Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
File: nlY8Qm0ark7R5_WVNnSQIgiehHk.mft (raw, json)
Hash identifier: 6zAhx7nfKS/DuULIE8fyuf6i1eNCoGqBGLC0+J1imZw=
Subject key identifier: 4B:A7:27:C1:08:67:BC:17:DE:17:D7:66:12:74:87:32:D9:5C:FA:30
Authority key identifier: 9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
Certificate issuer: /CN=9e563c426d1aae4ed1e7f59536749022089e8479
Certificate serial: 0199FD6B35B61C35442B71D34A833C5741D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
Manifest number: 0BA4
Signing time: Sun 19 Oct 2025 17:01:25 +0000
Manifest this update: Sun 19 Oct 2025 17:01:25 +0000
Manifest next update: Mon 20 Oct 2025 17:01:25 +0000
Files and hashes: 1: DLPCyIKM7jz79PsqVnrxNoMgYXE.roa (hash: +QgaTeTZpZ2fDtls8hcOtAF0lYWHQbDmqjy56TBm3AY=)
2: nlY8Qm0ark7R5_WVNnSQIgiehHk.crl (hash: fk9i83ktoz2ehsWQhFQU1keIfoHqeRcdDZcaf/6hVZA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:35:b6:1c:35:44:2b:71:d3:4a:83:3c:57:41:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e563c426d1aae4ed1e7f59536749022089e8479
Validity
Not Before: Oct 19 17:01:25 2025 GMT
Not After : Oct 20 17:01:25 2025 GMT
Subject: CN=4ba727c10867bc17de17d76612748732d95cfa30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:64:46:bd:a8:60:5b:c9:6b:11:ea:6e:a4:34:
19:54:2e:f4:a6:d4:81:93:3a:5d:6d:02:6b:0e:92:
9d:72:2d:18:db:b9:9a:91:41:ae:fa:fb:fe:57:ed:
95:a0:87:a0:25:3a:47:40:6a:81:d3:d9:4a:b2:a7:
11:4e:b8:75:dc:e0:73:a5:73:a2:47:89:f2:8f:4f:
07:50:88:76:48:2b:a6:cd:58:6e:e4:28:cd:5b:33:
92:c6:0b:bc:22:3b:60:8d:78:5d:fa:ba:75:41:b1:
51:b3:58:e1:d9:9a:f2:e8:8b:46:cf:dc:77:48:ea:
64:d5:8e:cd:a8:09:ed:87:41:35:3a:16:db:3c:08:
4f:61:6f:9a:38:7a:77:ab:fa:1b:d1:3d:e7:6e:62:
5d:df:51:3c:a7:93:bb:fe:cd:9b:ae:3c:e4:f3:8e:
ca:42:9c:ec:e3:9b:63:21:1f:6e:fa:13:f4:65:82:
ef:23:c9:d2:40:25:e9:9e:29:b6:fb:ff:3a:7b:ff:
32:a2:f8:63:6e:cd:b3:ee:a1:ed:da:3f:3a:8c:8a:
a2:f8:d8:35:bb:4e:95:ce:3a:36:71:70:03:8b:41:
51:68:56:b0:75:21:12:cd:a6:ab:ee:46:2c:6e:1b:
7f:79:20:81:77:a0:32:c8:4e:c5:53:2d:c3:20:34:
59:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:A7:27:C1:08:67:BC:17:DE:17:D7:66:12:74:87:32:D9:5C:FA:30
X509v3 Authority Key Identifier:
keyid:9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:af:37:4e:9b:8f:90:f1:aa:91:82:9e:f2:94:2b:24:d1:aa:
e4:10:88:3d:92:36:dd:dc:c7:83:30:59:7b:e0:62:b0:6c:bb:
a9:16:87:af:8a:d6:45:8f:f3:fd:f6:5d:3d:87:6e:1d:46:f5:
0c:14:64:ef:19:ec:ab:24:9b:aa:94:dc:81:01:b3:eb:ce:68:
dc:af:0b:d8:58:6b:b8:a6:1a:d4:60:d1:09:96:8f:a6:ff:cf:
7f:af:e6:c7:33:15:b5:9f:4e:25:ba:4d:fa:a8:82:78:6a:15:
eb:f9:94:22:4e:7f:0d:63:d8:e0:72:65:f0:63:3a:25:c6:16:
60:f2:d9:c7:c7:0a:cf:33:47:a9:90:d1:71:3b:26:86:b0:c2:
76:dd:9c:12:12:8c:ce:b0:27:3b:6a:5f:ed:c9:a2:d0:f0:f1:
5f:ae:96:d3:1a:18:22:8e:40:de:6d:27:4b:79:07:15:93:e4:
ca:b4:55:3e:5e:38:04:44:32:48:ba:7c:4f:c1:a1:5c:78:d8:
06:28:74:b1:8d:de:9b:d1:5e:02:a1:83:60:cf:87:2f:8e:e9:
cd:c3:8e:de:dd:57:a1:ff:07:4e:c6:3c:d8:b0:52:79:0c:fc:
d0:80:1a:62:86:d6:d1:1a:06:2d:e0:5b:d6:c1:4c:d8:9b:92:
63:d3:45:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:40:26 2025 by rpki-client