Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft
File: NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft (raw, json)
Hash identifier: 3bzrSkLeoKeWeBzbaCQRh85DMCwxdPCTR6Us7Q33l48=
Subject key identifier: D8:13:1D:1A:68:13:56:66:EF:35:D0:2C:37:67:05:30:2D:9C:CE:87
Authority key identifier: 35:8A:E5:80:B2:F7:B4:5C:3D:2A:E9:F1:9F:3C:1B:E9:7E:83:9A:AA
Certificate issuer: /CN=358ae580b2f7b45c3d2ae9f19f3c1be97e839aaa
Certificate serial: 0199FC8F4036D1EC89014D6EDB3C777EAAEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft
Manifest number: 131A
Signing time: Sun 19 Oct 2025 13:01:10 +0000
Manifest this update: Sun 19 Oct 2025 13:01:10 +0000
Manifest next update: Mon 20 Oct 2025 13:01:10 +0000
Files and hashes: 1: NYrlgLL3tFw9Kunxnzwb6X6Dmqo.crl (hash: CYyhO5O+wwfcCjFw1vm6mheWHQ5EVoqb8bAcj3kCigQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:40:36:d1:ec:89:01:4d:6e:db:3c:77:7e:aa:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=358ae580b2f7b45c3d2ae9f19f3c1be97e839aaa
Validity
Not Before: Oct 19 13:01:10 2025 GMT
Not After : Oct 20 13:01:10 2025 GMT
Subject: CN=d8131d1a68135666ef35d02c376705302d9cce87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:59:b1:f5:a9:91:40:05:ef:bc:df:2b:bd:08:
d2:ec:a3:d2:df:82:03:4e:78:43:7e:16:8b:ce:33:
fd:68:f1:59:c9:3c:1e:f2:54:c2:d9:4a:55:2f:33:
64:1d:ce:47:67:40:e1:f2:2c:67:d5:58:1e:30:90:
c9:69:60:db:9b:d8:f0:85:b2:82:66:40:2f:12:5e:
bb:3d:a8:13:a6:85:c0:c8:6e:07:ee:32:71:d3:4f:
36:d6:4e:f9:e3:39:1a:fa:0f:4a:ac:98:7e:fa:16:
80:d2:44:42:57:a2:82:75:5a:06:fd:38:4c:c1:95:
47:aa:af:07:f0:b4:60:a3:fa:83:09:bf:71:61:d5:
d2:d6:bb:23:cd:0c:c1:02:59:c6:29:54:3e:03:b9:
d5:41:9a:29:22:6a:5b:a0:09:50:97:0d:60:f2:cf:
11:51:73:ca:ca:4e:d7:03:15:83:46:55:df:1f:ef:
4f:49:a1:50:36:0a:99:77:93:2b:8a:94:a1:50:59:
57:f5:15:b3:cc:90:a9:f2:88:6f:45:0d:25:6b:82:
08:a8:af:ac:32:63:b8:74:0e:bd:9f:cd:94:17:3c:
f8:1f:19:3a:9e:51:c1:26:1a:ef:40:5c:1f:d9:64:
c0:8f:b3:82:8e:06:b6:b1:96:80:79:37:f0:9d:6c:
13:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:13:1D:1A:68:13:56:66:EF:35:D0:2C:37:67:05:30:2D:9C:CE:87
X509v3 Authority Key Identifier:
keyid:35:8A:E5:80:B2:F7:B4:5C:3D:2A:E9:F1:9F:3C:1B:E9:7E:83:9A:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:17:1f:99:de:b9:6a:3b:8b:f6:9a:b6:b7:c0:09:77:f0:cc:
52:f8:a7:45:c2:4a:c4:89:75:e5:ed:ae:b7:23:d6:0f:d7:0d:
81:7e:65:2c:e9:df:a7:48:2d:b1:db:6a:85:74:c9:5b:22:ed:
b1:6b:92:e2:d1:5f:4f:56:17:56:e3:ab:c7:7f:02:24:28:3b:
1b:cd:c6:77:17:74:b5:84:fe:e6:de:92:32:e0:cd:f5:d8:43:
7c:6f:61:f8:a8:f4:49:cf:b7:9e:35:e9:bc:72:82:e2:55:01:
3a:c7:c4:b8:7f:fa:15:39:56:ac:4b:03:f0:d8:a2:c8:cb:2a:
ef:8d:33:ec:59:49:91:b7:e7:33:d2:51:69:a6:d1:e0:1f:11:
6b:1b:df:2e:fa:25:81:78:cc:0c:4e:c8:ab:55:cb:e5:45:28:
95:de:ea:ce:a7:8d:94:f0:f3:62:da:71:85:91:4e:7d:db:c1:
ff:68:24:55:5f:cd:df:77:e2:06:ab:76:cc:c8:ee:9d:f9:18:
fc:22:02:89:86:89:1e:71:8e:53:fa:07:34:cc:92:6e:9b:57:
05:13:4f:b6:70:18:2e:a7:99:20:36:dd:b6:44:c6:b3:c7:fa:
8b:1f:63:58:52:9a:9f:3f:2e:6c:5d:32:61:6e:1d:a6:38:b1:
75:99:6b:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:23:32 2025 by rpki-client