Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.mft
File: nTW9eP7OI2XlsT9SOIfS2NakU_k.mft (raw, json)
Hash identifier: zcEowx+VoqY9Ai+ecUc6sXFDuHzWbAkPxnrEWLN+uNQ=
Subject key identifier: 15:AE:9D:4A:EC:81:3E:F0:08:BB:FD:99:1E:E4:5E:0B:C2:F0:65:55
Authority key identifier: 9D:35:BD:78:FE:CE:23:65:E5:B1:3F:52:38:87:D2:D8:D6:A4:53:F9
Certificate issuer: /CN=9d35bd78fece2365e5b13f523887d2d8d6a453f9
Certificate serial: 01992330F30180B4443C1D72B876B8EAD52C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTW9eP7OI2XlsT9SOIfS2NakU_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.mft
Manifest number: 94
Signing time: Sun 07 Sep 2025 08:00:34 +0000
Manifest this update: Sun 07 Sep 2025 08:00:34 +0000
Manifest next update: Mon 08 Sep 2025 08:00:34 +0000
Files and hashes: 1: nTW9eP7OI2XlsT9SOIfS2NakU_k.crl (hash: yqJzYf89C+FnVpYG3vvwUhh4FtXOofC33UrOFBaD158=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTW9eP7OI2XlsT9SOIfS2NakU_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:30:f3:01:80:b4:44:3c:1d:72:b8:76:b8:ea:d5:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d35bd78fece2365e5b13f523887d2d8d6a453f9
Validity
Not Before: Sep 7 08:00:34 2025 GMT
Not After : Sep 8 08:00:34 2025 GMT
Subject: CN=15ae9d4aec813ef008bbfd991ee45e0bc2f06555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:6d:32:63:f5:60:64:be:63:9d:48:81:2e:20:
49:9e:b5:65:9c:1c:e1:b2:e2:26:d1:e0:bf:11:e9:
dc:c9:21:02:24:cc:76:be:9c:b0:51:37:c7:c7:4a:
be:26:32:e5:cc:13:b8:3d:f2:f8:c0:f7:23:07:fa:
55:3e:50:71:a2:fb:88:ce:de:34:05:5b:45:38:69:
45:2d:e3:e8:91:b3:21:a9:fb:9b:23:30:aa:48:78:
40:1d:90:cd:89:05:1a:07:41:77:4a:61:ec:5a:6b:
15:1c:7a:85:36:f9:22:33:da:81:3b:98:05:bb:ec:
50:42:ac:a2:c7:d5:b3:4f:7f:89:97:48:dc:13:fc:
a7:a1:97:7b:38:3d:8e:59:74:83:ca:03:dd:ab:86:
ce:eb:63:bc:8c:92:91:33:ee:cc:e4:21:2b:8d:60:
2f:08:80:59:1b:4b:87:af:84:78:7e:c0:aa:fe:d2:
6d:43:05:5a:47:f2:ad:8a:f4:0d:70:de:e1:2d:2b:
22:39:99:09:c6:53:4d:ce:da:b3:2c:ca:18:23:e4:
de:b8:40:fd:54:80:bc:39:0d:4f:17:22:7d:df:d1:
c9:df:7b:14:a3:08:af:e9:dc:6e:8a:74:90:95:a8:
8e:14:c8:32:cf:c0:39:58:b7:a1:91:93:a3:bc:60:
32:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:AE:9D:4A:EC:81:3E:F0:08:BB:FD:99:1E:E4:5E:0B:C2:F0:65:55
X509v3 Authority Key Identifier:
keyid:9D:35:BD:78:FE:CE:23:65:E5:B1:3F:52:38:87:D2:D8:D6:A4:53:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTW9eP7OI2XlsT9SOIfS2NakU_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:31:d9:53:8d:ea:5b:f7:d7:56:05:59:79:fe:c2:e9:6e:72:
2a:af:e8:04:c9:80:e5:5a:57:2a:f6:df:93:9d:b5:a8:e9:ff:
0a:30:96:6c:52:0f:2f:fc:b5:2d:d8:10:3e:e3:bc:78:28:3d:
8e:2b:cf:50:eb:e0:54:38:26:f1:7f:36:e4:1d:ba:87:ed:31:
69:4e:49:85:8e:29:a8:e8:22:e1:ef:74:30:3c:5b:fe:ac:06:
8f:45:86:81:01:18:69:0e:4a:e6:61:0b:af:7a:1e:e8:25:12:
98:f2:82:23:c9:73:35:14:2c:7f:a6:bb:29:b0:fa:5c:eb:2a:
73:36:e6:42:6d:57:9b:c7:0e:ac:99:40:f7:b9:f8:01:7a:7a:
38:b0:27:8a:1f:ac:11:ea:e9:57:7f:83:e2:b4:e5:9d:14:d5:
77:91:33:85:37:b2:f4:8b:9e:d6:48:01:f6:3c:8f:95:5b:7b:
38:e9:bd:a3:83:15:77:16:0e:d7:08:f3:0b:a9:f2:32:e5:e4:
e5:eb:df:d2:1e:fe:99:2d:20:be:84:55:90:f4:7b:fc:59:ad:
13:57:0b:af:06:fb:96:85:38:2e:c4:b9:8c:e8:80:ea:ac:ce:
9a:d2:3b:e5:f8:7d:7b:59:04:9e:10:0d:31:07:bd:10:f2:0c:
b0:ea:41:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:35:43 2025 by rpki-client