Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
File: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft (raw, json)
Hash identifier: ybCSbHgeHXpjczG7e3IYypvrRmuOiA3gITycdxzzKXE=
Subject key identifier: BE:6E:36:F7:D7:AB:B6:9C:EB:08:27:15:01:E6:92:8F:BF:BD:FB:E1
Authority key identifier: 9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
Certificate issuer: /CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Certificate serial: 019A71136234D8EA5860C1205F6A15BAC66C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
Manifest number: 0DF1
Signing time: Tue 11 Nov 2025 04:01:26 +0000
Manifest this update: Tue 11 Nov 2025 04:01:26 +0000
Manifest next update: Wed 12 Nov 2025 04:01:26 +0000
Files and hashes: 1: aRmXLbWgvqCrB_ieixDwg5bWHH4.roa (hash: NkuU0nUuwUULqqtGwJsRiK14f6VjdQm0HvAAtBo3GJQ=)
2: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl (hash: NMZFvMp2sVNBgkCImzMm9YYrdTgjrp4dw/ktbkN915w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:62:34:d8:ea:58:60:c1:20:5f:6a:15:ba:c6:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Validity
Not Before: Nov 11 04:01:26 2025 GMT
Not After : Nov 12 04:01:26 2025 GMT
Subject: CN=be6e36f7d7abb69ceb08271501e6928fbfbdfbe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ac:68:3c:20:60:af:2e:93:36:22:ba:49:17:
75:b4:5e:48:72:44:c9:ba:fb:2c:bb:67:f6:71:df:
e8:c8:e6:a1:1e:e6:2c:69:69:f0:74:19:2a:d6:4d:
90:94:aa:cb:ff:42:c6:c6:f9:66:c4:9e:c2:cd:17:
23:4d:75:02:44:34:57:85:71:d6:34:2d:67:85:57:
3d:c7:07:1b:ef:b6:97:a2:39:95:bb:ee:54:74:3f:
61:2a:0a:c4:1e:8b:2b:38:26:1f:b0:e1:96:f8:7b:
08:f5:8b:5e:30:d9:b9:9b:be:80:af:66:b4:3c:81:
3d:f3:eb:3e:d3:7d:9b:21:75:03:8e:1d:d4:d2:87:
cd:83:0b:07:5c:43:f4:6b:18:49:b3:a9:dc:f9:24:
b3:3a:b5:3a:f2:95:11:56:a1:bf:21:a1:10:5a:36:
70:09:a7:b6:ff:84:be:41:f9:0f:c0:0e:95:82:f8:
12:0f:25:ee:6c:15:52:73:07:8e:06:53:d2:72:41:
9b:ef:33:80:51:3b:8a:64:c3:f1:c2:ed:23:28:f0:
93:10:f3:e5:f1:00:3a:ff:c8:20:eb:fa:f0:f9:06:
f5:e1:7b:b4:23:6e:aa:2d:0c:67:de:74:45:0c:89:
c4:18:b4:b4:a5:97:96:ef:38:aa:a5:d0:a6:22:99:
7c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:6E:36:F7:D7:AB:B6:9C:EB:08:27:15:01:E6:92:8F:BF:BD:FB:E1
X509v3 Authority Key Identifier:
keyid:9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:e5:a6:a5:8e:e4:af:f8:31:c4:b7:42:46:1a:8a:f6:fd:85:
e1:46:77:0f:a4:b2:91:9e:12:10:27:be:84:3d:12:d2:25:32:
2c:21:1e:1b:fb:24:bc:de:ad:89:ff:3a:2d:e1:60:72:29:62:
b1:d6:89:a0:d0:61:a3:67:5d:cc:00:1a:89:ae:f3:20:67:38:
d1:e4:e4:b4:26:42:f3:ac:08:e3:4e:65:77:33:e9:87:c1:3c:
90:c2:e2:f1:85:df:04:39:c4:b9:93:93:bf:30:40:ea:14:2f:
3d:f5:be:f6:f0:91:cd:b7:df:fb:29:38:87:f8:f6:17:28:3c:
63:ac:ee:c0:1a:67:71:23:2f:93:74:d9:19:c7:fe:fd:bb:c7:
06:6f:f7:83:5f:99:38:82:71:09:d0:1c:83:93:eb:2e:f4:5b:
01:ff:8e:16:a9:5f:73:3d:e8:eb:b1:ab:80:ca:e9:84:f9:e9:
13:0d:e4:07:57:2e:fa:cc:ab:54:ff:98:bf:86:d1:ad:f2:7d:
b2:cc:cc:24:eb:27:22:54:2e:36:50:92:e2:71:12:f3:fe:2c:
ba:19:ed:99:f7:8e:99:88:97:c6:3a:26:e9:6f:48:01:90:a1:
9a:ea:02:f0:9b:29:e8:b3:f6:7b:10:92:b9:be:89:c2:7e:1a:
30:8d:a7:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:43 2025 by rpki-client