Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
File: nDKfMzH1ND8pDrSkHxbENjooLJA.mft (raw, json)
Hash identifier: iSsNshYWDMbA0lJhQI4DSsYEZ6Vw4KKkBKVPjazI2OM=
Subject key identifier: 87:EC:99:9B:02:92:31:80:39:25:A1:72:58:2F:72:0A:DE:C0:A7:93
Authority key identifier: 9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
Certificate issuer: /CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Certificate serial: 0199221F3C78ACAB2D475A82D292AA1A1A2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 03:01:36 +0000
Manifest this update: Sun 07 Sep 2025 03:01:36 +0000
Manifest next update: Mon 08 Sep 2025 03:01:36 +0000
Files and hashes: 1: nDKfMzH1ND8pDrSkHxbENjooLJA.crl (hash: T99Lbr7jTQ9xzPHiPWu97XPADcX6nDTOjCtfxSJ8Cks=)
2: xXqtZaQE8p1BJ-LrGDHK3ctGl88.roa (hash: 19HlQM5dbXIMn5dc2AbBJAmDmCjDbQENEnPoWF/ZUJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:3c:78:ac:ab:2d:47:5a:82:d2:92:aa:1a:1a:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Validity
Not Before: Sep 7 03:01:36 2025 GMT
Not After : Sep 8 03:01:36 2025 GMT
Subject: CN=87ec999b029231803925a172582f720adec0a793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e8:48:f2:62:05:dd:5f:b2:6c:07:42:4a:bf:
b0:62:24:42:37:e0:52:f8:88:0f:f8:d2:a2:9a:50:
8f:bd:6f:37:af:b0:f2:0c:36:44:cf:d4:4f:24:03:
17:4a:38:07:bf:89:64:c9:1e:b0:41:6c:e9:cb:ba:
66:9e:49:ed:20:c0:dc:cf:ab:41:71:88:ae:c6:17:
d8:cc:55:5e:8b:56:84:2c:f9:96:5e:39:d7:0b:ce:
6d:b5:69:e1:fc:a6:79:9d:45:b6:78:86:1b:53:5f:
b7:c8:c7:18:f3:65:cb:bb:18:a4:66:f3:cf:f5:1a:
76:6d:44:94:cd:bd:38:e6:62:91:aa:00:85:a7:93:
36:e7:74:b4:23:eb:03:3f:3c:0e:4c:ae:88:d9:2c:
d5:5f:48:99:8a:2e:4f:74:d4:cb:ba:8d:83:9a:23:
51:a9:ae:46:23:e8:4c:cc:e5:02:a6:8b:86:43:59:
8c:72:e7:7c:66:b6:15:8c:a1:a2:d2:c0:06:b1:1b:
12:b3:02:be:30:a1:5b:c7:02:f3:74:c4:3c:d0:50:
16:0b:0f:84:de:0f:87:72:c6:d2:e0:53:50:d8:e5:
7a:c9:8e:4a:8e:b6:5e:bb:84:34:51:6c:1f:04:72:
a2:1c:5b:d8:b7:37:77:c3:8d:b8:50:11:1d:3e:de:
f3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:EC:99:9B:02:92:31:80:39:25:A1:72:58:2F:72:0A:DE:C0:A7:93
X509v3 Authority Key Identifier:
keyid:9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:23:ca:03:7f:9f:e5:39:0f:65:ff:80:e2:62:4e:d8:b8:a3:
41:49:1a:bc:b8:08:38:06:64:dc:d7:e2:1d:08:36:08:e7:79:
b7:85:15:b5:02:a7:d6:2f:d8:22:34:bc:aa:20:bd:a8:29:1d:
36:ff:b1:3d:e9:63:f7:4b:56:8b:6b:97:21:56:ba:33:66:67:
09:57:0f:3f:ac:17:cc:67:73:99:99:dc:3a:bc:2d:2c:67:77:
80:4d:e4:db:42:d3:f2:28:be:56:f1:44:fd:14:39:d0:12:fb:
93:56:92:68:ce:81:54:95:c8:0c:6c:d4:8c:56:16:cd:a8:11:
c5:76:8a:c0:2c:03:ed:51:a0:72:ac:31:97:26:5d:49:f3:ec:
81:e6:6f:54:d1:68:30:95:96:8a:94:31:34:4a:8e:56:60:33:
d0:9c:71:25:9a:8c:65:10:5c:85:35:56:9b:90:d8:8a:7e:6c:
89:4f:c3:21:77:42:29:91:99:97:47:0a:41:e7:b4:c6:94:1e:
6f:91:ed:1d:de:28:29:c5:99:4f:d2:7b:26:2a:5f:f5:4c:0f:
05:b8:fe:b3:bc:54:ed:05:04:b5:ab:3a:b3:a4:54:71:0d:db:
c8:ee:ac:e8:31:56:af:e6:ed:8e:7a:3e:21:31:f8:92:07:ed:
a3:bf:34:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:07:30 2025 by rpki-client