Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
File: ny83TJpzj63o-FDKq11507kARYQ.mft (raw, json)
Hash identifier: W95bxVgwVIN8sHspRxOH7N4eCKgELUtP8scAuytJI1o=
Subject key identifier: C8:0C:B7:FA:29:42:CB:A3:33:A0:11:6A:66:56:4C:74:CA:56:F6:82
Authority key identifier: 9F:2F:37:4C:9A:73:8F:AD:E8:F8:50:CA:AB:5D:79:D3:B9:00:45:84
Certificate issuer: /CN=9f2f374c9a738fade8f850caab5d79d3b9004584
Certificate serial: 0198D472F0EE1A24950A23173BAC56E4F06B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
Manifest number: 1645
Signing time: Sat 23 Aug 2025 01:02:39 +0000
Manifest this update: Sat 23 Aug 2025 01:02:39 +0000
Manifest next update: Sun 24 Aug 2025 01:02:39 +0000
Files and hashes: 1: ny83TJpzj63o-FDKq11507kARYQ.crl (hash: QnJNUqimRex6ocwiywDn+OSjcsKXSrvS8XnxrXvBKBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:f0:ee:1a:24:95:0a:23:17:3b:ac:56:e4:f0:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f2f374c9a738fade8f850caab5d79d3b9004584
Validity
Not Before: Aug 23 01:02:39 2025 GMT
Not After : Aug 24 01:02:39 2025 GMT
Subject: CN=c80cb7fa2942cba333a0116a66564c74ca56f682
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c2:d3:75:84:46:42:48:61:59:a1:b4:79:58:
b8:19:67:7d:a1:ef:17:f8:62:b1:9f:45:1b:c8:7c:
50:6a:46:f1:23:bc:69:4d:51:25:c6:ab:b4:d8:d2:
b0:66:5a:5e:32:60:37:94:51:4e:b1:55:6e:62:6e:
58:e0:46:c9:8b:5c:6b:00:09:19:59:6a:36:11:08:
a9:3b:a7:64:98:cf:ac:82:30:49:0b:0f:0f:16:e2:
a6:76:7e:36:e0:b5:66:6c:dc:b0:ba:c8:35:5e:fb:
1e:08:49:df:70:82:c4:70:b8:ba:79:ee:a0:96:a5:
0c:a9:2d:5d:f7:6a:98:d4:da:64:67:97:18:b2:37:
79:1a:9a:b8:b4:16:a1:79:76:6a:19:0d:73:17:ee:
ae:5a:43:fa:dc:b8:96:2d:b2:d2:2f:d7:5b:77:bb:
00:92:87:0a:ac:f7:b5:64:72:91:e7:28:67:b1:05:
18:5c:7a:cb:c1:4a:af:ba:cd:90:76:66:8b:f6:9f:
44:4c:44:ac:30:6c:82:d0:3d:18:cf:f8:d3:fd:34:
96:ab:29:55:3e:1d:d7:9b:7e:e1:4f:6d:22:e3:d8:
40:0e:00:b8:86:2a:4d:58:96:b4:49:59:8c:58:e5:
ed:d0:dc:86:ae:a1:26:f7:dc:d4:bd:83:31:0f:cc:
b1:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:0C:B7:FA:29:42:CB:A3:33:A0:11:6A:66:56:4C:74:CA:56:F6:82
X509v3 Authority Key Identifier:
keyid:9F:2F:37:4C:9A:73:8F:AD:E8:F8:50:CA:AB:5D:79:D3:B9:00:45:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:6b:fc:67:c9:e2:96:07:81:2f:25:55:a6:ee:a8:33:4a:f8:
4e:8a:9b:7d:44:b6:39:e0:84:6d:da:7f:65:31:a3:fc:9f:0f:
a5:7c:fd:f7:db:b1:13:48:01:f8:fc:3c:1d:ad:f4:eb:03:1e:
a8:02:be:4e:35:05:f8:8a:d1:50:96:10:e6:43:48:9f:3a:c7:
3f:8e:d4:df:2a:51:cd:c9:88:c3:90:25:a8:5e:e8:cd:be:da:
cd:eb:23:ab:e9:d7:7a:94:34:c4:98:31:67:34:f3:79:41:72:
eb:a2:5b:73:75:c6:e1:ba:e4:78:f6:a4:f8:9a:8f:ce:35:80:
37:b3:e5:13:73:6f:c8:5a:11:23:a3:a4:20:55:b9:c3:69:9b:
c9:a8:3a:20:12:5d:92:81:c5:c2:91:69:73:15:b6:6d:c7:09:
5d:c2:a0:c6:0c:5c:51:83:6d:af:b1:b1:91:38:00:86:51:bb:
88:07:ea:55:7c:6f:d6:b3:a6:42:08:93:bb:a0:be:21:88:49:
2a:b0:60:41:df:45:9e:2c:55:3f:98:6b:33:3d:07:3b:3c:d5:
e5:c4:ec:01:2e:4b:c7:1a:20:ae:ac:c7:31:7e:10:45:8f:a1:
59:7f:8b:9e:56:8a:d7:ec:fc:db:5a:b5:33:5f:c9:d2:f7:32:
21:fd:75:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:01 2025 by rpki-client