Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
File: nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft (raw, json)
Hash identifier: lCLNRyPqUIKvXGk/xDNU68Zn38b4xWUmioIVFQXBBQs=
Subject key identifier: B7:04:62:CA:56:09:60:33:A6:51:10:6D:CC:E2:8E:73:D1:7C:72:A3
Authority key identifier: 9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC
Certificate issuer: /CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec
Certificate serial: 0199FB7CC92B8C63474158FFCFDB5577987B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
Manifest number: 16DF
Signing time: Sun 19 Oct 2025 08:01:23 +0000
Manifest this update: Sun 19 Oct 2025 08:01:23 +0000
Manifest next update: Mon 20 Oct 2025 08:01:23 +0000
Files and hashes: 1: YH77N0FEznpizquL2OaCl5vYAjI.roa (hash: YndCp+4019jEGglb/4lGICFoI/oofyeIHhlA4OhtUTc=)
2: nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl (hash: +UlTbdFYs0U6EBEaj25XmQtPy8c9Y4WX6NpbkG4gJvs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:c9:2b:8c:63:47:41:58:ff:cf:db:55:77:98:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec
Validity
Not Before: Oct 19 08:01:23 2025 GMT
Not After : Oct 20 08:01:23 2025 GMT
Subject: CN=b70462ca56096033a651106dcce28e73d17c72a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5e:b4:17:03:66:79:41:26:cf:41:e4:16:c5:
4e:e7:15:91:d9:cf:6b:c0:fb:d2:f5:2c:7c:03:2d:
72:da:0e:e9:30:16:ca:bb:78:07:28:da:1f:83:12:
53:93:5c:eb:6e:18:0a:93:6b:0f:59:bd:c4:9a:55:
c9:26:42:bd:fb:6f:3e:d3:f5:10:ba:27:fd:bb:0b:
0f:d5:76:f2:76:16:0e:d1:67:9a:79:1a:0f:79:35:
a4:96:e6:17:6a:85:e6:b2:12:3d:6f:42:3f:fb:5e:
48:fd:f0:c9:ad:19:00:0b:9f:a9:25:11:e9:51:d6:
3f:18:45:31:85:3d:e9:7b:11:12:03:8c:57:1c:bf:
5c:2d:07:2b:98:af:fc:a4:56:04:86:ef:45:f6:00:
fc:c7:ca:40:a2:75:2d:50:bd:db:5a:a4:50:be:f1:
b7:03:4f:a9:50:19:63:2a:62:f2:63:a0:6d:ca:3a:
34:df:b1:f8:af:6e:f2:7f:a9:23:4d:34:56:d5:83:
db:aa:82:0a:4c:6c:14:1f:67:d9:40:91:a9:6d:66:
07:06:b8:14:e0:e2:ef:57:c9:32:66:2c:75:25:36:
08:c6:e7:44:16:01:a2:ce:dd:09:8a:f7:8d:f3:30:
cc:5b:3f:7e:e7:81:43:ae:ae:7c:79:f5:7e:87:e5:
d4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:04:62:CA:56:09:60:33:A6:51:10:6D:CC:E2:8E:73:D1:7C:72:A3
X509v3 Authority Key Identifier:
keyid:9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:11:5b:94:e3:14:a4:4d:9b:47:00:97:a2:69:4d:4b:e8:db:
c3:d0:80:ff:ec:0f:aa:92:ab:07:6e:ab:58:81:cd:84:4c:9a:
30:72:51:13:89:71:eb:c3:07:86:9a:29:88:df:44:4a:3f:d9:
00:8a:3a:a5:e0:a3:58:79:cc:34:5a:29:8a:47:c7:86:6f:0b:
40:5c:49:26:6b:b9:97:72:bb:ed:d2:2a:4a:5e:8b:ef:06:1c:
26:38:a9:6f:6e:e3:5a:de:5f:0f:5d:4b:9b:36:72:93:02:83:
6c:04:b3:ff:ac:f1:bd:99:2d:0e:39:2e:35:44:db:09:39:50:
dd:69:78:0d:52:e3:1a:8b:2b:bc:e4:0a:52:88:b5:d9:2e:61:
94:a9:d4:3b:6f:bb:df:05:f4:4e:5c:1e:65:51:d0:29:f2:d8:
ab:d6:40:55:13:1b:82:85:95:db:c3:77:e7:83:db:0a:a1:c7:
3d:3b:ee:c8:3f:b1:75:fd:88:f1:48:20:33:90:15:0b:30:be:
1e:ee:96:16:8f:ff:ee:60:3b:e4:82:05:8c:64:4f:12:a4:15:
4f:ca:61:b6:b0:24:47:3e:a6:b1:07:d9:24:a7:a9:78:af:54:
cb:6e:9f:4c:cd:bb:4e:09:0a:7a:87:00:c8:19:a7:6d:75:f7:
a1:d7:85:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:11:27 2025 by rpki-client