Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft
File: nLt3urQ4qT002dXAqOC57zKuXaA.mft (raw, json)
Hash identifier: 9NRGPFsar9ZFl/cZMqKG6i3+pkvJrZYSTkG0snZrLfs=
Subject key identifier: EF:5F:60:53:F4:F4:C4:C5:CC:D2:EF:25:AF:34:47:74:9B:8D:03:7F
Authority key identifier: 9C:BB:77:BA:B4:38:A9:3D:34:D9:D5:C0:A8:E0:B9:EF:32:AE:5D:A0
Certificate issuer: /CN=9cbb77bab438a93d34d9d5c0a8e0b9ef32ae5da0
Certificate serial: 019A71B8BE5B2B231653BE8C3CB376CFE462
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft
Manifest number: 08A5
Signing time: Tue 11 Nov 2025 07:02:04 +0000
Manifest this update: Tue 11 Nov 2025 07:02:04 +0000
Manifest next update: Wed 12 Nov 2025 07:02:04 +0000
Files and hashes: 1: TAsOnRZq8fiVm7IgWJUxtwQKXQw.roa (hash: uvW+4Cm/xTtLLngk0h3md/Re7mjqyVC2fS5xyiOuuj4=)
2: nLt3urQ4qT002dXAqOC57zKuXaA.crl (hash: Pj4B8st5zlKODs9VAKwfkGij8AWtsHDUE4qf6rVp0uA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:be:5b:2b:23:16:53:be:8c:3c:b3:76:cf:e4:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cbb77bab438a93d34d9d5c0a8e0b9ef32ae5da0
Validity
Not Before: Nov 11 07:02:04 2025 GMT
Not After : Nov 12 07:02:04 2025 GMT
Subject: CN=ef5f6053f4f4c4c5ccd2ef25af3447749b8d037f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:af:a2:89:e4:9f:82:fa:7d:d2:e0:50:0e:a8:
d6:b8:56:be:ff:83:67:09:e1:af:f6:3f:b8:a1:41:
3c:7c:d0:3f:00:00:b0:02:de:93:ee:23:be:c2:cd:
72:bf:96:23:d1:77:e0:8e:94:52:83:9a:3e:7e:90:
25:4b:7a:ed:1c:eb:73:91:0c:21:7d:56:19:66:4e:
8c:95:ef:b9:b2:a2:fa:e9:89:e8:ae:a8:ca:00:84:
17:91:0b:75:04:73:52:4c:c6:3b:4e:7d:0a:ac:c1:
53:e5:c9:65:14:88:0a:d1:fe:8c:da:94:7e:ae:e2:
af:cf:2d:d6:31:6f:26:f1:8a:d9:90:a9:d4:fa:f5:
37:72:17:d3:1a:58:92:56:84:25:56:fb:de:d4:cb:
64:37:94:a5:ea:b6:cc:72:89:53:75:c3:08:45:64:
98:ef:d9:4a:03:84:48:99:32:45:7c:ca:e0:d5:d1:
52:26:d4:02:51:4e:f5:95:5c:50:17:74:5e:2e:0e:
61:de:8c:8f:ed:9f:1c:28:9d:64:04:8f:fd:5c:9d:
aa:e9:d1:84:98:5c:49:e5:a9:fd:74:22:ca:f3:f6:
1e:de:38:36:e9:71:b1:d0:30:a9:13:f5:f9:e5:60:
b4:03:02:51:36:8b:88:fc:f5:71:6d:2e:30:6b:b3:
b8:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:5F:60:53:F4:F4:C4:C5:CC:D2:EF:25:AF:34:47:74:9B:8D:03:7F
X509v3 Authority Key Identifier:
keyid:9C:BB:77:BA:B4:38:A9:3D:34:D9:D5:C0:A8:E0:B9:EF:32:AE:5D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:bb:f9:a5:a9:21:d7:0a:51:22:cc:10:cc:ed:72:3c:7e:8a:
7b:10:1b:8f:d2:6c:16:d5:d0:87:7b:ed:51:03:2e:58:be:48:
16:72:f1:71:ee:f4:4c:59:5e:6f:0a:bf:ef:a2:2a:c9:29:8f:
42:07:7c:08:53:2b:b8:9d:99:fa:37:f0:5f:9f:5d:7f:4a:a0:
2c:20:90:4a:b9:ca:1b:61:90:51:76:ec:43:73:cf:e2:bf:2f:
cf:1f:47:f2:37:6b:9b:b5:87:99:67:a7:af:60:38:42:60:e1:
cc:65:5f:c8:a2:53:ea:98:8b:c0:92:c4:f0:8c:23:7b:0d:f7:
ec:7f:bb:9e:66:3a:50:b3:4b:f4:a1:62:ad:cf:8c:13:43:56:
9f:d3:9b:1d:04:4c:c1:7c:7c:c0:e1:9a:94:db:29:a7:e7:2a:
ce:92:ef:54:c4:8d:04:44:f7:79:eb:f2:af:ec:e2:2e:c4:75:
6b:8e:35:46:49:9b:7d:3a:8a:95:03:12:81:dd:21:0f:06:e1:
03:10:ca:1f:e7:25:17:52:91:50:80:ab:b6:8d:c3:5b:61:4c:
f2:6e:0b:48:d4:d9:ba:21:2e:75:4e:59:8a:62:a3:f4:15:a9:
5f:86:0a:b9:a2:a1:9d:0f:dc:b3:72:96:99:82:41:2c:7a:27:
8c:1e:0e:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:19:19 2025 by rpki-client