Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
File: NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft (raw, json)
Hash identifier: n/4go6dFA9iuhe3qC1gVkVA2rNQl6z6QrgwmehNrqGY=
Subject key identifier: 83:E2:22:12:31:CB:C6:40:3A:2C:9B:9E:C0:65:42:EE:D2:55:E9:C9
Authority key identifier: 34:01:23:43:A6:2F:3F:09:B5:5C:DB:C0:1E:75:C3:82:12:A2:35:DF
Certificate issuer: /CN=34012343a62f3f09b55cdbc01e75c38212a235df
Certificate serial: 0197CA279A7D9C2F3F018EA0FC849EE0530A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
Manifest number: 0DC4
Signing time: Wed 02 Jul 2025 08:01:22 +0000
Manifest this update: Wed 02 Jul 2025 08:01:22 +0000
Manifest next update: Thu 03 Jul 2025 08:01:22 +0000
Files and hashes: 1: NAEjQ6YvPwm1XNvAHnXDghKiNd8.crl (hash: Zha4cnZ0E+psMhAmoJbmB32Bbre8jyKBnGfHMR5uTS8=)
2: hRAHaXw08T46yQXdPdRGo5FEyKc.roa (hash: kanS0GeR3i8daBZU7h/NZ29VRbj73ZfNj0diMdbJ7lg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 08:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ca:27:9a:7d:9c:2f:3f:01:8e:a0:fc:84:9e:e0:53:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34012343a62f3f09b55cdbc01e75c38212a235df
Validity
Not Before: Jul 2 08:01:22 2025 GMT
Not After : Jul 3 08:01:22 2025 GMT
Subject: CN=83e2221231cbc6403a2c9b9ec06542eed255e9c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b7:0e:98:45:2f:de:b6:4b:c1:61:cd:d8:9d:
76:74:29:a2:91:25:4f:43:0a:d1:d5:fd:fe:16:09:
cd:39:01:93:60:12:9a:90:24:3a:86:1a:00:aa:12:
05:f2:8f:6a:95:f8:fa:2a:1f:33:5f:f7:07:43:bd:
d5:7f:e6:e2:ef:66:a5:2d:83:38:93:e9:ed:03:e1:
3b:7c:6b:97:fe:e8:70:ed:8c:86:94:61:c2:7a:2f:
bb:44:d1:0f:3e:98:c2:c5:d3:d9:6f:49:bc:94:5a:
ad:46:e3:47:97:40:5f:6c:41:23:cc:c6:1e:49:91:
0f:06:23:8e:71:d5:cf:43:56:36:ae:a0:4b:f0:2e:
c2:78:5f:ee:95:8e:32:d2:08:cf:e8:da:b8:30:63:
ad:39:b1:c2:0a:01:c5:73:97:44:ea:61:08:a1:11:
ec:8b:ec:27:fe:da:2f:38:00:b3:be:4b:ca:e5:6a:
c5:67:e8:66:86:60:2e:a2:fa:1f:75:96:a2:0c:1d:
48:df:6e:fd:ee:36:94:c6:c1:19:6c:c2:84:be:a3:
7b:87:65:4c:3c:0a:e9:00:0e:23:57:ff:f9:d2:01:
99:45:81:8b:98:d0:28:bc:62:cf:b3:ff:13:6a:f0:
48:b2:d8:45:f4:8f:8e:ed:28:cf:d9:83:b2:c6:d2:
75:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:E2:22:12:31:CB:C6:40:3A:2C:9B:9E:C0:65:42:EE:D2:55:E9:C9
X509v3 Authority Key Identifier:
keyid:34:01:23:43:A6:2F:3F:09:B5:5C:DB:C0:1E:75:C3:82:12:A2:35:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:cb:1d:8a:3d:7a:6b:c5:51:ec:2e:4d:86:56:28:01:b7:f2:
eb:d4:51:08:5d:a2:7a:2d:ba:e5:c7:dd:b3:90:46:e9:c1:2c:
b6:6a:8b:98:fe:0c:78:a2:8a:32:06:07:9c:bb:94:40:d6:94:
37:88:7b:72:28:aa:37:c0:cf:3c:1b:7a:d9:dc:77:ca:04:2e:
f0:47:cc:cf:34:5f:bb:2a:82:d8:47:d9:d2:91:b6:eb:f9:d2:
ee:3e:29:8f:09:de:f5:fd:98:46:3a:53:bf:46:00:6f:b7:c4:
af:97:9a:17:64:8d:89:54:66:ec:1d:55:30:a0:4f:99:40:87:
c7:6d:6a:7e:b8:a0:73:aa:f4:8f:86:d4:9e:f1:41:e5:26:f5:
87:78:0c:63:68:6f:f2:a4:85:12:5c:d4:2e:b2:1b:e1:61:b9:
5c:b0:fa:a6:8e:9c:aa:26:dd:45:04:fe:66:ba:f3:44:fe:ba:
4c:3f:ce:5e:ff:33:15:00:a5:e2:32:82:93:c6:eb:99:2d:8b:
8e:81:b8:13:2c:9e:9f:9a:05:4c:a3:33:ca:ea:7b:01:35:47:
49:bc:ec:ea:17:6f:4a:be:3e:4e:4e:d4:43:57:d2:eb:99:74:
c3:d8:17:d7:31:57:d6:72:7d:cf:9c:30:9b:95:8d:00:2d:57:
17:41:3d:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 13:09:14 2025 by rpki-client