Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
File: NYx3zUAYPEEVsr8NznFuC8XQv9U.mft (raw, json)
Hash identifier: HHgmKoHuwqWzOuuqY9EY7zk1QawAkieTdoEoTmJrCZk=
Subject key identifier: A9:16:5F:B1:CC:CF:A2:67:5E:04:2A:D5:63:D2:0D:0D:6D:1D:54:D1
Authority key identifier: 35:8C:77:CD:40:18:3C:41:15:B2:BF:0D:CE:71:6E:0B:C5:D0:BF:D5
Certificate issuer: /CN=358c77cd40183c4115b2bf0dce716e0bc5d0bfd5
Certificate serial: 0199FCFD4EB0A874A412066BAE4B54D70338
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
Manifest number: 044D
Signing time: Sun 19 Oct 2025 15:01:23 +0000
Manifest this update: Sun 19 Oct 2025 15:01:23 +0000
Manifest next update: Mon 20 Oct 2025 15:01:23 +0000
Files and hashes: 1: NYx3zUAYPEEVsr8NznFuC8XQv9U.crl (hash: fybkuyOoTC1Lg7scD0v64u4nStvoXsucts1X9P78s1A=)
2: zdd_itkr61DwlSbiF7xORGma-Mg.roa (hash: s7+y8n33Kdf5OFXebrrUAhH6tASSitV8ofo7STn/T1o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:4e:b0:a8:74:a4:12:06:6b:ae:4b:54:d7:03:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=358c77cd40183c4115b2bf0dce716e0bc5d0bfd5
Validity
Not Before: Oct 19 15:01:23 2025 GMT
Not After : Oct 20 15:01:23 2025 GMT
Subject: CN=a9165fb1cccfa2675e042ad563d20d0d6d1d54d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:bc:44:79:a1:25:be:58:8a:08:c2:57:cf:9a:
de:23:86:f3:3c:2a:21:32:04:1e:7c:d8:f8:c2:26:
47:31:4f:6e:99:50:df:d4:53:47:58:85:fa:ea:69:
3b:cb:20:b1:ba:17:16:7a:a7:37:a5:25:86:cc:d4:
69:5c:ae:9f:f6:31:f5:d0:42:d0:3d:d5:e1:30:cb:
01:9d:a3:f1:4e:b3:49:b6:0b:e0:57:5e:72:2f:7e:
df:03:4a:dc:67:47:56:a3:78:77:93:ab:3f:ed:c2:
55:5c:57:78:99:94:b8:30:fe:52:8d:ef:86:5a:0b:
fb:ba:3e:52:8b:0e:32:64:a1:e7:db:0f:29:8d:36:
57:bf:ba:f9:90:c6:c3:f5:84:5e:83:b5:b8:0d:89:
4a:d2:6f:b8:43:9d:37:d0:da:91:2b:b4:eb:bc:bd:
34:48:66:82:de:c2:a2:31:27:f4:b5:b9:e3:f0:ad:
43:b2:66:d2:2e:11:ac:83:28:be:88:c2:9a:ae:b8:
3c:1f:4b:34:32:b3:e9:80:e5:2f:32:cf:fb:cf:a1:
f5:c7:0e:c4:25:6d:3f:c3:7f:24:b6:de:66:0e:e2:
82:c0:57:35:4d:fd:9c:08:3f:a2:56:46:98:ea:0c:
29:a4:93:8f:a9:ff:03:dd:2a:b1:d9:10:14:95:05:
7a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:16:5F:B1:CC:CF:A2:67:5E:04:2A:D5:63:D2:0D:0D:6D:1D:54:D1
X509v3 Authority Key Identifier:
keyid:35:8C:77:CD:40:18:3C:41:15:B2:BF:0D:CE:71:6E:0B:C5:D0:BF:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:2e:be:31:f2:7b:20:60:33:16:31:d8:b6:1d:7d:e6:44:01:
4e:f6:46:e7:ed:c2:45:d3:27:f2:46:8e:45:60:6b:6a:1f:77:
7e:37:89:48:2d:a5:7d:d1:87:84:47:34:cd:ed:e6:31:4e:d0:
a2:00:a9:61:24:b3:49:83:13:da:cd:c9:4e:3d:40:73:c2:0f:
a1:e1:4e:ac:2e:70:8a:38:0c:ce:9d:33:02:9a:de:89:2e:28:
a0:07:67:84:a8:10:57:2a:3e:49:ab:85:77:4c:d3:e2:ce:1f:
34:e5:86:06:66:45:12:75:8e:de:10:4c:35:25:e3:6d:c7:4b:
bb:0c:02:2f:68:0c:89:f4:8b:1d:3d:96:a0:a8:bc:b9:0c:26:
07:42:dc:ef:6c:5c:0d:75:e8:07:01:b4:90:52:2b:89:64:fd:
4a:cf:d8:ef:a9:03:cb:6c:e7:91:0a:63:48:fd:34:87:b1:a2:
a5:be:d4:d1:06:1e:88:a3:bb:24:5b:8a:6f:e5:23:bc:a3:f8:
b9:00:5b:6f:bc:f9:07:cc:f2:3e:37:f1:19:9b:64:24:cc:c2:
6d:c4:3d:3a:c0:1c:cd:37:c1:d1:6c:60:b3:f5:c6:74:6a:14:
5a:7e:17:ed:aa:32:21:12:95:e3:fc:dc:a8:bb:5c:75:3f:10:
07:fc:58:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:20:20 2025 by rpki-client