Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
File: nfToC0ytTlC3iO3xaXZxLe7_bA0.mft (raw, json)
Hash identifier: dsyPuJVVw4kesLdNe77TjrQt1iND8Z510JxXSOO6zNM=
Subject key identifier: 97:D0:46:45:8F:66:AE:E3:58:21:6D:49:4D:35:1A:DC:74:7D:0D:91
Authority key identifier: 9D:F4:E8:0B:4C:AD:4E:50:B7:88:ED:F1:69:76:71:2D:EE:FF:6C:0D
Certificate issuer: /CN=9df4e80b4cad4e50b788edf16976712deeff6c0d
Certificate serial: 0199221E561A848AE3A3E532FC07CAB44449
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
Manifest number: 0F45
Signing time: Sun 07 Sep 2025 03:00:37 +0000
Manifest this update: Sun 07 Sep 2025 03:00:37 +0000
Manifest next update: Mon 08 Sep 2025 03:00:37 +0000
Files and hashes: 1: mTtxU7O_lRz_UT2tjl3cUWas7pA.roa (hash: lHDy75xFNayt8SROCAEJF8vDi//tAi35Yjt2Fy8OX04=)
2: nfToC0ytTlC3iO3xaXZxLe7_bA0.crl (hash: sPTrKufa1v24Shh6TI91XSzLQxwzGruSbhYHaZLbyo4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:56:1a:84:8a:e3:a3:e5:32:fc:07:ca:b4:44:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9df4e80b4cad4e50b788edf16976712deeff6c0d
Validity
Not Before: Sep 7 03:00:37 2025 GMT
Not After : Sep 8 03:00:37 2025 GMT
Subject: CN=97d046458f66aee358216d494d351adc747d0d91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:89:81:06:4c:9f:df:3e:49:31:74:21:f0:58:
ff:58:3e:21:85:8d:8f:be:84:e1:1c:08:87:80:fb:
51:80:a3:db:4d:cb:84:91:a2:1f:81:28:6a:6e:02:
3c:57:73:91:84:69:12:b5:2a:7a:24:80:c8:9c:5d:
06:0b:5a:04:9c:74:7e:cf:d3:27:04:02:48:67:5d:
c6:0d:54:b6:c8:7e:98:bb:b7:af:04:ab:61:39:d2:
83:7b:57:8f:92:4f:79:15:c2:1d:0f:10:2c:36:97:
f0:ab:c9:0c:8c:ab:c0:86:a7:79:64:cc:ee:b5:06:
1f:17:d5:1b:5c:5c:93:8f:ff:7d:75:8d:30:9b:16:
18:3c:03:aa:fe:87:87:69:16:1d:92:80:7c:b3:d8:
ce:64:66:b8:7a:f5:10:c8:9c:a4:81:3f:17:84:ed:
9b:2f:f0:ab:e3:91:65:37:16:36:9e:73:aa:a3:9a:
eb:a2:2f:67:8c:85:a9:b0:0e:d3:ea:cd:b5:5b:b8:
8c:5e:2b:e7:7c:e0:b3:8d:ba:1d:6b:9b:ca:be:5b:
83:1d:d6:91:87:6b:6f:60:47:05:c6:97:11:f8:5c:
55:d0:a3:72:78:ce:dd:cc:b5:b3:93:37:9f:0f:9b:
22:05:bb:5c:e4:f7:31:e4:0b:a0:b7:84:85:87:4a:
41:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:D0:46:45:8F:66:AE:E3:58:21:6D:49:4D:35:1A:DC:74:7D:0D:91
X509v3 Authority Key Identifier:
keyid:9D:F4:E8:0B:4C:AD:4E:50:B7:88:ED:F1:69:76:71:2D:EE:FF:6C:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:1d:51:29:14:4b:e3:42:0d:2b:c8:f3:52:d9:b7:56:68:fd:
20:4f:79:e0:2e:8a:ea:be:36:17:64:84:f2:29:69:fe:d3:c2:
50:cb:d8:03:95:36:d7:eb:7b:5e:c1:3b:2e:bb:4d:46:ee:62:
81:93:59:cc:1f:6e:6f:f5:6e:0e:9c:e0:89:bf:87:2d:05:73:
11:ec:48:fa:d8:24:bc:59:bc:bb:d9:89:54:4f:c8:52:c5:87:
6c:e5:81:3f:4c:b0:c7:eb:67:3c:42:ff:88:1b:1e:87:76:d5:
c1:83:29:3b:20:4a:05:61:00:df:c9:6a:fb:00:70:23:ad:bb:
1e:02:00:6c:a7:5e:3a:12:ca:21:a4:8b:ed:cd:46:84:85:b7:
bf:e1:36:80:80:4d:8b:36:5e:05:cf:b6:66:aa:65:f2:18:86:
50:7a:ba:5d:13:a6:9d:5f:e0:1d:25:d1:e8:db:c9:a7:e6:fa:
4a:b1:05:46:2d:5f:b8:2f:c5:d7:db:8f:5a:1b:61:f6:5e:ad:
ac:96:d8:12:1f:02:47:06:f5:f0:73:7f:63:17:5d:3b:ad:52:
0f:38:42:97:5a:09:cd:d8:69:2f:24:4b:22:33:fa:6c:77:bc:
4e:c0:81:0f:12:42:f9:c9:1b:ff:18:b4:60:d0:9d:99:e9:5d:
d6:24:58:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:22:13 2025 by rpki-client