Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
File: NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft (raw, json)
Hash identifier: Jv2aX6hrnHNU9Vx29NLsaVKQCIBA/y6UYFiU7EJAXCw=
Subject key identifier: C4:B0:3B:46:74:A6:A9:8F:4D:C1:24:CC:9D:94:75:8E:60:59:4C:31
Authority key identifier: 34:01:23:43:A6:2F:3F:09:B5:5C:DB:C0:1E:75:C3:82:12:A2:35:DF
Certificate issuer: /CN=34012343a62f3f09b55cdbc01e75c38212a235df
Certificate serial: 019921E7B6802D14DFDC89B38B24B90F19FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
Manifest number: 0E76
Signing time: Sun 07 Sep 2025 02:00:57 +0000
Manifest this update: Sun 07 Sep 2025 02:00:57 +0000
Manifest next update: Mon 08 Sep 2025 02:00:57 +0000
Files and hashes: 1: NAEjQ6YvPwm1XNvAHnXDghKiNd8.crl (hash: BAXknVYyZp9erZhsiUkDqrXXFZYbG+GHGotHJxGyAkM=)
2: hRAHaXw08T46yQXdPdRGo5FEyKc.roa (hash: kanS0GeR3i8daBZU7h/NZ29VRbj73ZfNj0diMdbJ7lg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:b6:80:2d:14:df:dc:89:b3:8b:24:b9:0f:19:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34012343a62f3f09b55cdbc01e75c38212a235df
Validity
Not Before: Sep 7 02:00:57 2025 GMT
Not After : Sep 8 02:00:57 2025 GMT
Subject: CN=c4b03b4674a6a98f4dc124cc9d94758e60594c31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:b4:2d:7f:a7:75:0d:24:89:60:7e:6e:16:6c:
4a:b5:60:9e:06:dd:14:ac:7a:9f:0a:7f:77:d8:f7:
c2:96:4e:4f:37:e4:83:8c:15:c9:3f:65:6d:95:1b:
8a:d5:20:80:44:a2:4c:c0:65:cb:32:e3:ed:fd:cc:
e8:06:e7:61:db:d2:5c:1a:84:68:aa:e7:f2:cd:f6:
88:66:c3:22:1b:39:95:d6:33:c7:75:f1:39:08:51:
b2:07:44:ef:84:bb:6d:ad:8e:bb:36:1e:82:72:58:
94:88:e0:4a:a0:1f:1c:6c:d8:76:e2:8a:dd:cd:64:
55:36:2e:51:1f:fe:fa:51:5c:2d:f6:c3:e6:38:5c:
7a:35:3e:d9:af:0f:c0:25:13:6d:5f:84:86:0f:ed:
c9:0c:18:c5:6b:5c:cf:59:9f:95:63:99:cd:ec:c1:
b2:18:29:1d:2e:a6:13:4e:ca:53:f0:17:fc:3f:f7:
2e:e5:55:cd:02:1b:4d:f6:0b:77:dd:a2:7f:a0:9c:
88:c3:1e:f0:79:77:71:dd:56:38:76:ff:a3:f1:4d:
18:6f:1f:3a:ab:83:8d:69:f5:e5:70:da:33:55:c8:
62:8a:07:74:18:9a:8f:a5:79:26:db:23:1c:4c:6b:
fb:0c:98:b9:c6:f7:8e:66:cc:9e:c0:46:d7:4d:dc:
71:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:B0:3B:46:74:A6:A9:8F:4D:C1:24:CC:9D:94:75:8E:60:59:4C:31
X509v3 Authority Key Identifier:
keyid:34:01:23:43:A6:2F:3F:09:B5:5C:DB:C0:1E:75:C3:82:12:A2:35:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:bf:bd:59:96:a4:e3:0d:51:32:8c:aa:ff:43:fd:f7:55:0c:
60:6b:27:53:c8:c8:44:f4:68:44:78:5f:23:65:88:05:44:1c:
39:5d:d4:7c:c1:59:bf:23:0c:86:b5:79:fc:82:ca:ff:7a:5e:
ca:c8:a0:3d:ac:74:2f:02:57:68:e1:0b:5b:6a:f9:53:c9:8c:
bb:8d:59:07:7f:a3:a4:88:28:48:5f:31:5e:6b:34:81:74:75:
3d:ce:1a:5d:21:21:d0:a9:a7:2a:cb:d5:ff:2e:e3:ac:57:16:
82:15:2c:c8:4c:41:0b:be:28:bc:59:cf:99:82:8a:c9:b2:40:
08:03:df:9c:47:d1:cc:d5:02:1b:5f:34:e4:33:ba:a1:29:aa:
b9:0f:4c:95:5a:f5:c5:20:69:2c:f0:3f:3b:c6:3c:3e:22:31:
ab:a0:9b:ef:c4:57:7b:44:7e:d6:ae:ad:dd:61:be:e7:e5:9d:
71:4b:e7:20:d0:76:cc:f2:0c:df:65:e0:0e:3e:c2:eb:d2:c8:
88:ee:2f:62:05:09:8b:4f:4a:8b:81:86:bc:a1:ab:3f:0d:1b:
07:92:c6:a9:38:af:3b:71:19:53:c1:cc:8a:1e:0a:08:a8:b1:
0a:b0:e2:ce:8a:b7:1d:81:a8:2d:03:ea:43:56:d0:31:65:06:
0b:d9:f0:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:47 2025 by rpki-client