Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
File: nlY8Qm0ark7R5_WVNnSQIgiehHk.mft (raw, json)
Hash identifier: Fto3LPt8IILhtRoL+sKzNtrogh3AenUpbgPobYQsxcI=
Subject key identifier: 2D:99:90:6E:9D:50:F2:D4:29:C4:96:7B:6E:44:93:61:B7:A7:32:9F
Authority key identifier: 9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
Certificate issuer: /CN=9e563c426d1aae4ed1e7f59536749022089e8479
Certificate serial: 019A4E86766E8260AC918A48F0FA69084DF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
Manifest number: 0BCE
Signing time: Tue 04 Nov 2025 11:00:26 +0000
Manifest this update: Tue 04 Nov 2025 11:00:26 +0000
Manifest next update: Wed 05 Nov 2025 11:00:26 +0000
Files and hashes: 1: DLPCyIKM7jz79PsqVnrxNoMgYXE.roa (hash: +QgaTeTZpZ2fDtls8hcOtAF0lYWHQbDmqjy56TBm3AY=)
2: nlY8Qm0ark7R5_WVNnSQIgiehHk.crl (hash: P8zu7/BzS4p7/4ee7tpCQ5dijQS6kv0kLLLl3UP5FRc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:76:6e:82:60:ac:91:8a:48:f0:fa:69:08:4d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e563c426d1aae4ed1e7f59536749022089e8479
Validity
Not Before: Nov 4 11:00:26 2025 GMT
Not After : Nov 5 11:00:26 2025 GMT
Subject: CN=2d99906e9d50f2d429c4967b6e449361b7a7329f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:33:91:6f:45:2a:4b:89:5a:fd:60:5a:e1:25:
80:60:fb:a8:e3:4e:e5:70:95:9f:3f:f9:59:36:21:
ac:5e:88:8a:f6:89:a2:61:53:d8:0b:88:18:bd:a5:
b2:7c:67:09:98:5d:33:6d:d6:9e:af:b8:4c:ea:39:
9f:b9:cf:99:06:02:40:d4:2c:8c:66:23:4c:33:00:
d0:b7:94:9e:72:0f:16:95:af:ee:a9:05:80:24:54:
4d:3f:87:cb:92:1d:bd:9e:30:5c:71:ee:76:d1:1b:
95:16:0a:fd:63:6c:4e:bf:fe:d1:11:e0:2a:5d:82:
49:de:c8:ca:f7:39:35:a6:46:5c:cd:a8:5d:72:bd:
32:55:53:41:5d:f8:a4:b6:dc:2d:e3:07:e9:99:44:
6e:9b:4f:20:84:8f:8e:64:57:b3:b5:a8:31:08:f0:
20:75:1c:3d:35:ff:35:c7:16:c5:23:c2:21:a9:78:
89:18:de:d3:44:1a:01:82:a0:44:b1:e5:9d:9d:f7:
51:1c:51:5c:b6:19:52:f1:ef:c0:09:68:30:84:1c:
59:46:dd:1a:cd:67:88:e9:91:cb:b4:1a:df:06:1d:
af:c5:62:e9:a6:07:f6:ff:81:dc:b1:a9:9a:ca:34:
42:df:5d:a7:00:47:d2:ec:04:3d:04:5f:bf:bf:02:
45:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:99:90:6E:9D:50:F2:D4:29:C4:96:7B:6E:44:93:61:B7:A7:32:9F
X509v3 Authority Key Identifier:
keyid:9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:53:34:07:87:7e:eb:13:81:d0:48:58:d4:ab:3d:49:d9:30:
8b:2f:de:2a:e7:25:31:06:c7:fe:13:44:fb:1d:d9:c6:09:df:
fb:c4:93:a9:f8:fe:35:75:1c:62:ab:fd:49:36:79:0a:74:0d:
ad:c8:7a:ee:00:72:bb:3b:7b:1a:be:6b:84:aa:93:2c:83:02:
6a:78:13:44:eb:1f:30:60:f9:60:12:26:1d:89:f2:a2:81:ee:
bb:5d:2f:b2:88:6c:07:17:15:45:22:50:77:a2:06:e2:56:7e:
c2:88:41:22:54:a5:62:62:15:28:91:33:eb:72:45:6f:70:7a:
61:c7:bf:f1:99:e0:1e:de:5e:ca:d4:b0:4e:a5:52:72:26:df:
3f:3c:1c:1d:d3:e6:5b:ec:b7:c0:58:6c:8f:b0:aa:da:5f:6b:
32:50:1e:49:38:ec:e2:21:77:fd:92:43:8d:d4:cb:62:c3:d6:
dd:e4:3f:de:1b:66:b6:52:1d:df:3f:64:c0:18:14:0f:70:7b:
d4:6d:40:87:c0:ef:76:fe:52:e7:dd:17:c1:36:9a:16:8a:f2:
e7:67:40:af:19:6b:86:e3:6e:84:15:41:58:5f:03:e9:e7:20:
03:ee:ad:6f:4a:57:00:02:b5:d7:ea:07:f4:11:60:b4:9e:d7:
a2:a4:13:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:54:45 2025 by rpki-client