Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
File: NVyaW8uDQBCKQchiduHLlKYefak.mft (raw, json)
Hash identifier: PlHGyfmVL0IXAote1HjdzqTjk0wIZmak6nBcI59+QIA=
Subject key identifier: ED:2E:9F:AE:56:CD:B4:E1:CF:84:37:15:14:27:11:24:99:00:DE:26
Authority key identifier: 35:5C:9A:5B:CB:83:40:10:8A:41:C8:62:76:E1:CB:94:A6:1E:7D:A9
Certificate issuer: /CN=355c9a5bcb8340108a41c86276e1cb94a61e7da9
Certificate serial: 0199225524F1F481D7C143DD833379DD0B87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
Manifest number: 0F0A
Signing time: Sun 07 Sep 2025 04:00:29 +0000
Manifest this update: Sun 07 Sep 2025 04:00:29 +0000
Manifest next update: Mon 08 Sep 2025 04:00:29 +0000
Files and hashes: 1: 5KKpk9qEveM_ucLAOYR8lDjQsvs.roa (hash: FsEABHDgSk6DaTySsepeca9yMLpdy1J0E11YMBOaZ9k=)
2: NVyaW8uDQBCKQchiduHLlKYefak.crl (hash: +sCTH3FoFRQiyQvUjHTrP63BAelDfuZRzgOU1SguUwg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:24:f1:f4:81:d7:c1:43:dd:83:33:79:dd:0b:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=355c9a5bcb8340108a41c86276e1cb94a61e7da9
Validity
Not Before: Sep 7 04:00:29 2025 GMT
Not After : Sep 8 04:00:29 2025 GMT
Subject: CN=ed2e9fae56cdb4e1cf843715142711249900de26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7a:da:7b:10:52:f0:ca:d9:d9:84:15:63:00:
a9:e8:d4:63:d1:2d:7d:57:d6:67:64:1b:22:8a:c6:
02:78:9c:10:a1:ec:16:25:73:b3:b1:3b:44:51:3a:
a6:86:ff:df:d9:3e:f3:44:63:0d:26:ed:00:0b:6c:
fc:05:8b:c8:71:14:56:37:32:94:de:d9:49:63:72:
4d:10:8c:ca:31:7b:73:fc:80:cb:90:35:82:01:60:
a1:83:f7:5c:9e:16:27:af:94:ce:ea:a1:24:2e:69:
3e:e4:72:92:77:85:f0:15:fa:8d:97:8e:91:00:fa:
fc:73:b0:62:9b:8c:6e:fc:6c:41:25:0d:40:ad:ad:
da:2a:64:65:78:13:18:5f:0c:9b:60:05:cd:a8:06:
7e:ad:a3:3e:1f:d5:3a:e8:cd:e4:7d:28:d1:52:1b:
58:06:4a:77:66:89:5b:d0:5e:8f:f5:dd:23:f9:99:
c8:5f:72:f5:e0:a5:f8:86:46:f4:20:79:a0:16:e8:
b4:61:68:4e:bd:1e:f4:b9:cf:7e:48:1d:dc:bf:f0:
e5:e2:f6:3e:11:07:38:74:4a:f7:ac:09:60:3d:a8:
21:7f:d7:18:46:f2:ed:2b:26:4e:8a:db:ad:dd:4f:
c9:52:fd:c9:d9:f2:19:e1:a7:d3:72:98:3d:56:f8:
b6:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:2E:9F:AE:56:CD:B4:E1:CF:84:37:15:14:27:11:24:99:00:DE:26
X509v3 Authority Key Identifier:
keyid:35:5C:9A:5B:CB:83:40:10:8A:41:C8:62:76:E1:CB:94:A6:1E:7D:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:34:d5:5a:43:53:68:9f:92:b9:99:a5:58:5d:1c:7c:c6:cb:
d8:70:ea:21:71:0a:6f:96:3f:82:b8:91:4a:a0:9a:a7:e8:e5:
4b:42:5c:a3:4e:ae:a1:35:df:55:6d:5e:e9:bf:23:e1:57:1a:
20:af:e2:d4:1e:63:a8:0d:b1:9a:e2:4d:74:a8:bf:ca:73:34:
8d:1a:89:80:95:70:d9:67:06:13:f8:48:d6:c1:d7:09:5a:91:
c5:1c:1b:6d:b6:76:17:52:f8:51:fb:6c:98:b1:26:ed:6c:6b:
5e:a9:ee:1d:bd:b3:4d:02:f2:37:53:c9:2f:a0:34:eb:5f:ff:
47:38:4a:ca:dc:45:1c:08:df:1f:b9:e4:3f:86:2a:86:1d:21:
bd:49:06:f1:f9:bc:c1:d3:5a:28:57:a5:d9:4b:c8:ea:38:90:
0e:3f:e5:37:45:bb:d8:8e:de:c2:99:3c:2e:06:71:59:37:17:
01:68:9e:08:8a:63:96:f5:9e:23:ca:01:ec:b8:da:48:e8:03:
ca:a1:40:52:ec:cf:0a:54:f7:97:17:7d:11:0b:b3:f3:9f:14:
99:f9:c3:a5:de:ff:d8:97:6a:66:46:3f:64:31:a5:1b:35:50:
78:88:00:9f:56:de:0d:55:0e:4f:54:0f:df:7c:a0:73:69:74:
e1:ce:de:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:08:25 2025 by rpki-client