Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
File: NgAOvu0kK5VkrclUhTI7lr1vXAI.mft (raw, json)
Hash identifier: L0UEuyHpm+Y3KL/T1rwf/UPSZFmUrTNZCcwS/xW2qMY=
Subject key identifier: C1:B5:59:2A:47:7F:3B:99:90:AC:D6:C5:41:FA:94:5F:5D:AF:06:96
Authority key identifier: 36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02
Certificate issuer: /CN=36000ebeed242b9564adc95485323b96bd6f5c02
Certificate serial: 01974AE903038AB469F84E171E8AA284AC88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
Manifest number: 10EB
Signing time: Sat 07 Jun 2025 15:01:13 +0000
Manifest this update: Sat 07 Jun 2025 15:01:13 +0000
Manifest next update: Sun 08 Jun 2025 15:01:13 +0000
Files and hashes: 1: NgAOvu0kK5VkrclUhTI7lr1vXAI.crl (hash: HkdiHSoWNv8YE5CEr4mOH91Z2qsS6aHYoCa4GisBV6U=)
2: PcqW_01nYr_g65r_pcHJ33ZMGuA.roa (hash: ldAGcbaFd4WhyCTSLv1tpLkIbH81eRDfpjEnAMP8NwM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e9:03:03:8a:b4:69:f8:4e:17:1e:8a:a2:84:ac:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36000ebeed242b9564adc95485323b96bd6f5c02
Validity
Not Before: Jun 7 15:01:13 2025 GMT
Not After : Jun 8 15:01:13 2025 GMT
Subject: CN=c1b5592a477f3b9990acd6c541fa945f5daf0696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:5a:5e:74:b7:fb:c1:4a:10:17:02:2c:5d:9c:
9e:4f:21:39:69:f3:8e:75:77:61:e9:8a:30:f9:4b:
ff:f6:a3:e4:a4:99:1a:6f:2c:34:3d:b5:64:28:6a:
79:34:4f:9c:bf:d2:6c:03:d4:4e:89:29:e6:cf:54:
d6:9e:93:c6:a3:0e:54:38:38:3a:fb:ee:5a:02:00:
54:8e:3d:03:bb:96:5f:b3:cd:4c:5c:b1:7c:1d:4d:
d5:a7:89:b1:7d:81:50:5b:ea:5a:48:ef:8b:f7:67:
ae:b1:65:44:a2:0c:87:fe:2b:6a:04:03:03:22:a4:
96:63:13:62:47:0b:0b:57:47:0d:0f:5b:92:9e:9b:
5d:18:85:8b:59:4a:93:72:32:27:92:54:88:ed:56:
45:c6:71:e2:c5:fe:d3:b9:eb:22:87:d2:28:c3:d7:
0e:c7:8f:3a:19:4f:59:dc:6e:b8:24:e4:f6:75:1c:
df:18:78:ff:72:c2:99:b8:8b:79:52:95:88:3b:e9:
d7:4e:7d:8d:06:e3:b4:83:75:eb:69:1b:30:84:24:
6f:6e:4e:0b:fa:8e:dd:1e:c3:01:3a:5c:21:2a:0f:
0b:06:92:00:d8:a8:74:1f:4a:dc:56:98:60:61:ca:
50:7a:f2:95:de:76:f1:fa:eb:49:8a:ab:cc:80:2e:
3c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:B5:59:2A:47:7F:3B:99:90:AC:D6:C5:41:FA:94:5F:5D:AF:06:96
X509v3 Authority Key Identifier:
keyid:36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:17:61:14:ad:a2:72:c5:27:53:d0:dc:56:c9:16:11:eb:99:
48:6a:b9:b0:44:57:0b:fc:ac:b0:18:97:25:d1:9f:79:3b:a9:
52:3e:ff:fb:ca:f5:46:95:e7:2f:05:3d:e3:67:ec:3e:20:66:
af:f9:51:b9:5b:a9:1e:4f:2a:86:68:71:de:6c:f5:2a:fb:d9:
64:b8:d5:2c:e7:3f:2c:b5:2c:15:30:a3:b9:45:26:9d:c1:80:
67:ea:9d:92:75:f8:41:5a:9c:4d:51:1b:f6:b5:08:e8:89:06:
77:88:7f:e1:cb:bd:cf:a8:25:fd:73:92:99:69:fc:09:bd:21:
68:19:c1:30:74:cf:76:03:db:fe:ea:a4:93:86:66:c4:50:7e:
91:89:cb:2c:bc:f0:29:28:0c:9c:12:87:92:33:fe:9f:92:de:
43:53:0c:1d:aa:e9:4b:27:4b:64:8a:f9:92:38:67:29:7a:71:
c6:5f:2a:83:2d:96:3f:8f:ce:d8:1f:ff:48:79:0f:a7:81:03:
df:d3:13:b2:08:f6:11:00:81:31:5e:55:64:69:18:68:cf:ee:
d6:5a:34:67:d8:08:8a:0d:bb:d2:61:d3:a9:63:19:83:4c:a9:
3b:3b:a2:cb:77:a4:83:9b:4b:b0:73:fd:11:f8:04:1a:a5:53:
44:b9:cb:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:01:39 2025 by rpki-client