Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
File: nlf4Q7F__OqpuGNlgf5NVONG3cw.mft (raw, json)
Hash identifier: WdcnyA52v58cH1GqfYN8MiPQORyQM6wIg56kIqbjHaE=
Subject key identifier: FB:CD:7C:85:93:A1:8F:80:34:07:CF:87:4D:50:FD:5C:32:BE:D6:27
Authority key identifier: 9E:57:F8:43:B1:7F:FC:EA:A9:B8:63:65:81:FE:4D:54:E3:46:DD:CC
Certificate issuer: /CN=9e57f843b17ffceaa9b8636581fe4d54e346ddcc
Certificate serial: 0199FD33E6ADA079C28C770F3422A5F4F881
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
Manifest number: 0D37
Signing time: Sun 19 Oct 2025 16:01:00 +0000
Manifest this update: Sun 19 Oct 2025 16:01:00 +0000
Manifest next update: Mon 20 Oct 2025 16:01:00 +0000
Files and hashes: 1: IFXNgHuEN8ycsfhuA4dEpX7GYeY.roa (hash: 0NAgcHKOW4VLEuD8zIQn9OzSwjmjjTPr1tkjSBELdjk=)
2: nlf4Q7F__OqpuGNlgf5NVONG3cw.crl (hash: 3i8djyCjz3abfhEa3Aq1PJkL04sxJyWMcaxQxkbeW/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:33:e6:ad:a0:79:c2:8c:77:0f:34:22:a5:f4:f8:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e57f843b17ffceaa9b8636581fe4d54e346ddcc
Validity
Not Before: Oct 19 16:01:00 2025 GMT
Not After : Oct 20 16:01:00 2025 GMT
Subject: CN=fbcd7c8593a18f803407cf874d50fd5c32bed627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:6c:3b:cb:2d:64:ea:8d:d5:61:ba:76:01:06:
a1:38:2c:1f:d5:33:6d:8f:ab:87:a9:3c:ba:76:72:
b9:04:ae:86:23:3f:b7:03:46:e5:37:f4:9c:29:8b:
88:c8:7f:d6:2c:78:1b:bf:38:7b:2b:e9:9e:f5:af:
62:53:37:bf:98:a4:4a:d8:f6:68:c3:10:e4:a6:75:
b1:c6:65:ad:61:1e:18:4e:fb:60:25:bd:95:6b:d4:
1b:c1:1a:2b:fa:70:36:01:25:90:46:73:d6:f7:cd:
cf:89:28:05:6c:f8:57:b2:ff:8f:e7:1d:8b:6c:40:
5a:6e:88:65:8d:50:74:b1:7c:55:0f:fd:54:49:46:
46:da:58:b2:c2:3c:84:4e:fc:40:f4:f8:d6:21:aa:
78:e7:e4:ae:1a:7f:1a:03:2a:c6:bd:a0:fb:e9:0e:
af:98:21:d2:1f:f0:5f:26:29:b9:49:98:ec:9a:15:
df:21:58:1b:59:29:e8:60:75:b7:c1:4e:a2:21:ec:
bd:98:c4:d0:ac:66:3b:0a:c5:46:06:92:43:fd:97:
78:db:f7:08:0f:49:56:a6:8f:a9:fd:9d:9d:a7:c9:
91:0a:b8:8d:7a:c6:b6:49:76:8c:8b:bf:29:7d:79:
5f:fe:a4:7d:9e:35:da:7a:52:52:2b:5c:c1:c3:01:
92:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:CD:7C:85:93:A1:8F:80:34:07:CF:87:4D:50:FD:5C:32:BE:D6:27
X509v3 Authority Key Identifier:
keyid:9E:57:F8:43:B1:7F:FC:EA:A9:B8:63:65:81:FE:4D:54:E3:46:DD:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:11:53:8e:2d:71:42:63:15:42:8a:4c:e1:99:b9:06:bf:cb:
e6:d0:e0:c0:34:aa:80:39:80:93:0b:3b:ad:43:d1:8a:9b:9a:
b1:d7:64:c1:7d:8a:6f:47:74:85:ce:97:7f:1f:bf:99:c7:5a:
78:9f:46:8a:9c:78:75:07:0c:a1:0c:c2:9e:cd:12:34:79:f2:
07:26:d7:34:ee:86:4a:70:aa:12:7e:e2:d1:4c:be:56:6f:c9:
43:ce:b2:25:d1:c8:08:ed:3b:72:60:8f:bc:57:13:4d:ae:aa:
cf:7f:0d:95:ea:01:b5:d2:6b:b5:ba:e4:8c:d8:98:eb:bb:a6:
94:f1:bb:66:b7:62:42:2d:d1:fc:53:98:98:e3:ae:93:00:6b:
38:44:9f:1b:3a:07:c7:aa:e5:05:48:7a:22:1c:7f:a4:d9:a4:
05:79:49:7a:76:f9:36:fe:a4:d2:b0:72:57:ae:c7:71:8a:cb:
bf:be:10:b1:43:3d:af:32:55:42:21:54:b1:59:d3:94:64:2e:
bd:76:27:ea:c5:f4:5e:95:4a:11:1e:70:ec:3c:ae:8d:f2:54:
18:43:14:c4:39:8b:49:cf:53:f3:5c:c7:43:fe:cf:7d:c4:7e:
b4:e1:f7:3c:e6:57:69:e7:31:4f:83:06:5d:39:e9:61:48:e0:
18:50:0b:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:18:39 2025 by rpki-client