Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
File: noBwLuah3L864lehmUFfWbgzjqQ.mft (raw, json)
Hash identifier: rVWjwwkpZGNsIR8lS/iDJmjoZjbwiZDrk55ALXVMfY0=
Subject key identifier: 94:0F:3D:AD:0E:69:A9:23:E6:18:38:1D:3B:90:36:4F:E9:D8:82:77
Authority key identifier: 9E:80:70:2E:E6:A1:DC:BF:3A:E2:57:A1:99:41:5F:59:B8:33:8E:A4
Certificate issuer: /CN=9e80702ee6a1dcbf3ae257a199415f59b8338ea4
Certificate serial: 019A72CA4B81B564934183A4B4448209BD5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 12:00:51 +0000
Manifest this update: Tue 11 Nov 2025 12:00:51 +0000
Manifest next update: Wed 12 Nov 2025 12:00:51 +0000
Files and hashes: 1: 4r39zvWrkYP2asO0kOUkjIaBE5M.roa (hash: v58EqYlL6LzlpEJ1F9DVvqr5mbMv8/9nhYAa/WADapg=)
2: noBwLuah3L864lehmUFfWbgzjqQ.crl (hash: LjjJsdn8t91VrC+b73OM7gRB65I9bsE0du2IFEDTw+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:ca:4b:81:b5:64:93:41:83:a4:b4:44:82:09:bd:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e80702ee6a1dcbf3ae257a199415f59b8338ea4
Validity
Not Before: Nov 11 12:00:51 2025 GMT
Not After : Nov 12 12:00:51 2025 GMT
Subject: CN=940f3dad0e69a923e618381d3b90364fe9d88277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7b:95:fd:7d:ab:c9:be:2c:cb:c5:c6:d5:57:
c1:b8:4c:a6:3c:29:41:20:30:8a:14:96:14:4a:e4:
d6:b5:44:62:f0:fe:bf:2a:7a:ec:6c:81:b3:00:c7:
96:d4:2b:cb:16:eb:83:1b:fe:78:b8:a2:b8:70:d3:
8d:f5:ab:79:da:6a:0a:02:10:ad:dd:2d:a0:94:6f:
b6:5e:0c:83:d8:f3:e4:48:56:36:9c:23:31:45:ae:
1c:f5:98:e8:b2:6d:51:9c:00:57:dd:4f:2a:11:d3:
c3:b5:f8:78:31:87:82:7b:ea:14:78:3a:5b:76:8b:
b8:10:37:f8:f7:92:be:47:32:01:43:3a:43:fb:58:
d8:3f:37:8e:ac:3b:2a:dd:bc:18:6f:8e:ad:ad:e7:
a5:8d:db:0f:25:79:6d:0c:16:d5:a3:9e:8e:10:6e:
ee:72:d1:34:51:89:fc:a6:64:f1:81:53:2d:db:54:
87:db:68:57:da:25:50:be:92:d2:95:15:3e:b5:3e:
55:44:5a:b7:66:fd:2d:dc:bc:3d:07:8d:00:35:e4:
96:a9:54:cb:61:8a:18:2c:fb:e4:20:1e:83:96:a5:
53:36:2d:ff:87:8b:f4:66:96:f6:49:4f:68:50:b2:
74:91:2f:3b:65:6d:3f:b8:25:76:35:c2:3a:b7:3f:
da:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:0F:3D:AD:0E:69:A9:23:E6:18:38:1D:3B:90:36:4F:E9:D8:82:77
X509v3 Authority Key Identifier:
keyid:9E:80:70:2E:E6:A1:DC:BF:3A:E2:57:A1:99:41:5F:59:B8:33:8E:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:ea:d3:97:03:e1:71:ce:5d:d4:b3:1e:92:e1:a4:65:7e:97:
9d:a4:54:19:66:9a:c9:84:82:c4:27:0b:ea:53:1c:c1:08:4e:
32:d9:04:5f:07:c5:12:d3:fa:dd:76:02:77:d9:bd:94:33:4d:
b5:3b:91:5c:62:fe:2f:3a:5f:72:29:93:14:de:33:be:d1:33:
f8:3d:ee:3d:a8:93:13:8c:d1:91:f9:84:81:27:50:c2:0e:bc:
d0:0a:12:4d:bf:ed:a0:fa:13:f0:ff:0a:94:71:21:72:ea:a4:
3e:b0:4c:3c:30:c4:71:b7:cb:c3:9f:9a:a5:cb:81:0f:12:3c:
18:5f:7f:1a:27:96:91:66:bd:de:59:cc:eb:57:e9:93:3f:26:
b2:49:dd:0d:71:64:0f:b8:98:7d:f2:b7:87:db:e1:55:66:14:
ef:67:1e:97:16:cd:a5:da:39:0a:75:62:c7:e1:e0:e8:fd:d7:
a7:bf:37:22:38:82:dc:63:8c:69:2f:0d:9f:70:99:ae:06:a0:
ae:d0:04:ed:53:e1:e1:23:78:c0:3c:be:6f:db:df:0c:82:f8:
12:35:16:cf:22:fe:38:b3:9e:1d:63:93:14:f4:66:33:9e:78:
1a:33:42:03:32:f5:5d:32:08:b9:45:19:a9:2b:94:d7:64:b1:
32:06:83:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:50:59 2025 by rpki-client