Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft
File: NHBSPMWdTwUnV-cSKR4rt535KAA.mft (raw, json)
Hash identifier: KLqITw5KD1oQ21ZyNVW1XB26xsXaRIbr14LovJzp0uw=
Subject key identifier: 12:11:2C:57:53:AD:56:F7:55:28:E9:3A:91:35:11:50:D8:E7:11:2B
Authority key identifier: 34:70:52:3C:C5:9D:4F:05:27:57:E7:12:29:1E:2B:B7:9D:F9:28:00
Certificate issuer: /CN=3470523cc59d4f052757e712291e2bb79df92800
Certificate serial: 019A70A571CF8A9A3E377CF6B61833C6EF8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHBSPMWdTwUnV-cSKR4rt535KAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft
Manifest number: 022D
Signing time: Tue 11 Nov 2025 02:01:22 +0000
Manifest this update: Tue 11 Nov 2025 02:01:22 +0000
Manifest next update: Wed 12 Nov 2025 02:01:22 +0000
Files and hashes: 1: NHBSPMWdTwUnV-cSKR4rt535KAA.crl (hash: lEtt/GL1t2NfPIqQVycU9keELB0T1cYaTXoJ1UTt+oI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/NHBSPMWdTwUnV-cSKR4rt535KAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:71:cf:8a:9a:3e:37:7c:f6:b6:18:33:c6:ef:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3470523cc59d4f052757e712291e2bb79df92800
Validity
Not Before: Nov 11 02:01:22 2025 GMT
Not After : Nov 12 02:01:22 2025 GMT
Subject: CN=12112c5753ad56f75528e93a91351150d8e7112b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:84:2f:f2:fb:a7:cf:f9:b0:40:63:5b:94:90:
cf:6d:37:73:e8:dd:f1:1f:46:80:6b:ab:e4:13:d8:
dd:37:35:cb:13:73:a4:54:c2:9d:7c:5c:2f:8e:e7:
1f:36:c3:df:60:8d:a8:de:33:a0:80:eb:21:39:d8:
f4:5c:df:91:0f:53:c0:a0:de:cc:b8:6c:3a:ec:b3:
5b:0f:27:8f:d4:3d:03:4c:f2:f5:0e:10:62:9d:31:
33:af:bc:18:37:f1:f6:f5:e6:83:ef:14:bd:9e:19:
99:d1:45:fd:71:35:04:6d:58:d9:a1:72:f4:89:df:
30:2b:3d:e5:7c:71:37:47:05:c9:a5:15:e9:ce:c0:
b8:ef:d2:93:55:8b:3d:ff:81:da:cc:2d:1c:76:0c:
0e:2c:17:5e:e3:f8:0f:b8:35:3e:97:82:83:ae:df:
e3:2f:bd:09:3e:d1:30:e9:f6:43:3a:da:c3:db:6a:
9b:8c:80:4d:d7:44:5d:79:ed:c1:e7:1b:f7:02:32:
23:5b:29:4c:60:28:2e:96:b0:d2:fc:49:70:95:cd:
8a:d2:6d:42:45:a2:61:f4:b6:56:01:89:88:74:dc:
6a:b3:02:3d:f2:28:47:58:85:c6:68:e2:cd:ee:50:
75:f9:78:74:20:c1:65:63:8f:e2:d4:de:15:a3:09:
68:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:11:2C:57:53:AD:56:F7:55:28:E9:3A:91:35:11:50:D8:E7:11:2B
X509v3 Authority Key Identifier:
keyid:34:70:52:3C:C5:9D:4F:05:27:57:E7:12:29:1E:2B:B7:9D:F9:28:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHBSPMWdTwUnV-cSKR4rt535KAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:78:15:f5:f8:e0:a2:c7:6d:c5:03:aa:77:bc:a2:a0:3f:6f:
35:85:29:ae:44:bd:76:38:9b:02:e3:35:7b:d3:e3:99:24:a6:
d5:8c:69:5a:7c:fc:ec:0e:e0:42:95:ba:d7:af:2e:50:05:70:
19:8c:97:4a:1a:62:90:e2:dd:66:c4:1d:9b:6a:69:ab:5d:ad:
9f:d9:7d:f0:73:5d:35:f3:28:95:6d:a8:24:b8:01:3a:4c:d4:
01:64:00:8b:37:a4:04:b6:98:05:99:f9:7d:ec:69:30:87:74:
9d:3d:b9:46:45:e6:dd:27:16:ee:f4:b7:0d:99:53:ee:0d:15:
78:ed:db:40:61:08:16:ab:35:02:c8:9d:fe:23:a3:3b:7e:ec:
7f:62:95:d6:75:3e:32:97:4b:04:b9:84:df:3f:30:ef:e1:da:
d2:67:36:9a:bf:a4:d7:0e:5f:9b:88:5a:b9:7b:17:55:9a:39:
09:7f:eb:49:4f:55:a0:8a:b0:12:a2:a0:2f:d5:c4:d7:aa:41:
e5:d5:5c:66:65:65:25:21:47:e9:bf:c1:fe:8f:6d:7e:f8:b4:
12:57:d3:1f:ad:03:ec:a5:ad:f9:1b:cd:57:10:80:ed:3d:0c:
9b:13:32:6f:bd:58:51:c6:6d:f7:2c:bb:e4:13:73:19:6a:87:
f7:a3:6c:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:38:56 2025 by rpki-client