Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
File: NPwYIZBVFuYYMg6eRxoTsqqslv8.mft (raw, json)
Hash identifier: /JfFVqSfT+xo0OpvCleMW2nSn5ztPn3gRRKa5lqEHuw=
Subject key identifier: DF:D2:74:A9:11:10:FE:00:F2:3E:B7:35:67:B4:6D:99:A9:E6:D0:10
Authority key identifier: 34:FC:18:21:90:55:16:E6:18:32:0E:9E:47:1A:13:B2:AA:AC:96:FF
Certificate issuer: /CN=34fc1821905516e618320e9e471a13b2aaac96ff
Certificate serial: 01974AE89038DFD4DA76FE729FFA9B57D290
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NPwYIZBVFuYYMg6eRxoTsqqslv8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 15:00:44 +0000
Manifest this update: Sat 07 Jun 2025 15:00:44 +0000
Manifest next update: Sun 08 Jun 2025 15:00:44 +0000
Files and hashes: 1: NPwYIZBVFuYYMg6eRxoTsqqslv8.crl (hash: sx3bVpnkC2+p7M4mbJFDkcnnzfg4tI1mp62rqfgwNks=)
2: rYKTx0nL3KpouO_aEG54Y81fax4.roa (hash: U8k6Z6wFvQxh2jmlJpmKkiKIDJ2daF7abfgpCSFD+Kw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NPwYIZBVFuYYMg6eRxoTsqqslv8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:90:38:df:d4:da:76:fe:72:9f:fa:9b:57:d2:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34fc1821905516e618320e9e471a13b2aaac96ff
Validity
Not Before: Jun 7 15:00:44 2025 GMT
Not After : Jun 8 15:00:44 2025 GMT
Subject: CN=dfd274a91110fe00f23eb73567b46d99a9e6d010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:28:74:63:e6:85:0d:d0:2e:74:50:4e:83:b9:
18:d4:e1:0c:4d:0f:1f:03:eb:d9:12:41:ba:9b:e6:
20:d3:93:7e:c1:4d:7b:37:05:e3:56:a7:1a:57:82:
44:0a:78:fb:e8:23:aa:88:f3:30:87:db:39:f3:61:
32:20:ee:3f:19:fb:3a:77:9a:bb:4a:a1:08:2b:1f:
93:09:28:0d:7d:04:7e:ff:1e:60:f7:cc:e1:da:54:
46:25:e0:a1:6e:17:8e:7a:89:5f:0b:b3:04:ce:aa:
56:c3:db:8d:c9:f7:4d:bb:eb:7f:7e:b2:9b:5b:ad:
08:60:77:40:fe:08:bd:39:19:1d:12:19:67:10:13:
0a:dd:34:d9:e2:2b:20:0d:34:68:cf:5b:50:4b:5a:
a1:25:ad:bc:7b:d7:a9:72:08:f7:74:9b:da:ce:7e:
c5:4f:68:6d:24:12:b9:4f:18:e8:13:ac:f7:16:29:
97:9a:d8:0f:32:0a:64:4a:40:03:fb:ab:21:f3:d0:
58:d7:15:a6:b5:c2:ab:db:70:fa:42:10:59:9f:01:
82:2a:eb:07:d6:99:4f:a3:15:0b:dd:79:89:80:60:
70:37:6f:6e:d9:f4:4c:94:71:ef:e6:db:dd:63:a4:
a0:b7:76:0c:09:99:ce:15:56:e6:df:a7:2a:f1:8f:
1d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D2:74:A9:11:10:FE:00:F2:3E:B7:35:67:B4:6D:99:A9:E6:D0:10
X509v3 Authority Key Identifier:
keyid:34:FC:18:21:90:55:16:E6:18:32:0E:9E:47:1A:13:B2:AA:AC:96:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NPwYIZBVFuYYMg6eRxoTsqqslv8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:33:61:38:6d:1f:62:f7:49:e4:7a:f0:3c:f9:95:ff:4a:1c:
a0:cf:b2:aa:14:63:69:1e:02:3c:00:6f:54:dd:14:14:98:d8:
3e:77:b7:2d:a3:6d:ba:e0:16:53:16:69:f4:e7:a6:bc:27:02:
a3:ae:18:0c:59:04:66:33:8f:7b:5f:3b:05:fa:cd:c2:bd:73:
a1:60:7f:3b:36:d4:86:bd:b1:45:8f:a1:26:62:9a:45:a9:36:
f0:35:c4:dd:94:a0:1f:53:d2:b0:71:a6:c0:0d:12:35:1b:1f:
6b:dc:4c:de:26:fd:8f:af:36:a7:99:38:3f:4d:21:1d:2f:75:
9c:4b:c9:95:28:36:e5:0e:47:7c:27:36:33:61:57:bf:22:9f:
31:40:b9:8a:e2:ee:e4:7b:0f:51:fa:66:7d:f5:85:e8:96:e0:
1f:7c:9e:3f:e0:3e:dc:2f:6e:8d:90:ab:0e:55:42:4b:37:ba:
31:68:70:95:1e:4d:d1:30:bd:c7:de:6d:a6:f9:70:ed:4d:bf:
50:da:ae:24:18:79:e2:79:c2:0f:d0:91:cc:9c:59:06:eb:6b:
26:b0:f1:73:14:bb:05:2c:15:8e:4a:63:8c:5c:35:0b:62:3c:
16:84:06:d0:11:22:f1:7d:2d:69:25:35:06:9f:5b:6f:f5:d9:
0d:ca:f3:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:19:24 2025 by rpki-client