Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft
File: NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft (raw, json)
Hash identifier: EdUhtitFoXP33kbxX39JqS3Tdowd3ZL2s1KJ2l+uvPc=
Subject key identifier: DE:CE:AC:6C:BD:6B:D0:60:44:C9:1B:02:94:A6:E6:AB:EC:3D:24:DD
Authority key identifier: 34:DD:40:26:D2:90:F3:20:1D:28:EF:68:4D:3C:5A:C1:3C:96:EC:6D
Certificate issuer: /CN=34dd4026d290f3201d28ef684d3c5ac13c96ec6d
Certificate serial: 019936F0393804AE350F3E5FD6B8D76F0422
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft
Manifest number: 01CA
Signing time: Thu 11 Sep 2025 04:02:16 +0000
Manifest this update: Thu 11 Sep 2025 04:02:16 +0000
Manifest next update: Fri 12 Sep 2025 04:02:16 +0000
Files and hashes: 1: NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl (hash: OPJYX8zJ1RlVTrI3Zo+MRiW1Kov7fsdazZQ292yAwvs=)
2: NkwYBQBRVrFsj-xUN7Cv_m6lwSA.roa (hash: gjr66sRTq1kait53s7UP3QklI69yHhHqmsXxB/qlKCc=)
3: V4v-VxZ-7OAHRrY5C50VFKZqDnc.roa (hash: 6nRk9oygeeOeb7rjfRo1H5M200eI6zr7Rlb7ujC3GZM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft
rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 04:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:f0:39:38:04:ae:35:0f:3e:5f:d6:b8:d7:6f:04:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34dd4026d290f3201d28ef684d3c5ac13c96ec6d
Validity
Not Before: Sep 11 04:02:16 2025 GMT
Not After : Sep 12 04:02:16 2025 GMT
Subject: CN=deceac6cbd6bd06044c91b0294a6e6abec3d24dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:78:9d:b0:8a:f2:39:b9:93:2b:24:25:7b:f1:
af:29:62:bd:19:f6:31:74:75:3f:e5:ff:d5:07:6f:
49:27:86:0a:c1:4e:9e:6f:f0:97:e2:84:65:09:b4:
c1:d1:a8:25:95:af:ba:21:26:15:20:cc:57:a6:cc:
06:f5:e3:b0:4f:4a:06:1d:44:b8:b8:4e:58:02:52:
f6:e0:ee:33:25:4e:12:b6:f0:d8:57:b6:02:d8:89:
79:b9:51:a4:d2:42:16:c8:83:f6:d0:1b:96:47:23:
52:74:24:03:9b:9d:24:b3:d5:0d:f8:0c:a8:b5:d5:
af:1f:13:83:e3:d9:55:1f:73:2e:a6:6d:5e:99:ae:
8c:36:1d:aa:d2:2d:1b:6d:98:24:bd:ed:d4:11:e4:
0d:4b:cd:4d:82:ef:8f:b6:30:22:01:af:70:93:5b:
78:13:1d:84:fe:48:39:2b:94:cd:3a:dd:ee:91:c4:
b2:09:6d:f1:6c:b1:b3:28:58:3c:4a:c0:68:66:39:
12:b6:b2:a8:e4:b4:35:18:b1:33:cb:bf:a0:d0:af:
98:84:89:4c:f1:8b:4c:a5:1a:50:7b:86:93:cc:78:
20:41:f4:91:fa:e7:06:b0:f4:58:c2:f2:46:ba:25:
ce:d5:88:8d:88:dd:55:e2:63:5e:3e:5b:f2:2a:2a:
4e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:CE:AC:6C:BD:6B:D0:60:44:C9:1B:02:94:A6:E6:AB:EC:3D:24:DD
X509v3 Authority Key Identifier:
keyid:34:DD:40:26:D2:90:F3:20:1D:28:EF:68:4D:3C:5A:C1:3C:96:EC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:99:53:bf:c0:d1:d7:d4:81:45:64:a1:db:62:b7:8c:51:d6:
8e:12:71:a3:5c:58:5b:6b:cd:f4:de:a2:9c:b2:72:19:d8:fd:
f5:8b:b6:b8:20:de:16:b2:15:4f:f3:2d:a4:62:6c:f7:54:e6:
1e:59:eb:d3:2d:29:c3:b3:1d:84:b5:4b:a2:09:b8:b6:01:7a:
d8:45:69:67:f2:44:93:93:c7:04:b7:b5:0b:c8:cc:b0:7a:1b:
6b:82:b0:d6:0f:5e:a5:97:d0:0b:3a:3a:ed:51:5a:1a:42:f6:
80:e1:0c:dd:11:d7:92:69:09:45:e9:a1:87:2f:66:3e:17:20:
9a:5a:17:28:03:77:ae:cd:d8:3d:f0:8e:86:83:a9:fb:b4:21:
9f:71:a7:35:0d:44:b7:c5:9c:ae:52:2b:09:18:3b:6c:78:54:
83:e2:a3:01:d1:2a:5b:0a:fa:3d:a3:45:b7:16:b4:58:87:05:
3b:36:12:24:35:98:77:9c:e2:97:4c:83:78:32:0f:b0:1f:56:
09:61:c4:41:ce:8c:43:09:52:79:bd:18:ef:2a:bb:10:85:b4:
84:79:d5:90:bd:99:98:65:4a:9a:17:b9:e7:9c:e9:2b:10:46:
09:44:fb:33:c8:8a:16:4f:d4:73:08:61:5c:34:3a:14:bf:fb:
2a:87:80:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 14:37:02 2025 by rpki-client