Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
File: N5fgOfAlolqm6ZI5HZJCYGmbpns.mft (raw, json)
Hash identifier: EUJtPdo5TqTG/LDM676t3R6GUSLKa0V6dVRbfF5Q2MM=
Subject key identifier: 4C:51:D2:8E:12:38:38:44:64:DD:C9:31:EA:64:99:33:17:23:59:80
Authority key identifier: 37:97:E0:39:F0:25:A2:5A:A6:E9:92:39:1D:92:42:60:69:9B:A6:7B
Certificate issuer: /CN=3797e039f025a25aa6e992391d924260699ba67b
Certificate serial: 019922FA8D31D8180E733BB5F43682148AD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
Manifest number: 0FEC
Signing time: Sun 07 Sep 2025 07:01:09 +0000
Manifest this update: Sun 07 Sep 2025 07:01:09 +0000
Manifest next update: Mon 08 Sep 2025 07:01:09 +0000
Files and hashes: 1: N5fgOfAlolqm6ZI5HZJCYGmbpns.crl (hash: PyFdu40M2x12GiiDstwA6zcY5ziRyfBUL6tw0Cs2ERE=)
2: sVzqlUVXrHqVsVw4yhzSu1oYIjM.roa (hash: HaD8do3X9duYtx96VIyzNjLwjQlO2MrTlBSjfqbB5ec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:8d:31:d8:18:0e:73:3b:b5:f4:36:82:14:8a:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3797e039f025a25aa6e992391d924260699ba67b
Validity
Not Before: Sep 7 07:01:09 2025 GMT
Not After : Sep 8 07:01:09 2025 GMT
Subject: CN=4c51d28e1238384464ddc931ea64993317235980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c8:f1:61:6d:01:4f:fe:3e:75:93:19:e8:69:
3d:6a:a2:c0:b5:6f:24:5f:ea:c5:da:4a:f4:a8:58:
66:ac:98:b1:1a:b2:5f:5e:04:9b:45:8f:2f:d4:c0:
8f:de:d3:66:94:e8:b8:b9:62:45:d6:82:3a:b7:70:
04:74:d7:0d:75:f6:55:9e:4f:e4:60:01:22:92:cd:
70:01:e8:cc:1b:a4:d4:fa:44:8f:83:ec:3b:c0:59:
5b:88:63:56:43:34:23:f5:d6:52:f4:38:63:99:0f:
af:2b:77:d3:78:62:59:0d:f3:5b:57:d1:8c:d1:81:
8c:ef:f3:c5:6b:c2:2c:dd:3c:41:3c:1c:73:38:2e:
16:11:31:72:18:fa:4d:68:33:97:1b:e2:65:74:a4:
fa:15:6d:f2:a6:ee:1b:a5:d9:79:8b:24:3f:1b:29:
0f:a6:e0:68:07:22:c2:c1:b9:a7:75:e3:3c:ac:44:
df:ee:eb:92:ac:61:a4:97:2a:28:20:e6:84:ad:0e:
95:ff:bb:24:69:ea:2c:34:ca:6c:cf:42:90:d9:7f:
14:11:3e:25:72:2b:03:c9:18:cd:27:c2:05:97:17:
c6:1b:fa:22:fe:5f:39:00:b5:ba:8a:b7:ec:5a:81:
b3:86:91:87:d2:14:fc:9c:38:67:d4:25:77:80:2b:
6b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:51:D2:8E:12:38:38:44:64:DD:C9:31:EA:64:99:33:17:23:59:80
X509v3 Authority Key Identifier:
keyid:37:97:E0:39:F0:25:A2:5A:A6:E9:92:39:1D:92:42:60:69:9B:A6:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:f8:90:9d:cb:de:3d:9c:d4:70:78:14:81:2f:6e:9c:9d:be:
db:ce:8d:eb:a2:8f:f2:c2:6d:46:e8:d4:8b:93:00:aa:40:a5:
bd:6f:0e:2b:01:0d:84:52:11:32:5b:81:d9:d1:e4:14:e7:13:
a9:14:53:f9:28:19:de:76:bd:69:44:07:0c:44:4f:18:d8:5a:
13:02:19:c1:9b:65:1a:09:32:8c:b3:ff:3e:f4:4a:39:2b:57:
92:17:30:16:27:f2:39:71:e0:b1:59:17:a6:6f:97:f3:0c:64:
0e:6b:85:31:51:2d:fa:a2:cb:f7:34:b1:8b:44:86:79:b7:41:
ea:7e:6a:39:2d:d6:ea:e6:75:88:b5:f8:c8:d5:b3:d4:81:e4:
95:c5:74:b1:dc:c0:10:34:74:36:ef:51:c2:10:15:a8:bc:35:
9a:a7:3b:77:7f:86:f3:8f:05:10:3b:45:4e:e0:20:cf:6d:8a:
ee:ad:d5:ec:be:5e:2f:2e:4a:e5:5f:ed:56:2e:72:8b:16:8a:
63:47:24:1d:38:19:22:f3:b3:0f:91:9f:fe:7a:5b:ec:4c:3d:
8b:f4:d5:12:0d:d0:ee:65:07:95:9d:15:66:58:fb:d4:42:21:
bb:8f:5a:fb:84:1b:3d:ed:d6:0d:31:0f:08:65:9e:5a:93:45:
ba:b4:57:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:49:23 2025 by rpki-client