Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft
File: NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft (raw, json)
Hash identifier: TAwQr367hgfspAl5UDgYRF45v9i/zLpQrx7sU5JKapo=
Subject key identifier: 1D:25:D8:62:DD:DA:61:11:41:11:F4:19:5C:97:5E:D3:13:3E:78:6B
Authority key identifier: 37:25:8E:BE:E6:74:5F:06:D7:33:E4:B6:DD:0D:27:A7:3B:FD:FB:65
Certificate issuer: /CN=37258ebee6745f06d733e4b6dd0d27a73bfdfb65
Certificate serial: 0198D65F2BEB54689D1E951AA2B02B734BBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NyWOvuZ0XwbXM-S23Q0npzv9-2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft
Manifest number: 136A
Signing time: Sat 23 Aug 2025 10:00:17 +0000
Manifest this update: Sat 23 Aug 2025 10:00:17 +0000
Manifest next update: Sun 24 Aug 2025 10:00:17 +0000
Files and hashes: 1: NyWOvuZ0XwbXM-S23Q0npzv9-2U.crl (hash: vhV2HnSGncNDwDNxngqV1QAYEr2XjAObfiNcn31e8cc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/NyWOvuZ0XwbXM-S23Q0npzv9-2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:2b:eb:54:68:9d:1e:95:1a:a2:b0:2b:73:4b:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37258ebee6745f06d733e4b6dd0d27a73bfdfb65
Validity
Not Before: Aug 23 10:00:17 2025 GMT
Not After : Aug 24 10:00:17 2025 GMT
Subject: CN=1d25d862ddda61114111f4195c975ed3133e786b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9f:64:65:87:fe:de:02:5c:42:79:1c:6d:ac:
e5:fd:25:0e:8c:99:e1:47:23:6b:98:24:62:df:d0:
0b:6f:97:f0:dc:11:7d:82:4c:e3:28:e4:b5:62:f9:
53:f6:13:11:0a:33:62:76:51:c9:20:a1:31:54:74:
72:db:55:5d:d4:a1:8d:12:de:6a:c0:ac:ea:1b:cb:
00:60:27:7d:0e:3b:fa:e7:d9:a8:da:50:f3:02:e2:
12:7c:4f:14:82:cd:26:1e:b2:de:8f:9f:5a:c4:cf:
06:81:18:33:63:91:d4:ed:15:d7:95:52:c9:6a:e4:
24:a4:44:10:2b:97:82:58:ac:1c:04:46:5f:fa:b2:
1c:3e:a8:1d:ca:40:92:bc:a7:09:2a:5f:b1:d2:7d:
3a:0d:3b:7c:27:bc:30:eb:08:ca:45:0a:4d:18:4e:
5d:81:1c:6c:4a:b5:d8:48:64:16:53:fd:cc:ba:fa:
63:28:32:86:e2:75:c4:85:62:5a:b8:9f:fc:a6:e9:
2f:8e:fb:c3:96:39:37:13:94:77:18:07:1d:b6:20:
38:2c:24:9b:96:af:59:c0:d3:9b:63:62:dd:f7:8f:
44:b7:29:38:e6:f3:fc:25:d6:de:47:94:eb:4a:6c:
c8:bc:bc:b4:7d:7e:23:83:ef:37:42:85:59:85:63:
71:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:25:D8:62:DD:DA:61:11:41:11:F4:19:5C:97:5E:D3:13:3E:78:6B
X509v3 Authority Key Identifier:
keyid:37:25:8E:BE:E6:74:5F:06:D7:33:E4:B6:DD:0D:27:A7:3B:FD:FB:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NyWOvuZ0XwbXM-S23Q0npzv9-2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:64:7b:82:80:aa:1c:f6:77:d1:3a:4a:58:d7:21:ed:db:b5:
60:de:a3:52:ba:be:0f:4a:66:2f:f9:a9:a9:1c:33:9e:21:3a:
bd:48:9f:34:5d:4c:fb:de:fc:f8:00:e4:f3:7e:3b:6a:e6:4c:
54:e0:90:f7:79:59:5c:3c:94:fb:88:95:15:de:f7:55:c3:ef:
8e:f0:36:47:69:1e:2c:07:c3:63:a7:bc:70:fe:19:fd:49:f7:
b0:ca:e5:3f:95:32:f7:fb:94:7c:db:8c:55:8b:e7:5d:36:fe:
f5:9b:39:39:86:08:82:ab:51:a4:84:c3:e5:fb:45:52:bb:f9:
59:c1:3b:1c:9d:be:40:3f:d5:11:f7:ed:ae:3b:6f:09:bf:e0:
0b:b9:23:5e:5f:7b:5e:cc:34:d7:b9:f7:fd:7d:59:50:16:55:
05:7a:3f:83:c9:28:7d:11:16:b6:0c:dd:59:76:eb:66:c7:e8:
b1:a4:65:c6:c9:ce:71:8f:dd:9c:e0:31:8d:b3:55:c7:c2:da:
4d:53:41:26:5a:52:58:59:63:b9:7a:64:d3:32:98:ec:ef:ce:
c5:d0:5a:c5:3c:5f:d3:82:2d:3c:6c:ab:ae:3d:eb:c5:94:8c:
9e:4a:26:92:cf:d1:16:ef:a4:47:35:83:0e:43:84:54:17:04:
3d:ac:8f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:26:24 2025 by rpki-client