Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
File: NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft (raw, json)
Hash identifier: 1syfmIiv0o0/Np5CaCGq4MszLvRM/Y/HgxKmdsnGIgw=
Subject key identifier: D9:8F:A3:F8:65:C3:5B:87:27:FA:F2:A7:DF:00:B5:73:E2:A8:A8:59
Authority key identifier: 34:B0:C5:A4:03:E2:DA:D3:C4:7B:79:1F:DA:20:42:CF:71:50:09:CF
Certificate issuer: /CN=34b0c5a403e2dad3c47b791fda2042cf715009cf
Certificate serial: 019A725CE62BFB71DC2CC91CC845C246F7DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
Manifest number: 07E2
Signing time: Tue 11 Nov 2025 10:01:22 +0000
Manifest this update: Tue 11 Nov 2025 10:01:22 +0000
Manifest next update: Wed 12 Nov 2025 10:01:22 +0000
Files and hashes: 1: NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl (hash: PM+cpl0A3vm/+E6Q2h0Tb9njEkfp2t4tZaFb9pgoOJM=)
2: rNTIvqbNKxxJtGWChfe4Dqw9tgw.roa (hash: CJ6pfwFz9zw3PaH1WC3tO5GAbQu9B8MKzIYwz13JpcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:e6:2b:fb:71:dc:2c:c9:1c:c8:45:c2:46:f7:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34b0c5a403e2dad3c47b791fda2042cf715009cf
Validity
Not Before: Nov 11 10:01:22 2025 GMT
Not After : Nov 12 10:01:22 2025 GMT
Subject: CN=d98fa3f865c35b8727faf2a7df00b573e2a8a859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:96:7e:a5:85:07:08:d4:97:2b:cd:b7:94:e5:
e8:cc:f4:10:ac:3d:04:09:a3:29:77:a4:9c:a4:d1:
5d:9a:3c:64:e4:55:c2:cc:b6:52:bc:63:d1:cd:23:
7e:c6:0c:25:c6:d0:8f:7e:a6:52:08:8f:7f:ac:cd:
10:be:86:15:14:6b:8e:70:51:1f:80:40:7c:54:41:
72:5a:a1:42:d9:43:1a:8d:6a:ac:64:82:c5:d3:ef:
63:93:fc:2c:a8:e8:37:ac:4f:aa:71:4a:96:ea:d8:
6b:2d:f7:6d:cd:4e:3f:e3:03:39:70:86:28:be:b9:
95:d9:1c:fe:0e:53:48:1f:cf:be:64:d2:ab:32:21:
5c:f5:2b:b6:e6:82:e7:c1:a0:91:af:14:8e:c2:36:
82:d3:f2:c9:ca:09:c4:34:78:41:7d:71:08:00:87:
e4:22:ca:78:08:0e:9e:b3:c6:a1:cb:2f:fc:95:61:
a8:48:5f:a6:cf:ed:c5:4e:00:27:7f:c1:92:5a:f3:
54:f0:0b:4a:65:9a:ac:91:55:25:22:c5:87:ff:b7:
24:af:90:52:3b:66:da:5c:e0:54:61:91:37:29:85:
a5:bf:1a:20:89:29:b2:76:9e:cd:f1:6a:1e:9b:4e:
fa:d8:02:3f:b9:1e:b3:88:0a:8b:c9:32:28:0d:e5:
50:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:8F:A3:F8:65:C3:5B:87:27:FA:F2:A7:DF:00:B5:73:E2:A8:A8:59
X509v3 Authority Key Identifier:
keyid:34:B0:C5:A4:03:E2:DA:D3:C4:7B:79:1F:DA:20:42:CF:71:50:09:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:f7:d6:3b:a4:fc:b8:1b:70:44:aa:ff:26:fd:47:62:f4:ef:
c7:78:a6:77:41:cd:8e:38:2a:cc:85:9a:a4:ef:70:2e:c0:24:
45:ba:cb:02:26:8e:3d:d4:4a:18:9b:95:b6:93:2b:cc:69:29:
30:e8:30:c3:39:11:14:02:3e:db:33:29:28:5d:f6:5b:25:82:
3b:51:a6:e7:e2:77:ed:a6:b9:43:8e:88:a6:a0:9f:01:11:f7:
1b:e0:0a:4f:51:fd:6e:a7:bc:a8:e4:0b:7b:0e:8c:f6:c1:2c:
d4:b4:5e:ac:c4:4f:9d:79:00:f1:e2:81:59:b4:15:bf:87:ab:
0a:95:04:00:d9:3b:78:ef:1c:ce:fc:8a:06:a4:83:d3:cf:8b:
dd:5e:37:ae:51:38:7a:b0:52:f2:ce:15:51:de:27:d3:63:88:
d0:b0:05:a9:43:7b:95:6e:65:c8:6f:3a:a9:cc:41:88:28:6c:
33:82:a6:98:cf:12:55:a0:7a:ad:e9:42:46:cc:c4:c5:b0:2f:
00:1e:7a:8b:7b:6b:09:cf:7f:dc:24:d3:88:b5:59:07:b7:bf:
fb:b9:c6:1c:3b:77:29:12:17:0e:5f:91:ce:b2:27:2d:bc:2d:
3e:b0:ae:05:f8:0a:85:aa:ee:0b:67:52:d4:76:e1:cc:37:55:
01:69:28:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 18:36:08 2025 by rpki-client