Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.mft
File: nTW9eP7OI2XlsT9SOIfS2NakU_k.mft (raw, json)
Hash identifier: oPT+8/8nOuL3uh570rIR/CE8XT7AVyFQyfSC6ZiqFBE=
Subject key identifier: 6C:12:87:0D:39:E1:DE:3F:BE:7E:84:BD:AD:A7:4E:8B:09:B4:8E:FD
Authority key identifier: 9D:35:BD:78:FE:CE:23:65:E5:B1:3F:52:38:87:D2:D8:D6:A4:53:F9
Certificate issuer: /CN=9d35bd78fece2365e5b13f523887d2d8d6a453f9
Certificate serial: 019A7149CAD514CD4B1EC9097FE06231CA21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTW9eP7OI2XlsT9SOIfS2NakU_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.mft
Manifest number: 0141
Signing time: Tue 11 Nov 2025 05:00:52 +0000
Manifest this update: Tue 11 Nov 2025 05:00:52 +0000
Manifest next update: Wed 12 Nov 2025 05:00:52 +0000
Files and hashes: 1: nTW9eP7OI2XlsT9SOIfS2NakU_k.crl (hash: +vv6FTQHLJVAY7CloxA9UG19JY/JJdPwvuegHC8clE8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTW9eP7OI2XlsT9SOIfS2NakU_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:ca:d5:14:cd:4b:1e:c9:09:7f:e0:62:31:ca:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d35bd78fece2365e5b13f523887d2d8d6a453f9
Validity
Not Before: Nov 11 05:00:52 2025 GMT
Not After : Nov 12 05:00:52 2025 GMT
Subject: CN=6c12870d39e1de3fbe7e84bdada74e8b09b48efd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:c7:9c:ae:13:18:84:71:23:3f:d7:0a:8d:43:
a1:4a:14:b8:93:98:d8:26:b7:84:5f:49:7a:77:aa:
51:6a:73:32:0d:c1:68:5f:8e:72:10:42:69:e0:1a:
2b:7f:e5:98:99:32:ce:2e:d0:33:cf:49:0e:75:84:
ae:89:4e:eb:d1:41:ac:5d:c1:5e:73:4a:24:76:41:
bb:cd:23:f0:76:42:aa:73:e3:0a:f5:38:67:e5:4a:
ad:de:eb:5c:f0:09:7d:21:18:41:ab:a2:21:cf:87:
fb:d3:98:b1:43:6d:32:b7:90:d4:cf:1e:54:ce:8b:
41:7f:63:82:42:fe:32:93:b5:10:55:8e:c7:db:b6:
30:50:c3:66:03:12:65:20:83:96:a9:bf:fe:04:ea:
cc:98:05:2c:de:25:a1:85:0d:f0:15:15:cd:55:86:
19:4c:82:03:a9:c6:7c:fc:59:28:38:e3:ab:07:ec:
83:0a:38:39:8f:ae:f3:bb:a8:6a:da:7f:a1:41:6d:
15:fe:67:02:f9:40:2b:87:ff:cd:06:65:12:e6:5c:
00:88:32:b5:1e:67:d5:55:e5:4c:46:c7:34:0f:d3:
74:1c:f5:88:0c:4e:5f:9b:1b:85:fb:5d:df:e1:ff:
38:2c:b5:d6:c9:88:f8:69:34:9b:e8:5d:ee:4b:45:
3f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:12:87:0D:39:E1:DE:3F:BE:7E:84:BD:AD:A7:4E:8B:09:B4:8E:FD
X509v3 Authority Key Identifier:
keyid:9D:35:BD:78:FE:CE:23:65:E5:B1:3F:52:38:87:D2:D8:D6:A4:53:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTW9eP7OI2XlsT9SOIfS2NakU_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:bf:a5:4f:16:48:69:e4:af:ed:94:63:08:62:84:49:77:53:
13:92:6d:a3:70:cf:37:38:3c:f0:65:c5:52:ef:3d:44:56:71:
e4:22:9b:53:d7:6d:38:33:43:94:4f:d0:00:bb:79:ca:d1:37:
88:11:27:cd:28:e8:18:8c:c9:a4:fa:eb:73:2b:fe:b1:1b:86:
12:ae:05:6e:04:fa:6c:87:c3:0a:8a:5b:d1:a3:48:02:13:da:
e7:4e:15:fc:00:1d:f6:43:19:03:ff:e6:7a:6e:da:14:10:33:
6e:70:28:4e:1e:78:6e:d2:c9:37:2e:8b:b9:af:28:66:72:1c:
75:45:95:3b:58:b4:19:1a:d2:6f:38:d4:27:e7:18:2b:bc:d2:
e8:9c:a5:a2:f3:2b:b1:5f:01:8d:43:19:92:8f:56:a5:a9:cc:
fb:3d:05:11:33:ea:61:e8:32:cc:3f:85:b5:66:3d:29:19:75:
19:a4:3f:e0:ee:94:a2:e4:1c:7b:70:4f:77:cd:4e:49:7b:c0:
b6:6c:32:dc:7b:f5:c1:b4:8b:ae:28:bc:0e:c1:2d:83:c9:e2:
84:6b:45:84:21:6d:23:6c:6c:06:bf:7b:f7:2a:ea:55:3a:84:
4d:9f:e4:2a:e1:68:58:54:39:15:16:7e:f7:59:0a:86:d1:78:
a6:b8:b7:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:42:59 2025 by rpki-client