Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/deb102-423f-4e92-b7c5-73d014e8349b/1/nPmIlqiK6PNUCut37KHxqUu9aXg.mft
File: nPmIlqiK6PNUCut37KHxqUu9aXg.mft (raw, json)
Hash identifier: QdPcr9B03M1vXeXM+0J7PNfOs+ANIlaoejc2cxBTWlc=
Subject key identifier: 5B:A7:E8:4C:7B:E3:8D:33:35:03:51:2D:16:E1:5B:15:6C:B2:D6:0D
Authority key identifier: 9C:F9:88:96:A8:8A:E8:F3:54:0A:EB:77:EC:A1:F1:A9:4B:BD:69:78
Certificate issuer: /CN=9cf98896a88ae8f3540aeb77eca1f1a94bbd6978
Certificate serial: 019A4EF59168EF9E928D5809F246C53254ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nPmIlqiK6PNUCut37KHxqUu9aXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/deb102-423f-4e92-b7c5-73d014e8349b/1/nPmIlqiK6PNUCut37KHxqUu9aXg.mft
Manifest number: 08A3
Signing time: Tue 04 Nov 2025 13:01:47 +0000
Manifest this update: Tue 04 Nov 2025 13:01:47 +0000
Manifest next update: Wed 05 Nov 2025 13:01:47 +0000
Files and hashes: 1: nPmIlqiK6PNUCut37KHxqUu9aXg.crl (hash: 0xjiFGNfkOKR5DR+G/yfmwyLVDnCeYMDKK4SmUuzGns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/deb102-423f-4e92-b7c5-73d014e8349b/1/nPmIlqiK6PNUCut37KHxqUu9aXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/deb102-423f-4e92-b7c5-73d014e8349b/1/nPmIlqiK6PNUCut37KHxqUu9aXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/nPmIlqiK6PNUCut37KHxqUu9aXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:91:68:ef:9e:92:8d:58:09:f2:46:c5:32:54:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cf98896a88ae8f3540aeb77eca1f1a94bbd6978
Validity
Not Before: Nov 4 13:01:47 2025 GMT
Not After : Nov 5 13:01:47 2025 GMT
Subject: CN=5ba7e84c7be38d333503512d16e15b156cb2d60d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:9f:45:ed:2c:9f:26:2d:7b:cb:29:64:c7:f1:
41:8e:c7:bd:63:ef:40:6a:3b:14:c8:b1:a5:62:9f:
81:5b:d6:71:79:92:55:6d:6f:9d:15:b7:57:b3:05:
c1:a5:32:7a:1f:b7:d9:45:91:8e:0f:b0:da:04:c2:
db:aa:21:c4:6b:64:13:bf:c0:b5:19:49:f3:82:ce:
5e:58:d0:51:d0:22:8c:48:e3:86:fd:88:7c:9b:31:
50:77:05:0c:bc:93:a1:89:60:47:86:37:73:ae:3c:
81:58:91:3f:ef:be:d8:87:d9:ad:31:03:1a:f7:92:
c7:14:08:82:95:0c:8c:33:13:40:69:48:63:cb:15:
35:3f:a3:50:fd:67:d6:ad:7c:6e:4c:a1:d9:02:1d:
df:3f:bc:f0:05:07:5d:9b:25:3c:29:7e:21:3d:e9:
ea:e0:a9:1a:77:cd:bd:6a:8b:4a:fe:40:35:63:0c:
fd:1e:03:6f:f4:93:3b:1c:7b:8d:83:80:95:e7:2a:
61:f8:45:4a:30:6b:84:b4:bc:84:df:80:fa:75:11:
ab:a6:4f:74:50:48:76:cc:f2:e7:9e:c6:c0:2d:99:
4b:9c:b6:fd:55:0b:01:e4:91:81:59:e0:56:6d:4c:
e5:a6:f7:d8:f6:9a:a4:ef:5c:17:bd:0e:7d:d8:60:
81:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:A7:E8:4C:7B:E3:8D:33:35:03:51:2D:16:E1:5B:15:6C:B2:D6:0D
X509v3 Authority Key Identifier:
keyid:9C:F9:88:96:A8:8A:E8:F3:54:0A:EB:77:EC:A1:F1:A9:4B:BD:69:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nPmIlqiK6PNUCut37KHxqUu9aXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/deb102-423f-4e92-b7c5-73d014e8349b/1/nPmIlqiK6PNUCut37KHxqUu9aXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/deb102-423f-4e92-b7c5-73d014e8349b/1/nPmIlqiK6PNUCut37KHxqUu9aXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:03:89:f1:95:24:bb:62:89:59:1e:71:a5:2b:6c:06:7c:c4:
75:b2:26:37:16:f2:69:29:a1:ce:dc:fc:cc:c1:f2:7e:01:c5:
0a:c7:b9:9b:20:71:ab:5a:76:4c:b6:0c:60:21:44:7d:d1:33:
d5:d3:83:7d:0f:b8:30:6b:7c:2e:6e:f6:78:d6:65:fd:73:e0:
a9:8c:6b:d6:b3:d1:2f:05:9e:d1:60:27:be:e7:55:1e:7f:d8:
53:dd:bb:9d:74:13:00:bc:d1:83:7b:3a:4b:f5:30:34:80:28:
30:c2:ab:1d:ca:40:d2:f7:91:c0:58:7a:e2:c3:d1:71:8d:30:
be:9b:72:c6:6e:2d:e4:c2:07:1f:e1:7f:1d:ac:b6:21:03:5c:
14:6e:c8:a6:42:42:20:51:04:61:35:1c:bb:c5:b8:a5:45:51:
6f:62:3d:30:10:a3:67:20:63:54:da:e3:8f:f9:48:b6:90:4a:
60:7d:b6:86:77:aa:9d:be:e4:8e:e1:8d:3e:43:73:1e:f1:8d:
cd:d5:61:f3:10:16:82:0f:c8:b0:68:2e:00:a0:9e:af:94:b0:
5a:9e:0d:b9:ac:ed:9e:72:68:59:03:bf:38:d9:ea:4e:6c:82:
d7:a5:5e:b4:64:e1:2e:de:6e:21:f0:8f:ef:99:d1:0b:f6:2d:
83:03:79:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:01:53 2025 by rpki-client