Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
File: nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft (raw, json)
Hash identifier: jLPMcuUsQdSNMqjzSrCn/XdcSHfkOKJ4G4TdFZRSiUg=
Subject key identifier: 04:30:96:C9:48:00:B8:19:76:8A:1B:9E:04:FA:31:97:21:9A:CF:71
Authority key identifier: 9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC
Certificate issuer: /CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec
Certificate serial: 01992367C71E4B290B0F80258E7D58535C12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
Manifest number: 166F
Signing time: Sun 07 Sep 2025 09:00:27 +0000
Manifest this update: Sun 07 Sep 2025 09:00:27 +0000
Manifest next update: Mon 08 Sep 2025 09:00:27 +0000
Files and hashes: 1: YH77N0FEznpizquL2OaCl5vYAjI.roa (hash: YndCp+4019jEGglb/4lGICFoI/oofyeIHhlA4OhtUTc=)
2: nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl (hash: 75x1K0613DWvCdIlxn1G0SoDibRS4p4fqlB2HP6hUYk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:67:c7:1e:4b:29:0b:0f:80:25:8e:7d:58:53:5c:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec
Validity
Not Before: Sep 7 09:00:27 2025 GMT
Not After : Sep 8 09:00:27 2025 GMT
Subject: CN=043096c94800b819768a1b9e04fa3197219acf71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:fc:e6:5f:6e:7c:ce:08:7c:0f:bc:82:1a:0c:
65:23:7e:2b:01:99:6c:ea:b9:11:aa:61:3f:2f:fe:
4f:e6:3a:c2:28:40:aa:49:c4:91:72:4f:0d:cd:06:
0b:ad:bf:d2:2c:05:b6:c3:bf:0c:47:b6:54:ea:1a:
16:9d:1a:0f:50:d4:fa:df:38:50:63:31:a5:e7:79:
1e:66:34:22:f6:c9:c1:31:b1:34:b2:2a:e0:09:4f:
c1:40:5f:99:b3:ca:52:22:b8:63:35:9d:1f:eb:5e:
67:90:a0:dc:38:75:85:77:17:1b:da:6a:dc:0c:3f:
a6:2c:7f:9f:70:b1:1f:bb:b6:0c:0f:f4:14:78:ec:
a0:ff:8a:ab:30:43:de:22:42:ea:bd:d7:eb:b8:a4:
be:f8:e8:66:78:e9:06:9c:f4:6d:25:b6:c8:f7:0e:
3a:a0:9f:64:2a:45:97:36:e9:e9:4c:a0:7c:7e:3f:
80:49:3a:55:c5:f3:ea:ce:8d:fd:59:8a:64:f9:40:
b9:35:26:46:3b:3c:75:5e:54:da:4a:78:00:80:95:
52:b4:94:75:da:a7:a5:3a:a7:81:82:2a:c9:40:64:
19:d0:3b:79:83:f0:eb:b8:91:a9:52:1e:d5:a2:44:
2d:60:e8:23:f6:90:17:ea:fb:2b:d5:bb:77:e7:d1:
87:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:30:96:C9:48:00:B8:19:76:8A:1B:9E:04:FA:31:97:21:9A:CF:71
X509v3 Authority Key Identifier:
keyid:9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:fc:b9:ac:72:c5:85:45:09:32:d7:f7:8c:30:60:f6:09:b7:
42:f7:f2:14:be:a1:db:67:a8:8a:33:f9:97:40:fa:d0:3d:2b:
b3:38:3e:8b:3b:88:18:4a:86:fd:56:96:f7:cd:58:fa:f1:78:
a5:c1:76:49:bf:ff:c6:f1:25:0f:59:de:7c:2b:be:90:29:e1:
bf:13:ae:b7:ae:ba:cd:6c:3e:8a:70:54:6d:b3:12:e8:ab:a1:
75:4d:8d:db:ef:a3:7e:7c:e3:81:a5:15:81:ef:0f:c3:38:fa:
a7:87:55:27:e9:ff:20:de:eb:8a:88:f0:7b:09:7b:2d:a1:8c:
f2:3c:f6:97:8b:ec:db:cb:a4:3b:5c:e4:68:ce:f5:40:19:d3:
d6:e7:1c:4f:9d:dc:b2:2f:7f:39:67:31:5e:6c:95:1e:00:6e:
fa:44:3f:8b:38:3c:d9:91:9a:75:2e:e6:ec:5a:0f:83:d2:41:
57:d9:f9:9a:ad:d9:e5:31:d6:3e:c2:5d:c8:7c:2c:b2:2c:d5:
63:0a:8e:02:85:ba:09:ab:f8:9b:97:97:9e:00:70:df:a0:86:
ae:f3:84:72:93:48:3b:10:ff:ae:f9:4e:7d:8c:bb:79:6e:43:
33:7c:fe:f1:7a:e2:e8:56:67:82:11:72:ba:d4:c1:f1:a1:e4:
ae:5f:23:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:43:48 2025 by rpki-client