Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/ba20ed-e70f-4733-9545-5113b7429f86/1/Nir0h5VMm5am51wljQQ3o4RJupA.mft
File: Nir0h5VMm5am51wljQQ3o4RJupA.mft (raw, json)
Hash identifier: S03Lve/VUpU2z/KstYB6skUyLIZNkuK0hK7P480g4OM=
Subject key identifier: 50:EC:3B:D7:63:00:12:71:18:1E:AB:62:8A:CE:5C:C7:10:DF:A5:AA
Authority key identifier: 36:2A:F4:87:95:4C:9B:96:A6:E7:5C:25:8D:04:37:A3:84:49:BA:90
Certificate issuer: /CN=362af487954c9b96a6e75c258d0437a38449ba90
Certificate serial: 0199221F08A7AA1A3B7B695D4E1001EE88EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nir0h5VMm5am51wljQQ3o4RJupA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/ba20ed-e70f-4733-9545-5113b7429f86/1/Nir0h5VMm5am51wljQQ3o4RJupA.mft
Manifest number: 151D
Signing time: Sun 07 Sep 2025 03:01:23 +0000
Manifest this update: Sun 07 Sep 2025 03:01:23 +0000
Manifest next update: Mon 08 Sep 2025 03:01:23 +0000
Files and hashes: 1: Nir0h5VMm5am51wljQQ3o4RJupA.crl (hash: 4usWXrF/7qLSda6VHm5ffkGhRKYuJuBnCZ23zlfdUIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/ba20ed-e70f-4733-9545-5113b7429f86/1/Nir0h5VMm5am51wljQQ3o4RJupA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/ba20ed-e70f-4733-9545-5113b7429f86/1/Nir0h5VMm5am51wljQQ3o4RJupA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nir0h5VMm5am51wljQQ3o4RJupA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:08:a7:aa:1a:3b:7b:69:5d:4e:10:01:ee:88:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=362af487954c9b96a6e75c258d0437a38449ba90
Validity
Not Before: Sep 7 03:01:23 2025 GMT
Not After : Sep 8 03:01:23 2025 GMT
Subject: CN=50ec3bd763001271181eab628ace5cc710dfa5aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b3:2b:66:bc:8b:2e:38:ca:dc:0e:88:37:90:
40:e1:ff:db:c9:68:77:6e:01:45:93:48:1a:6f:b5:
38:50:a6:1d:6f:84:95:63:8a:e7:62:48:08:6d:13:
fa:0c:16:c3:39:e1:3a:e3:b6:90:7d:48:8e:d2:b7:
a3:8c:af:43:e8:84:0d:f2:56:74:c0:66:f6:d4:22:
8d:51:8b:c5:69:97:a5:cd:a9:bf:c6:f1:e5:ea:e8:
0c:cd:26:bc:f3:df:3b:18:54:79:b0:01:d2:69:02:
ad:69:a8:b6:da:78:bb:63:17:7f:8c:2a:0d:f5:5a:
7d:9b:9e:21:30:e3:28:12:a0:57:7f:d8:ff:df:f2:
de:ea:4f:93:56:8e:fe:1d:66:60:07:ef:53:c1:b8:
21:fe:6d:a0:ce:7a:36:2e:43:4b:41:ff:9f:84:72:
37:9c:de:f4:0c:5c:45:24:3e:5d:01:8f:2b:5b:0d:
52:07:11:e9:44:54:12:f7:46:6e:a0:98:2d:4c:5c:
0d:67:ee:88:d6:63:f2:5c:37:e0:ed:82:49:f3:68:
4e:a3:eb:0e:a2:88:cd:2c:b0:de:50:32:10:ec:78:
88:ca:14:ee:a8:b0:2e:6c:09:a6:7e:95:5d:b4:2c:
57:12:8c:65:c7:f6:d9:72:fd:90:31:b0:7f:60:b8:
83:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:EC:3B:D7:63:00:12:71:18:1E:AB:62:8A:CE:5C:C7:10:DF:A5:AA
X509v3 Authority Key Identifier:
keyid:36:2A:F4:87:95:4C:9B:96:A6:E7:5C:25:8D:04:37:A3:84:49:BA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nir0h5VMm5am51wljQQ3o4RJupA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ba20ed-e70f-4733-9545-5113b7429f86/1/Nir0h5VMm5am51wljQQ3o4RJupA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ba20ed-e70f-4733-9545-5113b7429f86/1/Nir0h5VMm5am51wljQQ3o4RJupA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:e2:83:f9:42:93:88:d3:6d:a0:73:2f:69:6a:2a:7f:1d:32:
80:94:de:8c:67:38:6a:e6:ea:21:3e:62:d2:9e:0b:7a:b8:2c:
06:e6:97:29:39:5a:bc:fa:cf:15:2b:55:b7:fe:76:8b:a9:07:
ce:f9:24:5e:41:92:b9:08:c5:4c:32:2c:81:95:b7:52:3e:d3:
a5:4a:e5:67:7b:2f:a5:79:81:dd:ee:61:5d:b0:f2:48:f0:26:
69:5d:21:15:70:33:e5:71:43:aa:46:b2:ac:ee:cd:48:4a:e3:
9f:d0:08:fd:41:3c:63:cd:2e:30:66:76:17:a9:d3:fd:38:90:
37:b6:4b:05:3e:08:dd:74:ab:8c:28:18:44:0f:bf:b7:7a:b6:
16:45:31:7f:d2:23:6b:4f:3f:b2:5c:9e:b7:8d:57:8f:58:6c:
9f:ef:d6:79:91:37:28:39:05:04:5d:99:25:d7:77:8f:58:58:
80:85:fc:1c:4c:fd:8a:a8:9f:1c:5d:d0:6e:5a:78:b2:17:ba:
d0:1f:04:4b:ba:7e:0d:03:38:39:c4:15:7d:29:6b:d5:cb:d4:
dc:8b:2d:9c:25:16:21:61:cd:ea:e7:c9:7f:73:86:4e:df:b0:
e4:a1:f6:da:f8:eb:26:f7:0a:97:c7:1d:fc:ed:78:dc:ca:d5:
6b:72:47:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:08 2025 by rpki-client