Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.mft
File: nyhBEXAEkqsL4RDoIaG85z-ApWU.mft (raw, json)
Hash identifier: TpVIfoaYkTsFw1kMiaOKnbG9Qd7Kw9D7jnbny4Xw3SY=
Subject key identifier: 9C:7A:91:80:3D:2C:B2:E6:1E:B1:A2:BB:A5:B9:2D:58:1E:FD:DF:1C
Authority key identifier: 9F:28:41:11:70:04:92:AB:0B:E1:10:E8:21:A1:BC:E7:3F:80:A5:65
Certificate issuer: /CN=9f284111700492ab0be110e821a1bce73f80a565
Certificate serial: 019A725CB4079AD23F9B676CE3BA0A1E3611
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyhBEXAEkqsL4RDoIaG85z-ApWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.mft
Manifest number: 13FE
Signing time: Tue 11 Nov 2025 10:01:09 +0000
Manifest this update: Tue 11 Nov 2025 10:01:09 +0000
Manifest next update: Wed 12 Nov 2025 10:01:09 +0000
Files and hashes: 1: T7vd5c8yN7dKoGTcsEPGaB0GoJI.roa (hash: RdeAevZDp8XmGqqAvK8gJZd85NjETWsjIIExe3sxUXY=)
2: nyhBEXAEkqsL4RDoIaG85z-ApWU.crl (hash: AAZ6F2e2o+HjJBU0ZbtndGpwomEpkfYd5dl2u/xnmqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/nyhBEXAEkqsL4RDoIaG85z-ApWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:b4:07:9a:d2:3f:9b:67:6c:e3:ba:0a:1e:36:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f284111700492ab0be110e821a1bce73f80a565
Validity
Not Before: Nov 11 10:01:09 2025 GMT
Not After : Nov 12 10:01:09 2025 GMT
Subject: CN=9c7a91803d2cb2e61eb1a2bba5b92d581efddf1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:32:1d:01:31:c1:b3:04:9c:df:57:73:4a:f7:
51:29:ab:c4:10:d6:88:92:7b:64:0d:b9:70:16:3c:
4b:aa:54:52:0a:e7:f3:29:2c:29:01:22:1d:7e:bd:
e7:59:7e:7f:af:df:a4:2a:3c:05:e9:f4:b0:5a:0c:
19:e8:7b:c0:c6:7f:80:85:e9:2d:03:54:68:22:4d:
af:e5:d8:5a:78:98:d7:aa:2c:38:45:fe:30:b8:31:
70:4c:f1:36:e6:6b:dc:a0:49:6d:04:b8:71:2e:fa:
c4:f0:11:18:6a:0d:c0:0b:1f:af:43:28:e4:05:96:
88:f4:10:4d:95:0b:75:c9:9e:3e:fb:aa:18:01:0c:
f8:48:45:95:3c:08:b7:ee:59:b9:57:58:42:69:44:
ca:3a:39:21:10:62:54:f3:ed:19:61:83:a2:8b:46:
28:9f:bf:c8:d5:17:4b:c6:4d:8c:d0:21:e7:db:95:
e7:76:9e:59:67:41:fa:96:8f:f8:64:d0:83:ad:b6:
87:26:e4:cc:89:c2:21:47:38:ef:6d:02:a6:90:a7:
ee:94:e3:42:00:51:93:b7:5a:99:3d:c2:97:e7:6b:
b0:57:a5:74:ac:ff:ec:e6:74:51:29:15:4f:cc:10:
37:7f:54:5c:d2:9e:0e:03:55:93:ac:c6:fd:98:0d:
52:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:7A:91:80:3D:2C:B2:E6:1E:B1:A2:BB:A5:B9:2D:58:1E:FD:DF:1C
X509v3 Authority Key Identifier:
keyid:9F:28:41:11:70:04:92:AB:0B:E1:10:E8:21:A1:BC:E7:3F:80:A5:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyhBEXAEkqsL4RDoIaG85z-ApWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:a0:dd:70:28:e1:64:69:8e:2f:b7:ef:51:b7:49:f3:e6:9f:
d9:20:f7:4e:e0:bd:24:06:69:d2:80:74:6b:bd:f4:bc:3d:15:
74:80:84:04:d4:40:cb:b8:11:92:a1:a3:9c:ad:c1:19:ae:8f:
e7:2c:dd:ab:73:00:80:eb:43:90:55:2f:3a:37:de:cc:99:47:
2e:84:06:42:fe:a4:93:c3:74:45:0b:5c:c2:02:14:19:94:df:
c4:f3:43:b2:47:d1:24:a9:41:da:37:3a:6d:90:07:84:da:3f:
eb:81:90:32:e6:44:1d:2f:c8:0d:3d:52:b8:a4:24:b8:97:28:
2b:bb:ac:f5:fd:86:ba:64:dd:7b:db:4a:2f:65:03:10:eb:6f:
d7:1f:3f:7d:52:98:8d:7e:86:24:00:23:88:62:4e:fc:54:0d:
02:52:e6:94:f8:04:78:b3:71:4d:30:dd:8e:aa:67:0f:53:a5:
b4:3a:86:c8:b4:c2:76:af:4b:42:60:63:55:f0:6c:4d:47:15:
bb:68:42:4b:31:fd:83:1d:3b:a6:e6:4e:dd:09:8b:22:7f:2d:
59:74:f4:13:ed:75:c1:1e:82:a3:23:05:26:c0:c4:91:7b:1c:
ff:ba:e8:b8:be:6c:66:6a:2b:f0:08:e2:38:91:31:e2:15:68:
7e:39:2a:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:43:12 2025 by rpki-client