Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
File: NZ8eO4BVHpihb8K7y33YfJoO_iU.mft (raw, json)
Hash identifier: 8hyrDx9DMoqjLaZvtFLB9GxPuppy1CdfB7wVVLfLmeI=
Subject key identifier: 48:56:C9:89:F0:35:DC:61:33:94:AA:F1:0A:E0:31:79:84:3F:BD:11
Authority key identifier: 35:9F:1E:3B:80:55:1E:98:A1:6F:C2:BB:CB:7D:D8:7C:9A:0E:FE:25
Certificate issuer: /CN=359f1e3b80551e98a16fc2bbcb7dd87c9a0efe25
Certificate serial: 0199FC58FEA41F91367537138C918139FE25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8eO4BVHpihb8K7y33YfJoO_iU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
Manifest number: 0E0E
Signing time: Sun 19 Oct 2025 12:01:54 +0000
Manifest this update: Sun 19 Oct 2025 12:01:54 +0000
Manifest next update: Mon 20 Oct 2025 12:01:54 +0000
Files and hashes: 1: NZ8eO4BVHpihb8K7y33YfJoO_iU.crl (hash: rCFKg9OAGNknRRxKJIfhfjDsXC3gGmVhB7GBWTCjMq8=)
2: WQDK9xlCqpMVg3-ZBWFZfqNRgDU.roa (hash: 5EEZG5yrAU7W8n0dqk+GpepBnaLmDeUxI+tSTrknSrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZ8eO4BVHpihb8K7y33YfJoO_iU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:fe:a4:1f:91:36:75:37:13:8c:91:81:39:fe:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f1e3b80551e98a16fc2bbcb7dd87c9a0efe25
Validity
Not Before: Oct 19 12:01:54 2025 GMT
Not After : Oct 20 12:01:54 2025 GMT
Subject: CN=4856c989f035dc613394aaf10ae03179843fbd11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:5d:1f:dd:1a:09:59:c6:0f:7e:78:db:be:c8:
dd:cb:37:59:f0:1d:3b:09:6d:22:99:61:10:25:f3:
97:d3:74:a6:7c:5c:eb:8e:80:70:71:29:ba:0c:2d:
ce:e0:82:b7:6d:e3:b8:1a:0b:f1:2e:71:ef:29:f8:
22:c7:22:bf:77:06:aa:33:6a:dd:2a:40:3a:63:c1:
e9:f5:e7:7a:a5:73:97:7f:38:63:28:67:ca:a6:d4:
db:2e:1d:38:61:ad:3c:d4:20:8b:01:87:c3:73:a4:
1a:a4:be:71:6a:71:a7:85:66:b1:ef:fa:7d:f1:4b:
ef:d7:3c:67:b9:28:d3:d5:2b:1a:fa:ae:a2:46:ca:
d4:d0:29:eb:86:f4:80:6a:db:a1:95:0b:b8:7a:61:
5b:2b:cb:f0:93:e1:ba:ae:84:e8:b7:60:b4:ef:98:
5b:53:43:99:a8:a7:42:fb:18:8a:75:54:1b:48:f5:
e3:5a:8b:23:4f:70:e1:ce:46:87:1a:8e:64:f3:c4:
1a:b8:11:a3:54:df:e9:06:f2:8c:5a:02:39:98:6a:
e1:16:13:b3:64:94:5d:d3:06:46:f6:8d:df:ca:c9:
65:fd:25:e7:a6:5b:85:06:83:cc:fa:77:91:1a:11:
3c:2b:eb:69:b9:61:d9:a6:8a:e2:21:51:fe:20:e0:
48:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:56:C9:89:F0:35:DC:61:33:94:AA:F1:0A:E0:31:79:84:3F:BD:11
X509v3 Authority Key Identifier:
keyid:35:9F:1E:3B:80:55:1E:98:A1:6F:C2:BB:CB:7D:D8:7C:9A:0E:FE:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8eO4BVHpihb8K7y33YfJoO_iU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:d8:8f:34:17:7a:fa:4b:b9:74:68:36:f7:c6:1c:84:34:6e:
bf:69:8f:52:0b:3e:c6:24:1a:85:e9:4a:55:a8:f5:f0:eb:df:
d3:dd:45:54:31:10:38:13:6b:0b:15:39:54:df:e6:04:6f:9a:
4e:0a:5d:14:a9:88:36:17:b7:67:80:a3:0a:bc:da:ed:16:88:
c5:ce:e3:2c:f1:06:30:91:05:89:5e:00:00:ee:ca:53:4d:5f:
27:83:bb:0d:5f:33:8c:32:ad:d9:57:9b:3a:7f:6a:95:c9:b3:
27:fb:11:22:25:54:07:ec:9b:17:5e:dc:ea:e6:1a:81:72:8d:
f2:4a:f5:16:1e:58:1e:15:f4:ed:ff:7b:90:03:21:71:2d:74:
43:96:13:77:b5:9f:03:81:aa:cc:70:0e:1a:96:0c:c3:0c:8b:
f2:eb:f1:f4:5b:4d:09:d2:fd:25:c4:47:81:fa:62:26:b8:6c:
5b:97:a5:9f:63:72:0d:9e:d3:68:c0:c5:22:43:7c:2f:02:33:
36:91:f6:50:2f:43:c1:01:73:b1:4c:d2:1a:f6:84:e5:2b:89:
14:8b:d4:99:a6:da:b4:26:08:df:44:11:bf:08:0b:4c:2c:2d:
47:44:ca:53:5c:26:0c:6f:37:bc:62:6b:89:0f:64:af:bc:37:
9d:07:29:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:06:14 2025 by rpki-client