Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.mft
File: nQhzWjV9MfqK2jHinxlYam_9lZI.mft (raw, json)
Hash identifier: kNA9T9CkakZFmZMECwKie7XPKu0Z5jWaISkdmYb1XyE=
Subject key identifier: 71:57:F0:CD:AF:90:6F:15:A3:DC:00:2A:47:CA:10:F5:93:9E:5F:AE
Authority key identifier: 9D:08:73:5A:35:7D:31:FA:8A:DA:31:E2:9F:19:58:6A:6F:FD:95:92
Certificate issuer: /CN=9d08735a357d31fa8ada31e29f19586a6ffd9592
Certificate serial: 0199FDD8B0066E3705EB08A338182B44550E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQhzWjV9MfqK2jHinxlYam_9lZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.mft
Manifest number: 0632
Signing time: Sun 19 Oct 2025 19:01:00 +0000
Manifest this update: Sun 19 Oct 2025 19:01:00 +0000
Manifest next update: Mon 20 Oct 2025 19:01:00 +0000
Files and hashes: 1: nQhzWjV9MfqK2jHinxlYam_9lZI.crl (hash: NQ9Z2f4+or36uS22k/HfbSC6/yOQYlwTQZdCqoqHHao=)
2: zCy2TEUINZmipMaXJF_ZJiCXKXs.roa (hash: kFNybXZv7aLQUvfMaX6TQe+E+VLOfa/7bi5eq9XGzik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/nQhzWjV9MfqK2jHinxlYam_9lZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d8:b0:06:6e:37:05:eb:08:a3:38:18:2b:44:55:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d08735a357d31fa8ada31e29f19586a6ffd9592
Validity
Not Before: Oct 19 19:01:00 2025 GMT
Not After : Oct 20 19:01:00 2025 GMT
Subject: CN=7157f0cdaf906f15a3dc002a47ca10f5939e5fae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:bc:e9:08:d4:52:4a:2e:9a:91:3c:6c:fd:fa:
43:68:b9:6e:0e:0a:10:c4:b4:0b:5a:3a:97:f7:83:
82:75:2e:18:40:48:65:4e:e8:83:c8:b9:8e:bd:1d:
4b:e1:b1:22:18:13:97:cc:dc:4e:bc:e3:99:78:ed:
f6:04:c0:95:0e:d4:4c:8d:0b:e1:05:f5:31:a1:e9:
d0:b5:4b:94:62:52:83:b3:f5:b4:84:ca:3a:91:6f:
21:2d:c8:8c:15:8d:13:df:bd:2f:70:be:23:45:00:
a8:0f:47:e3:78:99:61:83:0d:c5:e5:fb:d2:18:44:
a8:36:83:03:54:62:5c:f2:4a:fb:ae:63:9d:51:4d:
4b:af:26:18:a1:ab:7d:f2:b5:33:b9:af:69:9d:3c:
15:ce:aa:83:54:ed:cd:0e:d9:c1:50:15:13:b1:a3:
d7:27:33:49:56:aa:99:19:58:75:58:2a:99:eb:c6:
05:a4:2b:d1:15:06:f9:7a:39:1f:77:c3:e3:39:4c:
59:4c:b0:ae:69:d5:a4:13:9d:1f:53:1c:c4:dd:6a:
c3:10:1a:17:7b:69:ce:55:4a:fa:e7:c7:dc:a5:eb:
71:52:e0:f3:27:e6:db:8f:c1:a3:bf:3d:c3:2a:b5:
86:f4:7c:ed:85:ce:5b:86:53:25:67:fb:eb:69:98:
d7:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:57:F0:CD:AF:90:6F:15:A3:DC:00:2A:47:CA:10:F5:93:9E:5F:AE
X509v3 Authority Key Identifier:
keyid:9D:08:73:5A:35:7D:31:FA:8A:DA:31:E2:9F:19:58:6A:6F:FD:95:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQhzWjV9MfqK2jHinxlYam_9lZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:61:a1:b3:fd:23:bd:d0:4a:5d:fb:2b:ca:36:81:e4:d0:5b:
e9:e0:9c:e7:65:11:6d:8d:e4:46:4c:65:b6:7e:4b:36:5f:05:
59:f2:51:8b:8d:02:e9:0b:ce:a0:bf:1b:4e:b9:38:31:1e:16:
48:74:e5:5e:5b:83:1f:df:4f:b2:46:be:71:a7:92:d6:92:af:
5e:f6:e0:6f:c7:3a:41:f1:24:b6:e4:e5:d5:66:86:8f:cb:61:
1d:07:f8:5d:83:a2:42:19:0d:42:af:00:94:fa:11:e2:f1:36:
30:18:6a:41:8f:9d:1f:a7:6d:28:c9:fa:6e:9f:9d:f3:7f:01:
10:58:3f:dc:e0:8f:55:61:7e:57:a4:37:34:04:d9:a5:ca:cc:
72:4e:60:88:41:89:76:93:d9:c9:13:d7:d8:5b:e3:77:25:49:
71:e7:3b:29:22:a0:b1:1c:1f:ff:3f:e0:9a:d7:47:c4:27:82:
08:ef:9b:fd:b5:28:73:d2:64:ea:35:5e:5e:78:97:96:f4:2a:
65:c7:01:43:3d:81:a5:e6:b6:2f:f5:75:5a:dd:a2:a5:8c:ca:
fe:8e:6b:c2:5d:2b:08:30:fe:d1:1b:55:f7:15:9e:0a:ab:05:
ca:21:dc:c8:5b:db:b8:f3:a7:02:f4:f5:f6:ab:c7:d0:d0:2a:
b9:3a:07:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 03:23:38 2025 by rpki-client