Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.mft
File: NEGOJrKutuqoFD_XGDD5s1Sue7w.mft (raw, json)
Hash identifier: +zGSrMWG8StG7rjdkmyxb+80eP1xp4IcpPS9cy2PRro=
Subject key identifier: F6:38:57:5B:F0:8C:E3:EF:D2:54:38:33:69:96:3B:76:A3:3A:39:00
Authority key identifier: 34:41:8E:26:B2:AE:B6:EA:A8:14:3F:D7:18:30:F9:B3:54:AE:7B:BC
Certificate issuer: /CN=34418e26b2aeb6eaa8143fd71830f9b354ae7bbc
Certificate serial: 0199239F81DABDC4DE047A971D85D1E6BF2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NEGOJrKutuqoFD_XGDD5s1Sue7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.mft
Manifest number: 0F47
Signing time: Sun 07 Sep 2025 10:01:19 +0000
Manifest this update: Sun 07 Sep 2025 10:01:19 +0000
Manifest next update: Mon 08 Sep 2025 10:01:19 +0000
Files and hashes: 1: NEGOJrKutuqoFD_XGDD5s1Sue7w.crl (hash: ldrnytYMBUCmvQwnX489jGO+bnxzJa+T8v9QMS0HN8Y=)
2: nsObN2DjPGcwLXn29XqybNz0hdw.roa (hash: LniUQovzLZtOR3Vslt1uv0Oiv/eQZfXqUz8XebxPz+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.mft
rsync://rpki.ripe.net/repository/DEFAULT/NEGOJrKutuqoFD_XGDD5s1Sue7w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:81:da:bd:c4:de:04:7a:97:1d:85:d1:e6:bf:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34418e26b2aeb6eaa8143fd71830f9b354ae7bbc
Validity
Not Before: Sep 7 10:01:19 2025 GMT
Not After : Sep 8 10:01:19 2025 GMT
Subject: CN=f638575bf08ce3efd254383369963b76a33a3900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b8:e2:b0:d0:73:69:9a:2a:a5:c6:e5:e7:09:
ce:c0:17:d9:57:8f:83:d0:e8:c4:f7:9b:e8:29:d2:
2b:8a:c4:48:3b:f6:4f:59:79:32:05:87:1b:ab:7f:
b9:89:1a:50:c6:da:b0:60:5c:de:14:e7:a8:9e:58:
66:50:70:65:bf:c6:47:39:89:bd:1b:36:22:9a:33:
2a:52:ab:68:6a:c3:cd:2c:78:01:83:89:49:c6:9c:
64:2e:1c:07:c8:dc:27:1f:49:a0:be:80:9b:fa:fd:
be:2a:a7:9b:23:94:4f:91:13:fb:e2:a0:85:f3:5c:
8a:74:23:d1:48:1e:dc:70:50:9b:89:2e:82:de:d6:
db:bd:ba:5a:83:29:1d:75:45:94:e2:5a:be:60:48:
2f:f8:85:aa:f9:9a:2a:ca:b6:b8:ba:93:4b:c9:62:
b9:ed:25:ab:dc:04:65:04:4c:ed:5c:b1:d4:ac:11:
e1:dd:9d:15:92:e3:c9:f3:17:7e:17:5a:02:4a:7c:
7f:b7:dd:43:a0:aa:c4:d9:51:cb:a3:55:79:2d:ce:
08:10:d9:ed:c7:e9:08:77:8f:53:ed:2f:eb:af:ac:
e7:9b:34:7c:b9:1d:11:f6:26:7d:ba:fb:98:64:d1:
d1:7b:49:11:bb:7e:93:a8:86:be:a2:0c:aa:ed:63:
2d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:38:57:5B:F0:8C:E3:EF:D2:54:38:33:69:96:3B:76:A3:3A:39:00
X509v3 Authority Key Identifier:
keyid:34:41:8E:26:B2:AE:B6:EA:A8:14:3F:D7:18:30:F9:B3:54:AE:7B:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NEGOJrKutuqoFD_XGDD5s1Sue7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:cf:0b:10:e6:c6:f5:2c:b6:47:a5:ea:f1:81:78:22:6e:e2:
27:ab:97:41:9e:56:8d:b6:f0:f9:6d:f1:bb:63:2f:7e:4b:a1:
67:7f:56:05:55:25:9f:d4:8e:f3:6d:a7:fa:8a:9e:81:5c:3d:
56:f2:ae:40:b3:b7:f9:28:b3:42:0d:7a:25:e5:2e:64:fd:f2:
dc:5d:4f:f8:c8:8d:e7:f5:2f:64:0f:c7:d5:06:63:68:50:b0:
ed:54:6b:26:47:f9:9b:e1:a5:e7:43:ff:2e:4d:e4:79:46:5b:
94:b0:0f:a5:4b:d4:6f:87:5f:e5:ce:e6:51:e7:31:3f:b7:ec:
aa:a5:09:fa:eb:ad:36:a9:63:ac:7e:f7:7c:f6:98:ce:bf:ca:
7c:e0:7c:eb:cf:0f:2c:2c:4e:07:d2:c3:01:a9:bb:61:9b:79:
08:49:f1:d9:01:55:eb:28:0c:8d:8d:3c:45:57:f1:cc:6e:fb:
1b:27:3c:94:15:8a:64:fd:20:15:78:58:fc:92:53:ce:26:f5:
87:fd:23:9c:e0:8d:b5:99:ea:bf:9a:7b:7b:a4:23:ca:e4:09:
03:09:29:ce:f6:9d:80:ff:56:1e:ca:85:d4:29:e5:71:eb:f8:
b8:38:0d:a8:85:23:54:d7:d5:a3:f0:b8:da:cc:bb:d4:74:4b:
99:c7:d2:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:04 2025 by rpki-client