Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
File: NIMjF9JURDS2WeVpIHHY5MSTiwY.mft (raw, json)
Hash identifier: jALoXf1H1jSOAXttb/NkWD+W3bkdyb9/4cTir+b0arU=
Subject key identifier: 06:FB:85:BB:DE:89:A3:C6:59:66:60:C2:EF:1F:80:3E:43:9C:5F:B8
Authority key identifier: 34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
Certificate issuer: /CN=34832317d2544434b659e5692071d8e4c4938b06
Certificate serial: 0199FE476D7D7B7D4C8F07E913FAFFDC82B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
Manifest number: 0455
Signing time: Sun 19 Oct 2025 21:01:57 +0000
Manifest this update: Sun 19 Oct 2025 21:01:57 +0000
Manifest next update: Mon 20 Oct 2025 21:01:57 +0000
Files and hashes: 1: NIMjF9JURDS2WeVpIHHY5MSTiwY.crl (hash: QPJQkdd9p01pGOdAZ0NAtWWW/6NwKgPC96sKfmjURbc=)
2: x2Xaez7Ra9vjvF4FG3Er4hO4ovk.roa (hash: T67Ch/iuLueDDibfJIFSKnLQW9UiEIt+71JVmL/jUzg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:47:6d:7d:7b:7d:4c:8f:07:e9:13:fa:ff:dc:82:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34832317d2544434b659e5692071d8e4c4938b06
Validity
Not Before: Oct 19 21:01:57 2025 GMT
Not After : Oct 20 21:01:57 2025 GMT
Subject: CN=06fb85bbde89a3c6596660c2ef1f803e439c5fb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:cc:ce:c8:90:19:1e:eb:13:c4:63:10:3a:0b:
da:13:5a:4f:68:5d:30:e9:20:a3:a4:ff:22:16:26:
dc:be:4c:0f:64:5d:44:8b:95:66:78:1d:63:f0:33:
63:a6:54:24:cb:a9:a6:53:b5:0b:01:24:a7:0a:19:
07:4d:66:d2:d8:92:67:cd:3d:ee:95:b9:c8:0b:a9:
32:db:ff:a1:fb:a2:8d:0c:a8:bd:95:64:bd:38:45:
24:3c:b5:6e:cd:db:72:e5:76:eb:e8:f7:ff:37:36:
bf:1d:f9:b2:64:00:6a:c8:94:8f:bd:54:10:7f:2e:
40:9f:7f:ff:a1:ea:59:68:98:b3:34:21:cf:e7:12:
72:5d:2c:73:45:40:53:5b:7a:5c:21:0b:6d:dc:2f:
ca:00:ad:a8:1f:4f:cd:b1:39:3d:7d:3f:e2:30:e6:
a6:e6:9b:a5:c5:04:d0:3e:b1:87:d2:28:38:e2:74:
03:9c:1f:8d:08:b6:f1:8f:73:96:c8:bd:b5:d0:aa:
88:77:a9:2a:eb:fa:5d:5d:2f:d0:c2:95:67:6d:c7:
42:0b:ed:88:d0:f7:00:ba:b4:1a:0a:66:fe:28:55:
50:d3:de:86:ac:24:63:30:a0:08:4d:37:60:75:42:
30:b2:f1:a5:c0:7a:23:28:ea:14:e7:59:12:8e:16:
0b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:FB:85:BB:DE:89:A3:C6:59:66:60:C2:EF:1F:80:3E:43:9C:5F:B8
X509v3 Authority Key Identifier:
keyid:34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:21:e7:bb:53:b4:a3:00:56:fc:8c:4d:a5:f4:8e:ce:1d:ba:
14:4b:83:c5:25:fb:2c:95:5a:ff:fa:31:d1:e0:62:fa:67:e4:
c9:a5:cb:14:a6:df:37:28:76:99:84:24:be:53:07:81:a9:74:
8c:ca:40:07:ab:50:07:7a:08:4a:8b:04:55:99:06:03:b8:48:
7e:1c:30:d3:3e:d4:aa:2b:35:e7:96:86:1b:72:74:26:34:76:
52:16:c9:cc:9a:fb:f2:49:a0:4d:b8:81:9d:4c:b6:13:ce:8d:
46:d8:d9:f9:97:75:cd:d8:50:92:9f:61:5a:dc:91:58:4b:ff:
19:8c:61:78:2e:3c:f2:fb:4f:fe:91:0b:d2:e0:83:eb:b0:74:
07:3f:00:87:d9:00:ff:05:7d:66:af:22:76:26:bb:8d:72:76:
1f:39:4f:46:22:e7:e6:b0:11:d0:3a:1b:9b:3f:46:ad:b3:54:
24:d4:7d:4e:e7:14:e0:81:83:db:78:2d:64:dc:2c:2e:7d:4a:
71:b0:41:ed:c6:51:41:fc:45:c2:d9:80:8d:8a:98:8d:e4:9f:
99:25:00:45:aa:3c:bf:c5:35:87:16:07:7d:25:4c:b5:cc:31:
e8:07:c2:fb:1e:a1:7c:26:24:eb:31:d9:8a:f7:4c:9f:4a:ee:
66:f5:a5:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 06:46:15 2025 by rpki-client