Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft
File: NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft (raw, json)
Hash identifier: 5az4GairWVkMSvWEMUDsnLvNPrMtviRRjLqSZ3rnjX0=
Subject key identifier: 5B:37:69:F8:FB:E7:B8:02:C5:2F:FA:6D:82:B7:2A:83:48:8A:6B:57
Authority key identifier: 35:14:FF:67:F3:B8:D4:F6:F6:BD:A2:3E:CB:BC:7B:0F:09:FE:60:80
Certificate issuer: /CN=3514ff67f3b8d4f6f6bda23ecbbc7b0f09fe6080
Certificate serial: 0199FBEB79C45FC3F6D79E987F6DABE78A83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft
Manifest number: 1047
Signing time: Sun 19 Oct 2025 10:02:17 +0000
Manifest this update: Sun 19 Oct 2025 10:02:17 +0000
Manifest next update: Mon 20 Oct 2025 10:02:17 +0000
Files and hashes: 1: NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.crl (hash: Pu6Tv3npP3/etbXSHnyia5H6wBi1LgLK47NFlkbU+Xo=)
2: j7uIJiPhcZxIrIipfuK1rqo935Y.roa (hash: 7J2YXXzcaOGsarNoeRvp5q8jGItI0Hy8Dxn5tPP/JpQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft
rsync://rpki.ripe.net/repository/DEFAULT/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:79:c4:5f:c3:f6:d7:9e:98:7f:6d:ab:e7:8a:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3514ff67f3b8d4f6f6bda23ecbbc7b0f09fe6080
Validity
Not Before: Oct 19 10:02:17 2025 GMT
Not After : Oct 20 10:02:17 2025 GMT
Subject: CN=5b3769f8fbe7b802c52ffa6d82b72a83488a6b57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d2:dc:2c:f8:f1:a6:11:ff:27:dc:13:4d:18:
0d:1e:0e:d9:15:18:fa:9b:42:64:7a:bd:bd:8b:ff:
28:ca:97:cf:62:74:eb:9c:87:07:e5:72:87:36:49:
24:77:65:5b:da:1e:5a:e4:b7:29:d7:48:1b:2c:db:
8e:79:2c:5b:c6:28:60:c4:ee:05:8d:a3:1f:bb:66:
7a:48:29:6a:c9:bf:e6:c9:2b:ef:b5:7b:52:a0:49:
5b:03:2b:27:94:75:0d:5f:3f:82:e1:21:be:0d:e9:
4f:00:85:cc:14:e3:f8:07:77:1f:1c:ac:aa:42:33:
05:6e:40:b4:bb:d7:50:27:0c:60:1c:e3:d3:ce:bf:
55:71:f4:36:7e:67:45:79:63:b2:4e:fc:f8:9d:17:
3a:9c:0b:fe:41:f8:ef:a6:2c:18:cb:24:a8:a2:74:
98:77:e7:2f:c0:a1:cf:ac:92:21:01:ed:9f:5f:0a:
d0:02:5d:15:a5:fc:da:4b:8c:3d:b0:11:d8:4d:89:
5e:bd:9e:a3:c8:a6:23:39:7b:99:81:99:07:ad:8b:
fe:15:e3:75:b1:77:ab:20:e7:11:a8:eb:44:b5:41:
f0:cf:f1:6e:76:23:f6:ca:65:0a:30:12:97:68:ba:
ea:6d:d1:7b:b5:34:fc:3e:05:04:88:e4:95:ed:8c:
c4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:37:69:F8:FB:E7:B8:02:C5:2F:FA:6D:82:B7:2A:83:48:8A:6B:57
X509v3 Authority Key Identifier:
keyid:35:14:FF:67:F3:B8:D4:F6:F6:BD:A2:3E:CB:BC:7B:0F:09:FE:60:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:75:a8:ad:46:a6:7f:9e:4d:d1:4a:ff:56:b4:2f:01:82:c2:
40:58:4c:d0:37:e5:ed:01:c7:e8:d4:54:22:87:31:8c:dc:3e:
f6:1f:4f:27:9e:a5:bf:3a:5f:a7:3e:c0:91:fa:ed:73:69:2b:
ea:c7:c8:54:58:9b:ce:fe:47:9a:3e:b9:a7:43:f1:7b:91:af:
ee:2e:61:b4:c2:8b:24:a5:b3:a5:55:c3:f1:af:02:13:b1:fc:
9b:87:f2:ec:30:a3:12:09:4c:1c:5f:be:17:e6:63:a7:3d:69:
1a:16:81:53:0b:4b:76:ec:29:39:89:8f:b8:34:d4:78:30:0b:
5d:83:30:be:b3:08:09:24:31:93:a5:86:1e:2d:0a:22:3e:44:
3a:3f:c8:4b:e8:db:6e:88:40:02:4e:a1:d8:db:7f:66:03:f0:
9c:e3:84:3d:bb:50:0a:3f:9e:0f:b7:4e:a0:7e:6a:a5:cc:66:
4f:e9:ce:59:70:31:43:78:dd:fd:fd:17:20:55:ea:b1:2e:5f:
c6:85:85:71:23:8f:15:69:08:34:f9:41:ec:e3:ba:cd:58:63:
76:8e:15:87:82:8d:49:1b:b1:bc:d3:2e:57:b4:01:54:7d:cb:
b5:fd:63:f1:a5:a7:86:3b:c0:2b:1e:e6:6e:be:65:16:ce:1a:
d5:ca:1d:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:28:53 2025 by rpki-client