Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft
File: nvnDHh7MuhkCs_YiWT3pcspxi1w.mft (raw, json)
Hash identifier: dfU8zaSpFkm7zjd7D0jTE6aurFUPZZFLC7TcFv4oLSE=
Subject key identifier: 74:71:3F:DA:06:32:81:5B:17:DC:D7:7C:A1:08:7F:85:65:B5:B0:8E
Authority key identifier: 9E:F9:C3:1E:1E:CC:BA:19:02:B3:F6:22:59:3D:E9:72:CA:71:8B:5C
Certificate issuer: /CN=9ef9c31e1eccba1902b3f622593de972ca718b5c
Certificate serial: 0198D54E5F4E0772844E4AF8ACE063DF45C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nvnDHh7MuhkCs_YiWT3pcspxi1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft
Manifest number: 0DA1
Signing time: Sat 23 Aug 2025 05:02:19 +0000
Manifest this update: Sat 23 Aug 2025 05:02:19 +0000
Manifest next update: Sun 24 Aug 2025 05:02:19 +0000
Files and hashes: 1: nvnDHh7MuhkCs_YiWT3pcspxi1w.crl (hash: i6k2YzmR+dFJWv0DtNJQGy4Oj+Yc9W8MFwvEhyP1LIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/nvnDHh7MuhkCs_YiWT3pcspxi1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:5f:4e:07:72:84:4e:4a:f8:ac:e0:63:df:45:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ef9c31e1eccba1902b3f622593de972ca718b5c
Validity
Not Before: Aug 23 05:02:19 2025 GMT
Not After : Aug 24 05:02:19 2025 GMT
Subject: CN=74713fda0632815b17dcd77ca1087f8565b5b08e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c6:ac:2c:39:2b:2d:e8:5f:ae:7f:6d:b8:cd:
64:e9:1d:24:d5:85:98:c7:d6:01:ef:64:c7:70:d4:
9e:ae:ea:d6:0d:3c:95:1c:1d:f4:9a:69:3c:7c:ab:
f4:dc:8a:f7:94:4c:31:7e:1e:2a:6d:57:dd:89:cd:
6b:40:d5:88:6d:40:ff:66:93:96:50:7e:95:1c:5f:
dd:d8:7a:1c:1a:fc:74:40:37:63:e0:0b:55:c8:63:
54:61:8d:50:49:51:b3:a0:0e:e5:f9:44:c0:a8:1d:
b8:42:e6:3e:31:4a:53:0d:b6:0e:29:9e:73:bd:89:
f5:c2:7e:31:51:9e:6b:38:43:05:a5:ac:20:fb:93:
fe:71:7e:13:cc:bc:b3:7a:69:fb:26:0c:af:81:f8:
8b:d9:82:f5:cc:2f:e8:f9:cd:de:0f:72:64:fa:02:
83:e7:c9:31:ad:f1:2d:cb:76:7b:ac:47:58:82:04:
ce:b0:cc:9f:2d:d3:3f:2a:3f:de:7c:28:49:99:bd:
20:33:03:aa:53:84:da:41:02:44:9c:01:c9:a1:80:
6d:ef:7f:ed:2e:47:37:4a:13:4e:1e:1f:a3:ba:71:
47:57:47:ba:ec:28:04:a7:d2:49:8e:f8:a2:30:06:
24:1d:7e:52:46:0b:06:0e:7e:26:ed:70:bd:c0:ca:
28:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:71:3F:DA:06:32:81:5B:17:DC:D7:7C:A1:08:7F:85:65:B5:B0:8E
X509v3 Authority Key Identifier:
keyid:9E:F9:C3:1E:1E:CC:BA:19:02:B3:F6:22:59:3D:E9:72:CA:71:8B:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nvnDHh7MuhkCs_YiWT3pcspxi1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:8b:14:0c:12:38:18:a0:7b:98:2b:09:6e:37:9d:6a:ca:b1:
fb:26:44:fa:c2:00:79:21:93:a2:5a:28:11:4c:03:fa:fa:5c:
ea:fb:ee:94:a7:19:41:27:fe:8c:25:1e:c0:b5:50:ed:8c:b0:
c8:48:47:f6:f1:a1:b5:5a:fa:cf:3c:f5:48:27:6c:4c:e8:bc:
a9:7b:b3:d8:a1:60:08:b9:ae:6e:4f:b9:f0:35:0c:0a:e6:47:
78:a8:b9:ef:de:67:a9:de:11:ad:3b:3d:ef:25:7d:58:a8:bc:
31:fe:09:57:1d:0f:18:d6:87:bb:77:b5:23:2f:38:2a:6b:31:
83:84:63:f9:90:1f:7d:e3:b6:eb:b5:f1:22:b1:72:37:56:77:
4d:44:ad:20:28:e7:6f:0f:a6:c9:d7:c8:31:e2:e1:07:fb:ae:
d4:3e:f9:18:c8:3f:b4:4e:09:11:a1:14:8b:b6:6d:97:fc:a8:
73:cd:c3:0f:0d:85:ee:d1:b4:d8:77:fb:27:32:48:87:2f:f9:
f3:78:0b:a4:9e:9d:ca:2d:ed:c4:96:3f:33:fa:28:80:f7:eb:
ff:06:e9:55:30:df:1d:5a:51:69:b6:95:4f:74:86:2c:c8:c1:
bd:4a:bb:e2:01:8d:e9:8b:0e:25:80:89:79:e0:45:be:cd:79:
ad:bf:03:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:30:12 2025 by rpki-client