Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
File: NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft (raw, json)
Hash identifier: 2y05K6M8DCHcDyPeVIBlSt+EWNbTuA7jZc3U09DPA1A=
Subject key identifier: 0E:24:13:70:9D:42:F5:6B:B5:F6:C0:4E:72:0A:4A:96:DD:77:F1:02
Authority key identifier: 35:D7:DB:AA:75:EF:34:20:D8:D9:45:91:30:ED:01:DC:53:51:36:FB
Certificate issuer: /CN=35d7dbaa75ef3420d8d9459130ed01dc535136fb
Certificate serial: 0197D8F5D03C756CF191C5B787F986BCE9E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
Manifest number: 0398
Signing time: Sat 05 Jul 2025 05:01:17 +0000
Manifest this update: Sat 05 Jul 2025 05:01:17 +0000
Manifest next update: Sun 06 Jul 2025 05:01:17 +0000
Files and hashes: 1: NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl (hash: qmeEvuS1X5b8TuecUy5NES3C1LJ7OcOFs8V5JJ9juRY=)
2: okivhnQi7w6GWYPlNEAmkXkmxpY.roa (hash: k4R8rWTOlMy3O5fk1lka5CmGZaX0JQEHHbZQX1i51u4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Jul 2025 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d8:f5:d0:3c:75:6c:f1:91:c5:b7:87:f9:86:bc:e9:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35d7dbaa75ef3420d8d9459130ed01dc535136fb
Validity
Not Before: Jul 5 05:01:17 2025 GMT
Not After : Jul 6 05:01:17 2025 GMT
Subject: CN=0e2413709d42f56bb5f6c04e720a4a96dd77f102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f2:c2:89:25:3d:7d:23:51:f7:6e:72:f9:39:
32:02:64:27:51:cb:c7:92:d1:5f:0c:13:5c:2a:23:
ea:e8:d6:2b:7d:b1:cd:a7:f0:3e:db:9a:60:c6:f3:
f7:bc:cd:3d:f4:af:4f:dc:4c:63:ab:26:c6:94:95:
cc:29:88:a5:4c:bd:3c:7c:2f:aa:82:c0:9d:36:97:
52:95:b4:6c:2c:d6:ba:57:b2:a8:34:bb:72:e6:d0:
57:78:cd:29:a4:53:84:ea:9f:42:16:54:b9:08:35:
e3:15:f4:b4:22:7c:12:01:6d:85:33:00:13:47:b5:
8e:01:84:70:ce:bb:e3:f4:c3:5c:09:90:b2:78:59:
9a:13:b2:6b:89:bd:ab:bb:17:3d:32:0f:de:c1:53:
f2:33:d1:14:ce:76:68:17:ad:28:7c:b4:8a:28:e7:
08:49:ba:d8:6e:81:d6:22:83:96:90:9c:62:5e:97:
90:9c:90:6d:0e:50:fa:34:cf:8f:4d:13:46:a9:8d:
e6:3d:16:c5:92:26:00:26:bc:2b:89:9e:81:40:8c:
e0:c6:50:54:f2:90:50:81:74:e7:c2:37:00:59:55:
e4:ef:ce:05:f2:13:98:fb:0c:ec:b2:c5:c2:7a:5f:
6d:98:b7:18:32:e4:6b:c6:ec:a7:d2:20:fa:28:49:
e5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:24:13:70:9D:42:F5:6B:B5:F6:C0:4E:72:0A:4A:96:DD:77:F1:02
X509v3 Authority Key Identifier:
keyid:35:D7:DB:AA:75:EF:34:20:D8:D9:45:91:30:ED:01:DC:53:51:36:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:70:a5:a1:9a:aa:63:83:01:70:64:f2:89:62:cb:5b:b1:97:
58:5d:1d:6b:b6:9b:f2:f6:6f:9b:26:da:84:8a:41:b7:3e:ff:
be:31:70:0e:d0:7d:81:c6:70:b4:ad:c9:5c:3b:b4:7a:bf:2c:
8e:e6:02:6e:2c:29:21:cb:19:d6:17:2e:d4:f2:c0:bb:1a:66:
67:0f:55:55:72:79:78:a7:f7:7c:d3:35:8f:fd:d0:1d:94:bc:
05:f2:ae:eb:97:b9:d4:26:1a:a5:b3:4b:9b:32:2a:d4:ee:b0:
48:0f:21:24:44:09:de:40:3f:77:0f:e2:1b:9b:36:11:75:cb:
ea:b9:8b:e3:17:44:a9:df:55:42:07:02:ea:dd:6f:b9:2e:c9:
1a:c0:05:f3:83:c8:ea:ef:44:dc:e4:b7:db:98:1a:1c:c0:5c:
28:04:6e:e0:1b:36:00:5a:b0:42:40:43:29:9b:6e:57:f6:c8:
6a:dc:85:7b:3c:db:45:0d:3e:a3:df:46:fb:50:cd:b5:24:54:
e6:3c:f8:3b:48:c6:3a:96:b0:c3:ba:78:19:8d:05:fe:6f:65:
89:d7:7c:17:96:11:b6:a4:d2:a1:3a:47:db:83:1e:ad:08:94:
a6:36:47:7d:ba:0c:84:b6:78:1a:57:9d:2f:dd:fe:27:aa:12:
c9:eb:fe:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 5 07:17:55 2025 by rpki-client