5a:a5:89:2c:b3:2e:e3:69:c3:69:bb:2b:
e1:1c:71:6e:fe:fd:82:ff:fa:38:eb:cd:c0:c8:03:
65:9f:90:e6:56:ac:a8:38:e0:d8:39:81:0f:4b:a4:
67:93:28:a3:ba:38:30:6e:a5:b6:e0:85:af:8e:3b:
45:69:ab:ff:07:65:dd:d5:cc:f0:6f:9c:57:f8:9a:
87:8b:56:17:fa:ae:bf:7c:95:b7:30:8a:21:a2:21:
59:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:68:5B:BE:CB:4E:C4:6B:CB:23:D1:51:4B:04:D4:35:11:39:A7:76
X509v3 Authority Key Identifier:
keyid:35:F1:A5:73:91:51:53:DE:82:89:0E:AE:13:03:06:7F:A6:8B:28:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NfGlc5FRU96CiQ6uEwMGf6aLKHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/da8b6b-19fa-4976-baa0-329211029a1a/1/NfGlc5FRU96CiQ6uEwMGf6aLKHc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/da8b6b-19fa-4976-baa0-329211029a1a/1/NfGlc5FRU96CiQ6uEwMGf6aLKHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:19:82:0f:88:87:aa:51:5d:80:2d:5b:da:e2:f4:2a:b2:48:
de:12:97:e1:5e:ba:29:41:d9:2d:36:21:06:41:4e:29:ba:f3:
1d:b4:10:2e:9f:5d:5a:bf:09:c2:7e:3e:95:11:6d:cd:e0:72:
da:f4:ff:66:7d:c4:af:51:c8:18:1a:88:b8:b4:06:e0:59:39:
5a:90:22:71:ee:9a:9d:03:64:2c:90:48:7c:4b:b9:5f:c0:cd:
26:ab:d4:6e:b7:1d:89:3f:05:8d:5f:df:d3:5a:62:8f:ac:b1:
0a:f8:b2:01:af:0d:ab:d2:bb:bc:c3:09:81:e4:3c:b6:78:d1:
3c:d9:8e:bd:cc:4f:b0:eb:8b:bd:d4:a0:6d:42:7b:4f:8b:d9:
9c:fc:51:92:0c:39:fd:0c:da:2c:2d:4a:1f:6c:96:6a:36:db:
cb:5f:44:5a:77:19:1d:8f:37:e7:ff:df:d4:ef:ff:3d:42:7e:
c3:9d:11:ed:90:ae:57:e5:74:e5:30:22:28:55:46:bb:12:bd:
63:99:ca:c4:84:35:fa:9d:6c:3d:75:93:dc:70:c5:9c:b6:c3:
98:b4:fe:d0:a0:1b:9e:b2:4b:ca:e7:a8:f9:0a:f0:75:5f:19:
02:97:8d:0e:34:de:cd:8a:96:2b:ae:91:ba:02:6d:09:79:fc:
d2:ad:93:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:40:27 2025 by rpki-client