Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
File: nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft (raw, json)
Hash identifier: ARY+esJ7H5YNHW9LYLi39FTF1uNUR7aXWidpGnC8ZFk=
Subject key identifier: 60:09:11:58:FF:EC:1A:46:06:DA:D5:75:F5:30:ED:81:EC:F7:91:BC
Authority key identifier: 9D:43:03:A0:A9:99:D8:11:8B:BC:7E:96:AD:38:EF:BB:14:49:6E:A2
Certificate issuer: /CN=9d4303a0a999d8118bbc7e96ad38efbb14496ea2
Certificate serial: 019A4D73CECFDB63EB8B8B2254426AC6D224
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
Manifest number: 08A0
Signing time: Tue 04 Nov 2025 06:00:26 +0000
Manifest this update: Tue 04 Nov 2025 06:00:26 +0000
Manifest next update: Wed 05 Nov 2025 06:00:26 +0000
Files and hashes: 1: bre9O2wrDggeCO-gClQtVcXHgMs.roa (hash: TZRQyZuvSyRj0lGzf2b/FG9R/6ZAoSht1L/fXzqCZUg=)
2: nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl (hash: tRfzatDS/BztJT0Vh7kajDkqF2u2kwstFZWImkanFUk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:73:ce:cf:db:63:eb:8b:8b:22:54:42:6a:c6:d2:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d4303a0a999d8118bbc7e96ad38efbb14496ea2
Validity
Not Before: Nov 4 06:00:26 2025 GMT
Not After : Nov 5 06:00:26 2025 GMT
Subject: CN=60091158ffec1a4606dad575f530ed81ecf791bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bc:ca:ff:14:5b:5a:8f:be:27:e5:25:3d:51:
8d:e0:cc:80:82:ab:a8:d5:e9:81:e4:99:53:09:53:
cb:44:d4:a3:88:4b:0e:e6:1f:31:8f:2e:02:a3:a1:
d5:e6:f7:fa:85:98:20:47:71:d3:18:dd:79:db:77:
23:c6:05:60:de:41:c8:13:5c:50:d3:6c:21:8f:15:
c5:69:a0:ed:78:df:7d:d6:64:91:62:3d:53:c1:3d:
4f:ad:af:fa:c7:f1:c5:f3:79:15:42:24:47:f4:67:
7d:22:74:b3:66:c3:1b:af:78:ff:8d:54:e5:b6:56:
0d:f9:5b:93:37:a4:3e:e2:82:ac:37:dc:ac:2a:64:
c7:16:b4:83:22:70:8f:76:98:98:46:c3:67:85:bb:
59:8b:48:43:f5:b4:2b:5d:04:4f:33:38:a3:5b:bc:
f4:86:b5:58:5a:df:ce:e5:4b:02:58:b3:99:80:00:
a1:5c:f4:0a:de:df:ae:ee:c8:a5:15:f4:0d:1a:c0:
04:8d:31:54:a7:19:53:a3:0d:12:62:e3:82:40:88:
94:bf:63:94:91:34:b4:41:c9:70:ad:12:8d:79:d9:
d8:b7:bc:a2:31:b4:04:89:5c:73:2c:f6:8b:40:67:
e1:c4:c5:46:dc:ad:d7:e3:34:31:9a:2d:97:de:21:
63:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:09:11:58:FF:EC:1A:46:06:DA:D5:75:F5:30:ED:81:EC:F7:91:BC
X509v3 Authority Key Identifier:
keyid:9D:43:03:A0:A9:99:D8:11:8B:BC:7E:96:AD:38:EF:BB:14:49:6E:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:73:0d:80:d7:94:ec:f0:74:b2:a8:a0:40:33:a5:1e:8c:22:
70:dc:38:41:ce:36:b4:ab:9a:46:d6:aa:50:d8:eb:10:b6:28:
c6:08:7f:4c:60:67:3a:ab:9f:03:7d:a6:3e:bd:0b:cc:0e:34:
9a:5e:0b:e5:b2:a9:01:a9:03:ad:54:cb:84:a7:99:09:7d:84:
16:9d:3a:86:f1:aa:18:8a:34:35:f3:7f:0b:3f:f1:a9:33:7a:
75:3f:49:29:de:23:7b:db:d9:80:b9:9e:58:8c:3c:6b:b0:c0:
9a:c4:4b:5a:2c:7b:a8:9c:15:f6:48:6f:a9:fb:db:8e:25:28:
12:b2:03:5a:02:37:85:39:d4:68:06:87:34:ef:50:6a:f2:52:
48:5c:98:1b:2a:0f:9a:09:66:82:f2:c0:bc:aa:61:23:20:9f:
e2:39:7b:30:d5:2e:a5:87:c2:5a:7d:8c:7d:2f:7f:32:46:a8:
39:88:34:e1:92:a9:9a:0c:92:a6:e2:2e:b8:e8:21:52:d3:4e:
ff:16:b7:f6:af:a2:73:16:b8:41:83:55:34:8d:ac:4a:c3:55:
c2:dd:e0:49:11:ad:e6:ac:59:8f:90:ce:a0:c6:d3:b8:63:89:
d6:15:ac:4d:ab:66:cd:80:83:98:f8:84:f2:49:ab:7d:cd:f7:
ad:e9:49:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:51:20 2025 by rpki-client