Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
File: nxFouFcXoUZmABtbL2yQgBmX3gY.mft (raw, json)
Hash identifier: nYRop4TyryeI3S7YrKhT6WoU94qFuR7/CEZrVPFOoTM=
Subject key identifier: 08:C3:DE:6C:5E:94:45:35:23:23:F2:0A:C5:8B:63:F6:A8:CD:3F:5E
Authority key identifier: 9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06
Certificate issuer: /CN=9f1168b85717a14666001b5b2f6c90801997de06
Certificate serial: 019880C2BE040AE6FF935001E19BCB60322E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
Manifest number: 03CF
Signing time: Wed 06 Aug 2025 19:01:42 +0000
Manifest this update: Wed 06 Aug 2025 19:01:42 +0000
Manifest next update: Thu 07 Aug 2025 19:01:42 +0000
Files and hashes: 1: nxFouFcXoUZmABtbL2yQgBmX3gY.crl (hash: dUKgXDL1Irctj73TflkPWQzKmP60Z3wfEtcgKTNDSKc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 19:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:c2:be:04:0a:e6:ff:93:50:01:e1:9b:cb:60:32:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f1168b85717a14666001b5b2f6c90801997de06
Validity
Not Before: Aug 6 19:01:42 2025 GMT
Not After : Aug 7 19:01:42 2025 GMT
Subject: CN=08c3de6c5e9445352323f20ac58b63f6a8cd3f5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:93:3a:5c:49:f3:cf:3b:3c:c6:70:92:1d:b6:
09:23:4d:ae:71:02:88:f4:e8:41:81:69:39:b0:e6:
ae:11:ee:08:7a:46:ca:a3:08:3c:94:2a:56:7f:de:
d6:3b:f4:36:df:65:6d:31:17:91:7f:c4:ac:70:4e:
8e:45:af:19:54:91:0b:38:0e:ec:d1:0c:a3:ae:1b:
59:21:bc:73:6a:7a:a2:d7:8f:c1:61:0c:d9:59:b6:
45:86:9b:3e:f8:43:1e:6d:a3:ad:22:04:a3:14:e1:
9e:fb:54:24:02:47:2e:0f:15:e0:bf:dd:b0:1f:d2:
ec:f6:94:38:bb:f4:24:21:42:df:71:c4:f5:05:5b:
b8:9b:e1:07:12:ee:c8:50:99:01:be:ee:c3:f4:03:
cc:a9:a3:17:8a:0a:cc:0a:66:77:b1:9c:8c:2e:14:
9f:09:cb:36:93:0d:ff:25:77:f8:b8:b9:e2:69:f2:
f0:93:ed:3d:3a:af:a3:14:ba:64:4e:50:1c:fc:6a:
d0:47:e5:3f:17:c2:7b:93:b2:ce:b5:52:a9:2c:b9:
84:b3:67:6b:9a:13:a5:d2:36:2a:b7:32:e4:09:20:
16:be:55:ef:c9:bb:48:3a:69:fc:5c:dd:91:9c:42:
ab:73:b0:92:59:04:e0:15:1a:d4:c0:6c:2e:92:be:
fe:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:C3:DE:6C:5E:94:45:35:23:23:F2:0A:C5:8B:63:F6:A8:CD:3F:5E
X509v3 Authority Key Identifier:
keyid:9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:f8:b9:05:90:fb:d1:8e:17:e8:00:27:f7:ef:2a:53:e5:68:
c0:de:18:14:76:0f:d5:9c:78:d6:b3:26:6c:0b:a3:41:d8:fa:
c0:d2:cd:f7:1d:f8:e1:d0:b1:ea:06:90:ce:bc:0c:36:e7:d7:
dc:4a:e1:c8:11:1a:a3:4b:5c:f5:de:e2:20:7b:c5:05:d7:7b:
dd:96:d3:69:45:70:64:7b:ab:eb:f2:74:b4:2d:c1:e2:15:ac:
50:ec:1a:b5:9f:f7:41:d0:3c:61:3b:db:9c:6d:f0:6e:7b:c9:
71:31:41:0b:e6:2a:f8:e0:26:22:5e:e5:be:b2:e1:67:9f:5d:
f2:22:38:df:52:24:3e:8a:1e:13:e6:52:da:f4:82:ac:8a:1e:
38:f5:a8:a7:df:69:22:d1:76:32:e3:60:a5:08:4e:ed:8c:7e:
df:37:7d:ba:ac:b3:11:9b:94:36:0e:94:d9:20:94:ac:ae:58:
f5:cf:00:c2:2c:f9:67:a3:cb:01:e9:a4:04:be:fd:c3:27:75:
fa:ff:a3:e7:5a:ea:99:88:89:a2:42:e1:c2:bc:71:f3:73:72:
4c:44:16:a4:fe:0b:d8:25:e4:46:c4:1c:21:a3:1e:cf:e0:b7:
d4:d8:5f:57:e0:a7:ba:bc:27:5a:5c:19:8b:c3:73:8e:23:d5:
df:fe:9a:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:30:31 2025 by rpki-client