Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
File: ndrXzlnL6NGaA0EfocbJug1CAqI.mft (raw, json)
Hash identifier: uf0FX4kbhLBZZeyCAx3YEd59UkbPbDJFH77Tv6673Ac=
Subject key identifier: CC:89:BB:A8:04:39:58:36:4D:3A:29:D9:8A:2F:CE:98:4B:74:FF:48
Authority key identifier: 9D:DA:D7:CE:59:CB:E8:D1:9A:03:41:1F:A1:C6:C9:BA:0D:42:02:A2
Certificate issuer: /CN=9ddad7ce59cbe8d19a03411fa1c6c9ba0d4202a2
Certificate serial: 0198D4727C371A86EB4287654A5AEFE39651
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
Manifest number: 09B9
Signing time: Sat 23 Aug 2025 01:02:09 +0000
Manifest this update: Sat 23 Aug 2025 01:02:09 +0000
Manifest next update: Sun 24 Aug 2025 01:02:09 +0000
Files and hashes: 1: ndrXzlnL6NGaA0EfocbJug1CAqI.crl (hash: M3GCWiRsKdzP9ZVAtFV/XG2sXgSK4XPqnZwfdBATwjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:7c:37:1a:86:eb:42:87:65:4a:5a:ef:e3:96:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ddad7ce59cbe8d19a03411fa1c6c9ba0d4202a2
Validity
Not Before: Aug 23 01:02:09 2025 GMT
Not After : Aug 24 01:02:09 2025 GMT
Subject: CN=cc89bba8043958364d3a29d98a2fce984b74ff48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c0:71:9b:a7:d1:ba:c4:4c:aa:a7:77:13:65:
bd:b4:55:56:75:5d:f3:49:aa:f0:b5:42:90:a8:45:
df:3d:81:38:c9:ad:f1:ac:bb:42:94:ec:d5:77:77:
ca:16:b6:62:c7:2f:35:7c:29:01:60:bf:9e:25:ce:
89:eb:87:b4:91:a0:30:1f:28:c0:42:81:da:65:ef:
3c:c5:1c:1b:64:51:54:ab:f2:06:f4:48:46:14:79:
8f:15:f5:c5:64:59:17:32:31:3c:5f:a0:79:e4:d5:
fb:a6:7c:ab:62:ea:ae:32:5f:8e:59:dd:bd:a4:1f:
f7:cd:b8:41:1a:bd:45:2c:d3:af:5a:b7:6b:d5:24:
4b:98:2c:11:66:c9:19:09:7b:92:91:63:4b:b6:3f:
d8:ee:2c:32:58:20:a2:ee:9e:d6:b6:85:ce:cb:ef:
86:7b:5a:18:68:6f:4d:1e:ea:cf:2e:f3:2a:a2:8e:
d9:7e:3e:c8:7a:1e:2e:33:f6:52:39:c6:1c:13:9d:
1e:20:76:1e:1f:6c:7e:b4:45:7f:fc:1e:18:25:4c:
e9:66:76:c3:21:89:d6:e7:0a:f2:e1:97:6f:53:b1:
a2:f5:dc:a6:1a:41:dc:08:76:b8:83:fe:2e:34:f9:
82:a5:78:7f:11:ab:72:23:6c:c8:ca:02:31:2c:e8:
33:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:89:BB:A8:04:39:58:36:4D:3A:29:D9:8A:2F:CE:98:4B:74:FF:48
X509v3 Authority Key Identifier:
keyid:9D:DA:D7:CE:59:CB:E8:D1:9A:03:41:1F:A1:C6:C9:BA:0D:42:02:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:a0:f7:8a:81:17:95:ef:19:81:34:4f:6d:61:67:f2:95:c8:
00:83:07:f5:6a:f0:a9:4f:c2:2f:87:1c:6f:f2:41:e1:48:29:
bc:59:4b:ab:99:3e:03:56:cf:7c:78:7e:68:8a:c1:1a:64:77:
64:a0:8a:29:b1:6f:87:79:1e:65:31:52:7e:25:77:20:66:b2:
32:18:c9:84:99:7f:d7:22:2a:94:c3:ae:05:47:40:a6:06:92:
cc:12:41:13:3d:db:3a:36:5a:16:a6:21:51:08:6e:40:fa:cb:
f7:60:38:b6:e0:d2:65:09:56:6f:dc:27:09:7f:25:41:6d:9c:
c0:3a:6d:b2:ee:e7:4f:7b:e7:ef:11:8c:5b:a7:03:2f:01:e8:
42:a6:70:fd:8e:0a:95:85:e4:d2:90:0d:65:b4:af:bb:5c:5f:
ba:c8:a3:ff:70:45:74:05:b2:9f:22:7c:37:28:38:78:9f:1c:
35:e4:5a:cb:5d:1e:79:31:89:71:c1:a6:4e:5d:bd:d6:c9:0e:
13:0c:fb:9b:4f:a6:ab:db:df:e5:7a:4b:43:c4:d7:71:6f:fc:
d5:c3:fa:ed:ea:85:8e:4a:0c:8d:a1:e5:e8:e2:57:c3:f3:1a:
9d:75:25:ad:25:81:0b:61:ae:b5:b6:45:ef:69:ba:b5:77:bc:
c0:68:f2:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:39:03 2025 by rpki-client