Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
File: NHkVOIV45h2IaEmiHXC6B1FJwaE.mft (raw, json)
Hash identifier: RBpSiI8ZbmsgzNTftZ9yn9L8O+tbq6nBKX+loEa2jdw=
Subject key identifier: 38:B9:F2:55:94:97:CF:DB:45:85:C8:DE:24:D9:60:21:C9:5D:6D:32
Authority key identifier: 34:79:15:38:85:78:E6:1D:88:68:49:A2:1D:70:BA:07:51:49:C1:A1
Certificate issuer: /CN=347915388578e61d886849a21d70ba075149c1a1
Certificate serial: 0199FBEA72A100FD477F9F3D3D51745D556C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHkVOIV45h2IaEmiHXC6B1FJwaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
Manifest number: 0C6E
Signing time: Sun 19 Oct 2025 10:01:09 +0000
Manifest this update: Sun 19 Oct 2025 10:01:09 +0000
Manifest next update: Mon 20 Oct 2025 10:01:09 +0000
Files and hashes: 1: NHkVOIV45h2IaEmiHXC6B1FJwaE.crl (hash: Zb/nI28fC4L8lUayYn63QRr6CaAF5MM8Ys+EIOlEDeM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/NHkVOIV45h2IaEmiHXC6B1FJwaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:72:a1:00:fd:47:7f:9f:3d:3d:51:74:5d:55:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347915388578e61d886849a21d70ba075149c1a1
Validity
Not Before: Oct 19 10:01:09 2025 GMT
Not After : Oct 20 10:01:09 2025 GMT
Subject: CN=38b9f2559497cfdb4585c8de24d96021c95d6d32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:79:e4:5e:9f:10:04:d4:ed:54:30:dc:a2:95:
94:e4:a7:0e:ad:4e:da:71:9a:5f:7f:08:f8:a8:af:
31:b7:66:d7:5b:35:0a:d1:96:01:79:36:f5:c1:7a:
67:3f:66:e6:37:74:72:61:ff:e6:ab:3a:ce:61:4d:
79:87:d2:f8:b3:ce:cf:1f:a7:6a:c1:17:02:a3:27:
71:63:c9:03:e4:1a:f9:f9:0d:62:54:97:b1:2f:0f:
5c:e4:ac:a2:1d:59:0f:53:b4:85:83:1a:9b:a6:81:
56:7f:09:b5:c5:3b:9e:45:ae:ac:17:18:1d:d1:1c:
a8:97:4f:cc:93:a2:b4:98:b2:97:5d:b5:c3:80:5e:
37:f8:dd:9f:58:1c:85:fc:3a:06:0e:7f:6b:a7:38:
2f:22:6c:77:0b:53:33:ff:ba:f6:c1:55:31:91:11:
0c:44:10:bb:bb:f9:67:f6:99:5e:4b:7e:82:6c:af:
15:11:e5:55:45:f2:3b:79:3d:25:cc:41:77:7b:8e:
e6:40:81:4e:a9:31:5b:aa:fb:71:25:73:5b:af:08:
40:39:3c:86:28:6e:95:5f:62:82:54:ef:d5:5c:7e:
52:79:b9:63:8d:cf:06:8f:28:3f:ab:41:09:d0:72:
6d:0d:52:83:71:a0:6d:23:a1:03:09:cf:80:24:08:
5e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:B9:F2:55:94:97:CF:DB:45:85:C8:DE:24:D9:60:21:C9:5D:6D:32
X509v3 Authority Key Identifier:
keyid:34:79:15:38:85:78:E6:1D:88:68:49:A2:1D:70:BA:07:51:49:C1:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHkVOIV45h2IaEmiHXC6B1FJwaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:e3:39:d5:9d:68:c3:5d:21:aa:2b:df:e0:f2:d8:85:79:55:
32:2f:94:b3:35:45:0f:a2:e1:90:b2:4f:38:1c:97:2d:f7:19:
18:b0:ae:65:49:1e:04:f5:ae:62:69:d6:a6:b0:f1:11:0c:e7:
b5:2a:59:0a:15:9e:40:1f:23:6d:aa:0f:0a:09:72:01:57:60:
ca:28:b1:41:23:a5:5e:5a:f3:60:e9:6e:0c:ee:0b:4d:e3:6b:
d6:96:d2:33:52:2f:e5:b9:70:f9:06:fa:4a:e1:49:81:03:0e:
e4:22:09:22:f4:e4:16:81:ef:d5:67:f1:57:fb:4e:be:52:c2:
fb:f9:f7:ce:76:7d:bf:0b:9a:44:d5:cb:5f:d6:c3:3a:b8:c6:
5f:d6:37:99:cf:e4:b3:3f:22:57:0f:0a:7a:54:db:10:b2:f2:
2f:9c:f0:97:ad:c4:e9:89:65:28:3a:b6:26:cd:bd:14:c3:f7:
ee:47:ba:2e:5a:f4:f0:8c:30:46:39:f3:da:5a:c4:ad:3c:8e:
33:3a:62:e2:56:d4:b7:7e:02:15:f1:92:95:77:46:23:f0:8d:
83:4f:1e:90:bb:b7:d0:e6:ce:ae:f4:52:11:5b:1a:15:a4:8d:
1d:f9:60:a8:54:27:95:25:77:97:0d:b8:b9:a0:53:e3:3e:2d:
50:af:60:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:29:55 2025 by rpki-client