Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft
File: NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft (raw, json)
Hash identifier: OCH3njMZfoxmazhJnoHw/J6gjZk8quoJme1WJfE08wY=
Subject key identifier: 90:5E:7B:4C:0C:29:C3:61:D1:F2:F4:0E:F4:41:18:D2:B3:2A:D1:47
Authority key identifier: 37:25:8E:BE:E6:74:5F:06:D7:33:E4:B6:DD:0D:27:A7:3B:FD:FB:65
Certificate issuer: /CN=37258ebee6745f06d733e4b6dd0d27a73bfdfb65
Certificate serial: 0199FFC87F96D0ACD0F17DD07316F8660CF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NyWOvuZ0XwbXM-S23Q0npzv9-2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft
Manifest number: 1404
Signing time: Mon 20 Oct 2025 04:02:33 +0000
Manifest this update: Mon 20 Oct 2025 04:02:33 +0000
Manifest next update: Tue 21 Oct 2025 04:02:33 +0000
Files and hashes: 1: NyWOvuZ0XwbXM-S23Q0npzv9-2U.crl (hash: H60bZWEl7LiGHunQBSunMSufTT3PKLDgDwdz64ZBITU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/NyWOvuZ0XwbXM-S23Q0npzv9-2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 04:02:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c8:7f:96:d0:ac:d0:f1:7d:d0:73:16:f8:66:0c:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37258ebee6745f06d733e4b6dd0d27a73bfdfb65
Validity
Not Before: Oct 20 04:02:33 2025 GMT
Not After : Oct 21 04:02:33 2025 GMT
Subject: CN=905e7b4c0c29c361d1f2f40ef44118d2b32ad147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7a:44:3e:ac:df:32:38:ff:ad:1a:01:d6:52:
41:db:b8:36:2f:d4:c8:c6:9a:16:f7:24:42:e7:3b:
8e:08:3b:44:6b:6a:d2:93:77:34:e9:68:95:fd:e1:
0a:74:2d:95:71:28:bc:f8:af:f9:05:24:de:1d:a1:
16:65:48:ac:ba:1e:8b:5a:53:21:b7:a3:de:7e:b0:
5d:1c:ef:15:08:d7:ea:b3:09:2a:a1:44:15:be:83:
d0:8f:40:b7:e0:95:3d:15:0d:2c:ca:63:e1:e0:78:
24:8f:9f:41:e4:03:f4:c9:46:10:8d:70:1d:4d:06:
b4:b2:34:8d:df:30:a0:68:56:5d:63:33:06:9f:78:
f0:e6:58:31:99:09:1f:3a:c7:f4:38:3f:04:bc:c5:
57:0d:14:9f:1c:b1:cb:6e:0a:6c:f4:7c:fd:ae:69:
f1:27:63:d5:5e:50:f1:9c:d4:9c:c3:fb:08:d4:3b:
f6:29:6a:95:22:6e:74:c9:45:e9:d0:65:55:ed:5d:
bf:91:36:ab:30:aa:d0:9e:96:08:8a:d2:5d:02:3b:
f3:a5:e5:f5:d9:66:be:cf:16:78:62:67:21:6a:d9:
6d:eb:72:72:6c:e2:c3:d6:1c:dd:9a:eb:5e:96:ee:
2f:5b:69:c1:66:97:15:14:50:fa:fc:72:b1:c2:6f:
d1:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:5E:7B:4C:0C:29:C3:61:D1:F2:F4:0E:F4:41:18:D2:B3:2A:D1:47
X509v3 Authority Key Identifier:
keyid:37:25:8E:BE:E6:74:5F:06:D7:33:E4:B6:DD:0D:27:A7:3B:FD:FB:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NyWOvuZ0XwbXM-S23Q0npzv9-2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:6d:b0:02:02:c6:14:e0:97:28:5f:cd:69:cb:13:d5:3f:50:
0c:90:66:a4:5b:41:d2:fd:df:da:88:4d:50:2b:35:5a:1b:44:
25:98:14:ab:ad:7e:55:7b:f3:25:ef:ce:77:e4:0b:2b:20:62:
55:da:e9:85:e0:8b:aa:7b:7e:d3:29:e2:c1:31:4a:99:f9:af:
1c:57:4a:69:d0:44:f4:51:9c:cf:70:b8:0b:ef:25:3c:ec:ea:
94:9b:c1:e6:14:51:f3:37:d4:e9:3c:92:d1:da:e0:a7:45:94:
92:e5:af:f3:4e:c4:66:c8:f5:96:88:5a:af:74:25:40:b8:19:
0b:f5:a0:80:e9:17:03:95:8f:2f:fa:e7:ba:b0:3c:ba:68:e7:
54:bc:5e:6e:33:3c:51:9d:c8:c0:90:37:2e:a1:98:37:ba:f9:
4e:8d:c4:55:f3:08:9e:9d:ad:b0:cd:fa:06:5c:52:78:77:a4:
da:8e:9a:df:30:4f:83:11:d7:70:34:95:97:4e:bf:23:86:a8:
0d:56:1a:a5:fb:0f:4d:af:34:78:be:ee:07:09:46:8d:f1:3e:
b9:91:44:42:59:63:91:a6:25:c0:be:f0:54:ea:19:56:46:bf:
8e:ff:b8:95:e5:ad:c4:fb:75:8e:0a:45:85:cc:bf:83:d1:ff:
e4:fa:3b:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn/yH+W0KzQ8X3Qcxb4ZgzwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3MjU4ZWJlZTY3NDVmMDZkNzMzZTRiNmRkMGQyN2E3M2Jm
ZGZiNjUwHhcNMjUxMDIwMDQwMjMzWhcNMjUxMDIxMDQwMjMzWjAzMTEwLwYDVQQD
Eyg5MDVlN2I0YzBjMjljMzYxZDFmMmY0MGVmNDQxMThkMmIzMmFkMTQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz3pEPqzfMjj/rRoB1lJB27g2L9TI
xpoW9yRC5zuOCDtEa2rSk3c06WiV/eEKdC2VcSi8+K/5BSTeHaEWZUisuh6LWlMh
t6PefrBdHO8VCNfqswkqoUQVvoPQj0C34JU9FQ0symPh4Hgkj59B5AP0yUYQjXAd
TQa0sjSN3zCgaFZdYzMGn3jw5lgxmQkfOsf0OD8EvMVXDRSfHLHLbgps9Hz9rmnx
J2PVXlDxnNScw/sI1Dv2KWqVIm50yUXp0GVV7V2/kTarMKrQnpYIitJdAjvzpeX1
2Wa+zxZ4Ymchatlt63JybOLD1hzdmutelu4vW2nBZpcVFFD6/HKxwm/R3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJBee0wMKcNh0fL0DvRBGNKzKtFHMB8GA1UdIwQY
MBaAFDcljr7mdF8G1zPktt0NJ6c7/ftlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnlXT3Z1WjBYd2JYTS1TMjNRMG5wenY5LTJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My85YjRkOWUtYzI1ZS00ZDhhLWFhNjMt
MmI4ZmFiYzRlMDVjLzEvTnlXT3Z1WjBYd2JYTS1TMjNRMG5wenY5LTJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My85YjRkOWUtYzI1ZS00ZDhhLWFhNjMtMmI4ZmFiYzRlMDVj
LzEvTnlXT3Z1WjBYd2JYTS1TMjNRMG5wenY5LTJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZW2wAgLG
FOCXKF/NacsT1T9QDJBmpFtB0v3f2ohNUCs1WhtEJZgUq61+VXvzJe/Od+QLKyBi
VdrpheCLqnt+0yniwTFKmfmvHFdKadBE9FGcz3C4C+8lPOzqlJvB5hRR8zfU6TyS
0drgp0WUkuWv807EZsj1lohar3QlQLgZC/WggOkXA5WPL/rnurA8umjnVLxebjM8
UZ3IwJA3LqGYN7r5To3EVfMInp2tsM36BlxSeHek2o6a3zBPgxHXcDSVl06/I4ao
DVYapfsPTa80eL7uBwlGjfE+uZFEQlljkaYlwL7wVOoZVka/jv+4leWtxPt1jgpF
hcy/g9H/5Po7KA==
-----END CERTIFICATE-----
Generated at Mon Oct 20 14:41:35 2025 by rpki-client