Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/b1388f-3aeb-40d6-b4b7-9e852f3301c0/1/ny4CE8HB23M97spK4mFsqv-lFXA.mft
File: ny4CE8HB23M97spK4mFsqv-lFXA.mft (raw, json)
Hash identifier: 3AcUVfiZVMXOJfVBT+AoHQUVJ3GyjAg3aqbPyIh/tak=
Subject key identifier: 13:5C:1C:27:EA:37:BC:1A:30:21:6C:D4:ED:4D:F0:84:79:E3:9F:22
Authority key identifier: 9F:2E:02:13:C1:C1:DB:73:3D:EE:CA:4A:E2:61:6C:AA:FF:A5:15:70
Certificate issuer: /CN=9f2e0213c1c1db733deeca4ae2616caaffa51570
Certificate serial: 019A72934A9EA55DE7A6B71E1920D9F4D639
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ny4CE8HB23M97spK4mFsqv-lFXA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/b1388f-3aeb-40d6-b4b7-9e852f3301c0/1/ny4CE8HB23M97spK4mFsqv-lFXA.mft
Manifest number: 13CD
Signing time: Tue 11 Nov 2025 11:00:46 +0000
Manifest this update: Tue 11 Nov 2025 11:00:46 +0000
Manifest next update: Wed 12 Nov 2025 11:00:46 +0000
Files and hashes: 1: ny4CE8HB23M97spK4mFsqv-lFXA.crl (hash: OZ2D2df5ticAxtkOlqg7MH0Aj1xvCFFluRWIyOI8wig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/b1388f-3aeb-40d6-b4b7-9e852f3301c0/1/ny4CE8HB23M97spK4mFsqv-lFXA.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/b1388f-3aeb-40d6-b4b7-9e852f3301c0/1/ny4CE8HB23M97spK4mFsqv-lFXA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ny4CE8HB23M97spK4mFsqv-lFXA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:4a:9e:a5:5d:e7:a6:b7:1e:19:20:d9:f4:d6:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f2e0213c1c1db733deeca4ae2616caaffa51570
Validity
Not Before: Nov 11 11:00:46 2025 GMT
Not After : Nov 12 11:00:46 2025 GMT
Subject: CN=135c1c27ea37bc1a30216cd4ed4df08479e39f22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:41:01:a5:b9:b9:c2:fa:ba:09:90:04:0e:6d:
88:a2:4b:a4:64:be:49:02:8d:57:f5:2d:eb:98:f6:
13:c9:3f:a7:14:f4:87:6c:7d:f7:5f:5d:9d:b8:f9:
89:d2:f5:ee:0d:91:bc:dc:f4:3d:86:b8:9a:49:7f:
39:5d:36:86:b0:50:ac:51:78:9e:aa:39:57:01:8b:
60:5a:55:b9:6c:4a:49:5d:ef:f5:cb:b7:72:29:0d:
6b:c2:3c:e4:66:f5:5c:ed:96:e2:8f:45:55:51:15:
e3:d5:78:96:72:bd:de:e6:6e:15:be:c1:d1:21:bb:
f1:19:58:68:19:12:e6:04:e7:2d:44:91:dc:7f:78:
62:fd:9b:4f:87:66:23:3f:3a:d9:79:5f:18:5b:5f:
90:5d:54:12:46:9b:bc:ac:37:26:a8:ee:54:cf:50:
69:d3:01:9e:8d:49:64:a1:e9:6e:00:5c:f6:1e:73:
71:21:23:5b:6e:c1:c8:c5:c5:b4:29:9c:4c:00:07:
e7:72:32:e0:5f:79:f7:08:2c:7d:b4:95:ba:42:f9:
e7:80:17:b0:35:ef:64:9c:eb:1b:6c:32:87:2c:8d:
b7:d1:d2:51:e6:79:d8:45:13:1e:16:d8:04:25:fb:
6f:14:96:d9:c1:d9:dd:74:88:37:92:ee:fc:fa:92:
ec:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:5C:1C:27:EA:37:BC:1A:30:21:6C:D4:ED:4D:F0:84:79:E3:9F:22
X509v3 Authority Key Identifier:
keyid:9F:2E:02:13:C1:C1:DB:73:3D:EE:CA:4A:E2:61:6C:AA:FF:A5:15:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ny4CE8HB23M97spK4mFsqv-lFXA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/b1388f-3aeb-40d6-b4b7-9e852f3301c0/1/ny4CE8HB23M97spK4mFsqv-lFXA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/b1388f-3aeb-40d6-b4b7-9e852f3301c0/1/ny4CE8HB23M97spK4mFsqv-lFXA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:4a:ec:46:cc:91:f7:ec:11:31:04:9c:b5:0e:07:66:d1:21:
3a:c4:0f:21:cc:90:48:62:67:93:1e:81:5d:c9:73:8c:bb:96:
52:10:af:73:5d:58:07:89:95:77:47:f5:0e:5e:f1:7d:6f:2c:
be:ae:60:20:31:61:e7:a1:bc:85:46:c1:e8:22:3a:7a:02:cc:
d9:d0:cd:ab:8f:8b:e6:f2:7c:63:f4:83:04:60:46:81:3b:0d:
94:d4:1c:f2:84:51:b7:09:6a:e6:e1:64:22:a7:76:aa:c9:13:
8d:6a:a0:6e:26:f7:91:42:f6:1b:77:7a:84:ab:e2:79:ce:e4:
80:41:f4:28:d1:fb:92:74:14:21:ab:50:36:be:8c:54:2a:52:
1b:f3:7a:4b:90:52:11:ab:b5:7d:bb:25:2c:15:e0:6d:14:cd:
a3:f8:ad:ea:c1:11:27:23:43:4c:bd:70:11:80:00:7f:8c:b8:
86:11:2f:4b:d8:89:07:6f:77:c4:df:c8:28:e0:b4:47:7c:1e:
d3:33:e5:58:a9:09:69:0a:ad:96:b8:0b:4f:11:06:93:24:d1:
48:a9:39:bb:68:ec:27:90:51:44:db:15:c6:ff:fc:cd:77:23:
dc:7b:86:78:2b:c8:a3:b4:85:04:0f:28:53:67:31:dc:72:8d:
66:7f:46:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:22:24 2025 by rpki-client