Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
File: NW2albrOGXhcQGR2Y_MdkFYmHC8.mft (raw, json)
Hash identifier: 8/OebQDnRaHHQpypeHnmlnFfpXQNwHahqjD5MiWKI1o=
Subject key identifier: 00:04:0F:7F:E7:BB:0B:AA:0B:29:B5:C2:4E:E8:8F:4C:AA:82:07:C8
Authority key identifier: 35:6D:9A:95:BA:CE:19:78:5C:40:64:76:63:F3:1D:90:56:26:1C:2F
Certificate issuer: /CN=356d9a95bace19785c40647663f31d9056261c2f
Certificate serial: 019A4EF48BE983479CBDE3A900658898231F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
Manifest number: 170B
Signing time: Tue 04 Nov 2025 13:00:40 +0000
Manifest this update: Tue 04 Nov 2025 13:00:40 +0000
Manifest next update: Wed 05 Nov 2025 13:00:40 +0000
Files and hashes: 1: NW2albrOGXhcQGR2Y_MdkFYmHC8.crl (hash: B0Xy4YPtyg1RFejyeDYQkISRx6aGaKMY7wHE8yxH1Yg=)
2: VMysSyLNDVGWd0vcTeYPwlMA5rc.roa (hash: 6+DEgCnpiKyTQCIOlcuNMISjTH2qj/1LJFyn3yXus8Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:8b:e9:83:47:9c:bd:e3:a9:00:65:88:98:23:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=356d9a95bace19785c40647663f31d9056261c2f
Validity
Not Before: Nov 4 13:00:40 2025 GMT
Not After : Nov 5 13:00:40 2025 GMT
Subject: CN=00040f7fe7bb0baa0b29b5c24ee88f4caa8207c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c4:62:bd:1b:cc:94:96:82:d5:53:23:b7:ae:
49:0e:4b:f5:8f:e3:86:32:5d:3c:47:9d:5e:5a:db:
56:17:e3:ec:37:b6:f0:b0:ff:14:de:8a:5a:d3:08:
4f:26:a9:b8:19:5f:39:67:44:22:04:f9:79:c4:41:
4e:17:80:20:a6:8e:f2:d8:70:d5:43:4d:5d:96:74:
30:08:1e:a7:e1:10:d9:0d:3b:c9:47:3d:04:bf:37:
ff:1d:f8:1e:b5:3e:96:8b:22:5d:a7:36:d5:80:14:
38:7f:23:2b:7d:73:3e:ef:b1:d8:33:bf:87:e2:06:
36:dd:bb:b4:e1:66:d5:63:dc:be:e3:0a:52:19:1c:
0f:21:97:7c:57:16:8e:b1:da:5a:f8:77:d1:f4:c4:
5d:f6:b3:fe:98:c1:af:f2:c3:3a:7e:fe:b9:d3:69:
4d:c9:d0:32:dc:95:91:35:6c:71:a6:b2:38:87:b2:
7c:47:57:6d:3e:70:16:a3:da:f9:e0:f8:8a:c0:00:
8d:ee:29:69:11:30:28:b7:02:35:d0:98:7f:85:8d:
4a:d7:f8:4c:55:b1:43:05:0e:b3:94:5f:26:03:f8:
21:8b:87:aa:12:47:5d:c5:14:05:10:d0:23:cc:95:
6e:34:35:4d:a5:d9:29:c3:4e:8b:da:72:69:fb:29:
48:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:04:0F:7F:E7:BB:0B:AA:0B:29:B5:C2:4E:E8:8F:4C:AA:82:07:C8
X509v3 Authority Key Identifier:
keyid:35:6D:9A:95:BA:CE:19:78:5C:40:64:76:63:F3:1D:90:56:26:1C:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:a7:01:4b:3d:03:6c:94:06:c3:75:5e:5c:47:25:d4:84:38:
73:04:9c:1d:3e:f2:00:b8:b6:a8:6e:22:5e:ce:e0:e9:db:ed:
bf:b3:43:85:8a:04:86:55:e8:59:93:62:d0:84:04:9f:70:a7:
6a:19:68:96:91:2e:c3:0f:c6:f1:e7:6b:7f:3c:c3:50:3a:3f:
47:60:8c:3b:f8:d6:d2:b2:91:09:b5:5d:36:2c:9b:a7:54:b4:
35:37:fe:b7:6a:32:c3:bc:1a:49:c8:cf:fd:5d:9a:fe:d1:d5:
fd:89:fd:88:e8:0e:c4:a8:4d:e8:c0:ab:1a:30:24:de:ce:d5:
16:e7:24:84:86:47:bd:3f:91:73:d2:94:45:ca:3b:91:e6:f8:
63:8b:ec:ac:0e:85:45:85:43:fa:e8:9a:e4:7a:95:d3:74:2a:
0b:25:ad:a4:0c:95:ee:df:f0:1b:b3:e9:6f:8c:14:05:c1:67:
74:1c:bf:76:9d:fb:e0:e7:c5:ac:d7:35:b8:02:db:20:3f:f5:
3e:17:d6:98:79:b8:4c:f5:00:35:c2:64:04:af:14:a6:10:f1:
69:3b:04:f7:29:98:33:51:87:bc:5e:78:23:ed:5b:ec:3c:43:
8e:7c:8b:7a:fa:7f:53:4c:b4:45:f5:d2:da:e9:f6:02:f4:95:
4b:de:44:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:41:58 2025 by rpki-client