Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
File: NQtAztNuMfkF4abo4DxiHp-_yyk.mft (raw, json)
Hash identifier: G2/VnUTI+K+BgbM2f0AW6Ju1xSZu1M3hYESDIhCSSvo=
Subject key identifier: 64:36:89:9E:27:A2:4D:51:9F:72:9B:D9:60:A3:43:24:B9:60:89:72
Authority key identifier: 35:0B:40:CE:D3:6E:31:F9:05:E1:A6:E8:E0:3C:62:1E:9F:BF:CB:29
Certificate issuer: /CN=350b40ced36e31f905e1a6e8e03c621e9fbfcb29
Certificate serial: 01974A7AD6A68506A9AB8EB1090DD962D652
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
Manifest number: 12BA
Signing time: Sat 07 Jun 2025 13:00:53 +0000
Manifest this update: Sat 07 Jun 2025 13:00:53 +0000
Manifest next update: Sun 08 Jun 2025 13:00:53 +0000
Files and hashes: 1: NQtAztNuMfkF4abo4DxiHp-_yyk.crl (hash: ZBdX8QIDbX43oMYS8X8TRiIiL9BTihWyHRaNQT0G3Lk=)
2: u7-gL9wSp2bGW7DIF24NVuhmOKc.roa (hash: tP75Wdne3vqUbGN0hrtXpkGNXdZlPHZwjnI3xiXFlak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:d6:a6:85:06:a9:ab:8e:b1:09:0d:d9:62:d6:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=350b40ced36e31f905e1a6e8e03c621e9fbfcb29
Validity
Not Before: Jun 7 13:00:53 2025 GMT
Not After : Jun 8 13:00:53 2025 GMT
Subject: CN=6436899e27a24d519f729bd960a34324b9608972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f4:fa:bf:f2:7a:09:64:71:12:64:2a:06:86:
1e:51:25:18:95:db:f8:89:b3:86:17:16:b4:f9:70:
12:19:d6:c4:03:20:50:28:68:da:a6:51:80:08:75:
67:0c:8c:68:1c:d2:2d:22:3b:1d:1f:b7:1d:60:93:
76:02:12:8a:5d:44:66:5c:cf:7d:86:a5:c2:da:5e:
74:da:dc:85:1b:f3:f9:60:85:4e:37:ed:7c:cb:ac:
b5:ee:72:81:f2:b8:7e:7f:00:0a:ed:ae:fe:00:a0:
b6:39:88:2d:26:0a:45:9c:3d:12:e2:5b:8c:a5:cd:
71:d1:ea:26:cd:96:26:d4:ba:5e:6f:34:ac:0f:6e:
c9:28:71:b9:0b:42:43:5a:91:09:69:1d:dc:e3:de:
5d:e1:25:9d:54:7c:a6:1f:19:22:cd:b5:3c:bf:7d:
74:f0:a8:20:40:ec:98:c0:e4:c1:5d:b3:60:56:da:
9d:73:d2:03:e1:84:32:17:ec:d4:ee:af:d3:2e:07:
5d:25:b0:6e:21:a3:84:33:51:cf:2e:c8:74:76:c5:
ae:f1:a5:80:fb:3d:38:b1:37:58:33:22:29:bf:2e:
71:20:11:66:f4:be:1b:59:03:5a:9e:5a:58:32:dc:
25:e7:5f:61:b9:33:01:c4:39:60:3b:81:3b:c2:6a:
79:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:36:89:9E:27:A2:4D:51:9F:72:9B:D9:60:A3:43:24:B9:60:89:72
X509v3 Authority Key Identifier:
keyid:35:0B:40:CE:D3:6E:31:F9:05:E1:A6:E8:E0:3C:62:1E:9F:BF:CB:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:cf:54:2d:d7:e2:5d:0d:e8:e0:02:60:60:d2:3c:fa:14:6b:
7b:10:e1:67:4c:0f:09:b6:2f:05:53:96:8a:2f:cf:cd:33:8b:
52:1e:94:78:11:70:51:78:09:78:40:08:e7:da:45:83:b5:be:
b9:06:c9:05:80:49:ae:09:d2:08:40:75:3e:26:d4:e4:45:d5:
8b:9a:0c:91:e6:93:b9:27:de:23:4f:80:f6:e1:77:4f:04:58:
6a:f7:d9:8d:75:ba:a6:4f:a4:f9:84:23:80:ae:d4:5d:d1:49:
64:e6:53:27:95:7a:d4:cd:60:19:3e:ed:58:e9:7e:0d:fb:f8:
94:bc:76:27:10:51:c6:eb:48:58:c6:30:ab:7e:12:df:d4:a0:
81:06:a3:72:a5:07:08:c9:ff:52:2f:61:75:9a:60:c6:6b:c1:
51:5b:3b:c0:d1:26:6d:94:62:73:1d:72:09:6a:45:f9:97:9d:
2c:6d:9d:d2:c0:13:90:d8:81:31:fb:e1:3e:43:44:aa:ea:53:
a7:21:d3:d8:90:a7:74:4b:8b:2b:38:8e:d6:8a:35:19:da:67:
94:60:87:11:df:78:b8:df:60:73:c9:c0:82:6f:e7:db:7d:ce:
78:50:16:30:60:99:61:94:c2:87:a2:9e:f1:46:99:f7:d5:66:
2d:7c:08:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:41:05 2025 by rpki-client