Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
File: NTPUOQNczcXww50bP7FhlbVV_KM.mft (raw, json)
Hash identifier: SMe/76ypKcaSpTyNB6VQbE7hH3p4XZNohMGJZYES9Zg=
Subject key identifier: 9E:8E:E2:09:9A:8B:41:58:ED:EF:A9:CC:4D:1A:F9:6A:0F:42:A0:A1
Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Certificate serial: 0199FAD846C35EAE43C922E237E5E4F82191
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
Manifest number: 0BD7
Signing time: Sun 19 Oct 2025 05:01:41 +0000
Manifest this update: Sun 19 Oct 2025 05:01:41 +0000
Manifest next update: Mon 20 Oct 2025 05:01:41 +0000
Files and hashes: 1: NTPUOQNczcXww50bP7FhlbVV_KM.crl (hash: +yFTfMn9/qdZt3MJ4LKrV+acxvpga+0Lv7mghIx6Wr0=)
2: rAVoUvT6eIAoJ9DaPocwQDvvkoc.roa (hash: 1BFZOwvrkIRFql6imBqxsdk52Ly1yvo/6JadLNNcDZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:46:c3:5e:ae:43:c9:22:e2:37:e5:e4:f8:21:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Validity
Not Before: Oct 19 05:01:41 2025 GMT
Not After : Oct 20 05:01:41 2025 GMT
Subject: CN=9e8ee2099a8b4158edefa9cc4d1af96a0f42a0a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:5d:5d:52:b7:36:76:21:c2:84:10:3f:ea:c3:
48:0b:e0:01:89:44:84:eb:d6:db:f3:af:dc:9e:d4:
41:51:d4:a3:04:f6:c5:f0:6c:5f:37:e1:4d:17:aa:
82:d1:c2:29:fe:cd:db:16:09:e2:24:55:d4:8a:ea:
8e:16:86:e6:b9:9a:b8:90:3e:53:3b:62:5d:e1:76:
cb:6d:17:9d:28:6a:29:c8:1b:d6:df:a3:f4:b0:09:
64:6e:c0:97:d2:64:c9:02:f8:9f:90:d8:9d:3e:7e:
b3:3c:5a:2b:f7:ea:d5:10:eb:d3:f1:fa:2d:73:bc:
6a:40:72:68:35:d6:f8:5b:00:67:a5:2a:e9:1c:42:
b0:24:da:6b:60:22:96:ca:07:4b:dc:88:a0:b0:ff:
52:84:ce:2d:23:34:0a:b2:39:2f:e8:62:77:22:51:
05:3e:b4:c3:b9:63:95:43:fc:59:2c:b2:db:15:cd:
f2:eb:09:85:b5:24:2c:a8:29:8b:19:22:91:52:7b:
2d:bb:52:38:9b:42:6f:e7:97:13:b0:04:bb:6d:c1:
04:d5:6c:0f:71:46:91:21:3f:2b:20:9e:52:b0:bf:
6b:56:d1:ef:b9:d9:d7:6d:34:03:40:e8:fe:01:e9:
ad:df:d6:d0:99:b8:58:62:84:54:e3:6c:74:c0:37:
16:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:8E:E2:09:9A:8B:41:58:ED:EF:A9:CC:4D:1A:F9:6A:0F:42:A0:A1
X509v3 Authority Key Identifier:
keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:78:f9:da:cf:b0:a0:30:41:09:6c:b4:2c:d5:ec:eb:4c:24:
c6:25:b3:7a:a1:79:7e:ef:54:8d:3d:39:55:89:11:c5:fb:fb:
b0:ef:36:22:61:a0:39:21:95:22:a3:48:7a:89:a2:41:e4:3a:
85:40:15:82:bb:24:fc:b0:85:5c:2b:1a:40:14:8a:64:b4:d2:
9c:35:1c:1c:43:b3:dd:26:fc:a5:bd:19:c5:a2:e0:81:b7:af:
32:b3:ac:32:9f:b2:c7:21:67:ae:a1:d8:d4:2a:e0:02:dd:b8:
e4:6d:22:10:9f:71:ad:b6:95:9c:f7:47:b7:71:00:ab:99:99:
e8:3c:a9:47:53:28:24:0f:a2:55:fc:45:8c:a4:9c:21:31:f2:
93:69:f2:ea:23:08:65:8c:62:85:f8:6a:fe:85:26:c7:95:dc:
0b:d3:75:db:f0:a7:22:22:de:be:f6:7c:8a:49:ae:d4:39:6f:
dc:51:12:04:8c:7b:4d:6c:36:b7:93:1d:f4:e9:05:f8:6b:55:
9c:ee:4b:cf:8b:8d:d3:37:52:59:10:31:57:0b:23:e0:8b:72:
38:9d:6e:d9:9b:fc:4e:f8:dd:22:e0:a1:2e:63:16:cc:50:3f:
82:69:e5:c6:78:2b:88:d0:62:9e:4d:6d:94:0a:93:4e:f6:cf:
99:28:8a:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:12 2025 by rpki-client