Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
File: ndrXzlnL6NGaA0EfocbJug1CAqI.mft (raw, json)
Hash identifier: pY2F8PWOLqgOC53eqfQKkS7Xa2UJWnInZnLGVAiefYI=
Subject key identifier: 7D:98:1C:B5:7D:C4:BB:F9:EF:40:97:95:64:88:80:51:A6:1C:BE:5F
Authority key identifier: 9D:DA:D7:CE:59:CB:E8:D1:9A:03:41:1F:A1:C6:C9:BA:0D:42:02:A2
Certificate issuer: /CN=9ddad7ce59cbe8d19a03411fa1c6c9ba0d4202a2
Certificate serial: 0199FDD990411C8A1079D1A460935AE0D172
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
Manifest number: 0A53
Signing time: Sun 19 Oct 2025 19:01:57 +0000
Manifest this update: Sun 19 Oct 2025 19:01:57 +0000
Manifest next update: Mon 20 Oct 2025 19:01:57 +0000
Files and hashes: 1: ndrXzlnL6NGaA0EfocbJug1CAqI.crl (hash: 4uU9KCVqUNp1T2ipXub0KOeH6jUQJmN+PO/kjU88zmw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:90:41:1c:8a:10:79:d1:a4:60:93:5a:e0:d1:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ddad7ce59cbe8d19a03411fa1c6c9ba0d4202a2
Validity
Not Before: Oct 19 19:01:57 2025 GMT
Not After : Oct 20 19:01:57 2025 GMT
Subject: CN=7d981cb57dc4bbf9ef40979564888051a61cbe5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:9e:4d:cc:2d:0b:cc:78:af:30:64:27:9e:76:
27:57:c7:89:83:60:43:46:8b:2f:a8:ea:76:cf:2d:
97:7d:ab:c2:69:34:f9:da:f2:f4:70:79:5e:57:71:
67:cc:6a:b4:e7:de:c3:a8:41:17:53:ad:60:73:42:
65:d7:58:cf:4d:3f:a0:7b:59:a7:95:ed:cf:26:2c:
96:41:32:a7:fd:49:50:7b:a9:d6:3c:7d:1a:e9:ae:
ad:3e:44:96:3e:11:76:d3:b4:d6:c6:8d:72:c9:6a:
1d:75:b0:44:37:33:fd:0b:92:5c:8a:91:63:2c:6f:
fe:be:c6:06:ad:59:03:c5:a1:d8:74:57:2b:85:8e:
c9:15:51:59:4a:59:a9:5c:34:58:b4:e8:1e:63:e7:
f1:08:71:38:fc:06:13:bf:df:02:86:5f:21:4b:d9:
69:26:c2:c0:a6:ba:19:5a:55:ce:20:7c:83:ca:2a:
95:5a:e9:99:98:4b:7f:7d:93:8f:92:9d:c0:a1:39:
5e:fa:e2:64:4a:ae:90:f9:d5:ab:b2:8d:26:3b:58:
b2:d7:85:c6:11:a1:da:cf:83:fa:bf:49:79:28:7d:
83:ad:b5:62:9a:0b:fe:b4:5f:8c:27:18:39:37:54:
3c:24:06:c7:21:52:38:3a:87:b0:c6:54:e6:8e:8f:
93:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:98:1C:B5:7D:C4:BB:F9:EF:40:97:95:64:88:80:51:A6:1C:BE:5F
X509v3 Authority Key Identifier:
keyid:9D:DA:D7:CE:59:CB:E8:D1:9A:03:41:1F:A1:C6:C9:BA:0D:42:02:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:b2:0c:dd:21:b8:da:9f:31:b9:91:b6:b7:f8:fe:25:97:0d:
71:f0:b4:b0:f6:e1:1f:d6:6c:2e:04:f3:96:53:78:23:45:d9:
0e:a3:0d:20:e7:ac:9a:81:db:e3:93:e0:7e:f7:12:ab:d7:22:
e9:d9:42:13:f3:ce:ba:ce:f8:44:d2:ce:be:6c:95:12:8a:f3:
b9:00:15:ac:5d:6b:7c:74:6d:59:86:fa:9c:bd:f3:3e:ca:2f:
6d:c8:d3:7b:8a:6a:56:41:b2:ad:e0:35:26:5e:e7:21:5e:16:
04:b2:56:fc:da:ca:70:c0:ee:55:a6:3e:b1:ca:cc:1d:e5:6a:
fd:8d:62:65:cd:15:a1:23:40:86:2d:aa:58:67:f0:87:70:c1:
94:30:b9:47:90:6a:eb:6b:0f:5f:e7:19:68:8d:ef:29:16:dc:
56:3c:0b:f2:91:94:27:9d:c5:ce:93:5d:cf:7e:20:ed:88:c0:
83:26:f1:a8:2d:7b:1f:41:52:77:88:e2:3a:f3:b3:73:d6:69:
05:c3:0d:7c:bf:52:d0:5d:d2:9f:24:c4:2a:90:1e:df:2e:e5:
5a:7a:cc:f4:02:04:1b:31:ae:f2:f2:52:eb:16:6b:d5:7f:1f:
34:57:1e:23:a3:ba:05:ba:09:3e:63:89:36:ea:b4:a7:24:a0:
72:26:e3:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:59:51 2025 by rpki-client