Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.mft
File: NO2iVBz8z2guKd2uYx7cjR57b2A.mft (raw, json)
Hash identifier: IiEDM/kSRikcUo4lfZcEXlgEgTbsF/G639sNPocxnPM=
Subject key identifier: 7F:93:DC:F3:56:DA:EC:9C:BF:B9:DE:01:6C:68:43:FB:AF:4D:12:69
Authority key identifier: 34:ED:A2:54:1C:FC:CF:68:2E:29:DD:AE:63:1E:DC:8D:1E:7B:6F:60
Certificate issuer: /CN=34eda2541cfccf682e29ddae631edc8d1e7b6f60
Certificate serial: 019A4EF49427A7531281C2097CF13C5F7912
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NO2iVBz8z2guKd2uYx7cjR57b2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.mft
Manifest number: 07BB
Signing time: Tue 04 Nov 2025 13:00:42 +0000
Manifest this update: Tue 04 Nov 2025 13:00:42 +0000
Manifest next update: Wed 05 Nov 2025 13:00:42 +0000
Files and hashes: 1: NO2iVBz8z2guKd2uYx7cjR57b2A.crl (hash: JkeDyZto3IKQdb8F2OSjQET0FWJgRX9BMIhCsN3Dz6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.mft
rsync://rpki.ripe.net/repository/DEFAULT/NO2iVBz8z2guKd2uYx7cjR57b2A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:94:27:a7:53:12:81:c2:09:7c:f1:3c:5f:79:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34eda2541cfccf682e29ddae631edc8d1e7b6f60
Validity
Not Before: Nov 4 13:00:42 2025 GMT
Not After : Nov 5 13:00:42 2025 GMT
Subject: CN=7f93dcf356daec9cbfb9de016c6843fbaf4d1269
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e4:af:b9:7e:4b:bb:ca:7f:d7:dd:6f:63:48:
b5:63:a6:e6:b7:c4:92:ed:bb:ea:ac:a2:82:1d:6b:
96:82:1d:4c:d2:ea:c7:52:e6:22:d0:9e:8b:74:30:
e2:b9:f3:9d:c3:d2:fc:1f:10:1e:a9:39:c6:7e:6a:
3a:66:34:39:ff:48:6a:e9:0d:8f:b3:44:34:be:5b:
ac:ee:5b:d8:54:56:0c:f9:8e:8a:32:ff:77:de:aa:
77:bf:d5:0c:b9:f8:8c:2b:b3:97:d1:83:b0:3b:b8:
b3:dd:96:0a:3f:e8:bb:a7:57:ee:e3:e0:2b:04:ec:
3b:37:d3:bc:63:a9:b5:3a:8c:b1:8a:07:1d:52:30:
48:c2:7b:f6:32:78:c2:76:49:e8:7f:c6:21:1f:58:
7f:94:ef:96:75:8c:3d:d5:f0:09:62:00:6b:6a:38:
24:1f:73:d2:f9:a4:6b:ad:da:1a:c7:30:52:15:96:
35:39:32:3a:c4:8e:09:cb:e9:3a:34:2a:bb:59:1e:
61:62:7b:21:f7:4d:36:fd:f5:9e:d9:89:e1:d5:a6:
f0:b9:60:fb:5f:bb:4e:b5:d0:ab:1e:89:e6:2a:a8:
5d:4f:4c:cb:60:6f:23:89:6d:35:66:98:53:7f:4e:
f4:5c:99:8d:62:12:74:66:b9:56:d8:a4:1e:18:51:
04:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:93:DC:F3:56:DA:EC:9C:BF:B9:DE:01:6C:68:43:FB:AF:4D:12:69
X509v3 Authority Key Identifier:
keyid:34:ED:A2:54:1C:FC:CF:68:2E:29:DD:AE:63:1E:DC:8D:1E:7B:6F:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NO2iVBz8z2guKd2uYx7cjR57b2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:7f:79:1d:6e:d2:14:c8:4c:8a:d2:00:b4:71:f8:46:8c:da:
f8:a0:25:3e:7a:4a:c0:0b:6b:03:5f:bb:4d:d1:5e:15:d9:28:
7f:54:83:83:20:98:da:9f:8c:d8:cc:9f:ae:67:2c:6a:e7:36:
05:97:7f:96:a0:07:cc:30:16:96:19:e0:6a:ba:a8:77:76:bf:
71:ad:5a:fa:93:d0:6a:46:55:19:97:ed:69:09:11:7b:93:69:
f5:06:3d:92:e9:e3:ce:6f:ca:e0:20:84:83:5e:e3:2b:70:2c:
17:da:fc:31:a4:46:57:57:5d:c8:d4:dc:5a:25:b6:51:a7:9c:
5b:81:b4:32:fc:63:53:9a:d2:5d:fb:c3:c6:a2:ef:c8:59:aa:
68:67:e4:35:9d:e6:49:e9:7b:5f:27:9c:13:7c:5e:87:20:88:
7e:6a:5b:aa:3d:5e:7f:eb:db:79:5d:b4:f2:e2:db:af:6b:54:
76:b2:2c:54:2e:32:2c:b5:ea:11:30:8b:14:67:72:5f:41:2b:
f4:3e:9b:9d:c2:63:20:82:69:7f:71:1d:d0:d9:5f:a2:2a:5b:
2f:2b:1e:35:29:c6:b1:f3:5e:e1:d3:7e:ab:87:9f:bd:f1:41:
aa:e9:d6:3a:45:e7:98:62:0f:de:e0:a3:4d:b2:e3:dc:c8:35:
59:74:be:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:52:27 2025 by rpki-client