Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
File: ny83TJpzj63o-FDKq11507kARYQ.mft (raw, json)
Hash identifier: 6ew+ou8PRKVXG3PSeYq8xzLXSATmTvr6BND5RAgTRTc=
Subject key identifier: 7B:FE:6B:E3:DB:0C:3F:87:9A:14:CE:5A:5E:A6:31:12:A8:89:61:76
Authority key identifier: 9F:2F:37:4C:9A:73:8F:AD:E8:F8:50:CA:AB:5D:79:D3:B9:00:45:84
Certificate issuer: /CN=9f2f374c9a738fade8f850caab5d79d3b9004584
Certificate serial: 019A73A6D721E093A6ADAEDAC406EADBCA69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
Manifest number: 171C
Signing time: Tue 11 Nov 2025 16:01:45 +0000
Manifest this update: Tue 11 Nov 2025 16:01:45 +0000
Manifest next update: Wed 12 Nov 2025 16:01:45 +0000
Files and hashes: 1: ny83TJpzj63o-FDKq11507kARYQ.crl (hash: PfQa1Wk+gn+kSSb9sZfCDwZ9wU618DhhlXAsheWN7Xg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:a6:d7:21:e0:93:a6:ad:ae:da:c4:06:ea:db:ca:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f2f374c9a738fade8f850caab5d79d3b9004584
Validity
Not Before: Nov 11 16:01:45 2025 GMT
Not After : Nov 12 16:01:45 2025 GMT
Subject: CN=7bfe6be3db0c3f879a14ce5a5ea63112a8896176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a7:e5:88:93:25:45:65:3b:72:e6:06:7c:6c:
da:b2:fc:83:81:9e:55:b1:12:30:95:5c:6c:5e:82:
13:97:ae:d1:5c:50:51:82:9c:4f:0a:1e:03:4d:8c:
14:cd:8a:65:1b:95:29:22:2b:51:83:25:fc:5b:8c:
c1:f3:87:9a:dc:6f:79:bd:48:07:f6:5a:d9:5d:a1:
b7:05:c2:b3:4c:c4:89:d8:19:77:0b:dc:e7:3f:e8:
3f:22:a3:b6:d4:dc:2d:05:da:44:47:e9:75:cb:3e:
8b:8c:cf:3c:30:07:4a:bc:b0:67:23:d7:f4:eb:5a:
d1:da:a7:4c:35:3f:67:8e:61:c3:7c:b5:93:e4:cd:
8a:12:7c:54:3a:f6:46:22:d4:c6:68:32:05:bc:57:
a5:8d:dd:26:8c:25:b1:a1:8f:b5:2e:f5:a9:4a:3a:
51:8a:f5:6a:f3:2a:31:8a:b5:32:06:30:97:86:61:
c7:cf:d9:b2:8e:e1:37:56:57:b8:3b:2a:15:67:9d:
66:9f:0f:fc:05:f0:50:1c:5e:c5:f1:f8:3b:eb:de:
36:b3:ea:4a:c4:e6:c2:36:9d:ff:e7:f6:21:06:1c:
79:d0:2c:de:9e:eb:b6:72:ed:06:c0:ee:a8:cb:3a:
ee:fc:dd:a4:43:d1:85:44:e3:2c:ca:3f:ac:9f:08:
3c:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:FE:6B:E3:DB:0C:3F:87:9A:14:CE:5A:5E:A6:31:12:A8:89:61:76
X509v3 Authority Key Identifier:
keyid:9F:2F:37:4C:9A:73:8F:AD:E8:F8:50:CA:AB:5D:79:D3:B9:00:45:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:14:60:8a:e7:f0:4a:cb:8a:f6:17:63:84:bd:37:5e:26:2a:
b3:4e:5b:70:f2:b6:f8:7b:7b:4c:65:00:3e:43:fd:3f:fc:e4:
23:0b:60:75:98:a9:10:e2:0c:2d:2a:cf:62:13:a3:93:89:3e:
3d:7c:8a:a8:f6:8f:bc:10:99:25:41:06:94:0b:a3:be:8a:06:
30:06:2f:4a:9d:c9:9c:96:29:3a:d5:38:45:db:66:a7:0a:11:
74:df:09:c3:50:9d:ba:c9:8b:74:f3:90:b4:c6:eb:12:60:2c:
c3:71:0e:ae:d8:93:c0:ed:33:fb:ef:6f:ce:43:4d:16:1f:b6:
eb:7a:a3:ae:ab:01:82:71:44:8b:8d:48:35:9c:3b:b7:9d:8b:
2c:f4:ff:fc:b0:e7:82:b7:11:3c:97:b7:89:54:09:e1:f9:b2:
1a:93:36:c5:00:2b:3b:23:92:02:5c:3d:dd:3a:67:9c:dc:c6:
30:f9:c7:65:ec:38:79:7a:6b:a2:ee:c7:fc:b6:b0:fb:ba:29:
09:a1:b1:f4:5a:4c:a2:00:bd:f3:d9:6e:54:39:77:f6:fc:a8:
bc:43:11:fd:bb:46:f6:53:fc:cd:35:20:6b:0f:6f:fc:da:6b:
37:81:1d:1e:a3:5e:a3:32:54:74:f1:da:e8:c4:7d:0d:7d:67:
a3:61:a5:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 18:36:51 2025 by rpki-client