Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft
File: ny8WbQXql29prtWORqQfflBSRHU.mft (raw, json)
Hash identifier: WCIrF9P8lWBAGVlSGexcx/HdHB/lLpGC+6j8kC1yZaY=
Subject key identifier: C4:B9:1C:B1:D5:D2:D8:2A:3A:99:6A:30:FE:E9:3D:47:1C:68:A2:26
Authority key identifier: 9F:2F:16:6D:05:EA:97:6F:69:AE:D5:8E:46:A4:1F:7E:50:52:44:75
Certificate issuer: /CN=9f2f166d05ea976f69aed58e46a41f7e50524475
Certificate serial: 0199FCC69071A352C6275D61E37AC0F4E1FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ny8WbQXql29prtWORqQfflBSRHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft
Manifest number: 1459
Signing time: Sun 19 Oct 2025 14:01:35 +0000
Manifest this update: Sun 19 Oct 2025 14:01:35 +0000
Manifest next update: Mon 20 Oct 2025 14:01:35 +0000
Files and hashes: 1: ny8WbQXql29prtWORqQfflBSRHU.crl (hash: vXUrW+jSAGkAofJMwsr+rJwCwmGikAMdS5uIJVEaPqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ny8WbQXql29prtWORqQfflBSRHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 14:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:90:71:a3:52:c6:27:5d:61:e3:7a:c0:f4:e1:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f2f166d05ea976f69aed58e46a41f7e50524475
Validity
Not Before: Oct 19 14:01:35 2025 GMT
Not After : Oct 20 14:01:35 2025 GMT
Subject: CN=c4b91cb1d5d2d82a3a996a30fee93d471c68a226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:16:8f:5d:e9:cf:84:7f:ad:e1:08:4b:46:c9:
a5:47:d5:4c:53:6f:2e:02:33:10:e3:0e:1f:4d:15:
d0:81:66:55:6f:71:79:2d:82:30:ad:1f:45:5d:d0:
87:8f:37:ab:b1:e4:28:94:ad:d8:6f:b0:78:69:ef:
2a:a6:81:24:67:3b:6a:ba:23:55:c1:77:11:93:d5:
fb:64:fa:c7:76:39:e2:31:11:ed:93:f5:cf:18:ff:
e6:ac:96:a9:7a:ed:6b:e5:99:26:28:99:3d:52:45:
0b:07:03:b8:b8:a8:2a:c0:78:12:2b:97:7c:b4:58:
de:cb:e4:9b:c3:cc:5e:6c:04:25:c2:6d:18:db:7f:
ee:41:a2:33:f0:39:8d:b2:b0:6b:1c:cc:af:bc:69:
10:18:dc:c6:56:ce:d1:48:41:65:6f:05:e5:f2:61:
12:a1:65:76:a0:4f:f2:68:7b:5b:c8:51:ce:c7:df:
cd:66:4b:ad:f7:45:70:76:73:da:16:e8:31:1b:f2:
a5:93:cb:70:a2:d8:64:5c:24:9d:23:42:56:03:7d:
18:5c:b3:83:7b:1e:c8:ad:df:b1:20:ee:6a:e8:55:
f2:5a:6c:2b:a4:95:98:d9:9d:46:28:58:df:f4:0f:
ef:bc:2f:f2:45:c2:3c:5a:44:3e:aa:51:97:67:e1:
c4:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:B9:1C:B1:D5:D2:D8:2A:3A:99:6A:30:FE:E9:3D:47:1C:68:A2:26
X509v3 Authority Key Identifier:
keyid:9F:2F:16:6D:05:EA:97:6F:69:AE:D5:8E:46:A4:1F:7E:50:52:44:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ny8WbQXql29prtWORqQfflBSRHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:4b:fa:34:ba:64:5a:b1:bd:71:3f:d1:09:68:49:22:36:d0:
81:17:aa:2d:49:1e:69:1a:a2:aa:d5:4a:13:00:3c:02:71:5e:
bb:9f:6c:f2:66:90:25:2e:a1:e1:fc:8a:24:b4:d5:57:f2:16:
4b:7e:52:1f:ad:8f:c5:92:e0:83:a6:95:72:d7:38:91:e2:8a:
c7:2a:6c:be:40:a2:4b:c4:33:e0:6d:a2:a7:a0:dd:b9:7c:b6:
32:13:9f:c0:1b:ba:e3:7b:1e:59:63:77:2c:c0:cb:a7:8e:c2:
d6:a1:cd:c4:9f:17:95:55:c9:1e:4e:39:4a:c1:81:8b:f6:a8:
b8:70:11:80:b2:4c:f4:1c:cf:08:4a:78:dc:b3:53:04:2a:aa:
a7:5d:ab:fe:1c:06:0d:b5:bd:12:b4:0f:4d:d2:b0:0d:a0:05:
10:b2:40:55:e2:63:de:dc:86:50:cb:15:f9:e5:7b:c5:1d:11:
65:ce:cb:71:2c:08:55:80:37:e5:98:ce:d3:58:b9:32:aa:50:
b7:15:15:23:2e:34:a2:b3:d6:d5:e5:9c:b2:aa:d0:86:05:1f:
b0:3c:44:30:15:b6:04:9d:fd:ae:a7:53:b3:1d:b6:39:f8:77:
dd:a8:43:3f:24:56:cf:b1:f2:90:41:c9:74:b7:04:0d:ec:fd:
82:f3:55:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:27:57 2025 by rpki-client