Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft
File: NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft (raw, json)
Hash identifier: 9LnXSkMqyzFZYW6HPJ/5aU1LHUyVz1qt50+Sl6PvJOA=
Subject key identifier: CC:9A:DE:54:DF:E3:84:BD:59:48:99:96:74:1A:BB:61:BD:34:A7:A3
Authority key identifier: 34:DD:40:26:D2:90:F3:20:1D:28:EF:68:4D:3C:5A:C1:3C:96:EC:6D
Certificate issuer: /CN=34dd4026d290f3201d28ef684d3c5ac13c96ec6d
Certificate serial: 019A209BFF1B619A788C1B5E4E75AC9DF3D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft
Manifest number: 0243
Signing time: Sun 26 Oct 2025 13:01:25 +0000
Manifest this update: Sun 26 Oct 2025 13:01:25 +0000
Manifest next update: Mon 27 Oct 2025 13:01:25 +0000
Files and hashes: 1: NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl (hash: RDqnygzvCmBvqaMWgil51BlfuTCDhOOSf7SGUl9FfVs=)
2: NkwYBQBRVrFsj-xUN7Cv_m6lwSA.roa (hash: gjr66sRTq1kait53s7UP3QklI69yHhHqmsXxB/qlKCc=)
3: V4v-VxZ-7OAHRrY5C50VFKZqDnc.roa (hash: 6nRk9oygeeOeb7rjfRo1H5M200eI6zr7Rlb7ujC3GZM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft
rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 13:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:20:9b:ff:1b:61:9a:78:8c:1b:5e:4e:75:ac:9d:f3:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34dd4026d290f3201d28ef684d3c5ac13c96ec6d
Validity
Not Before: Oct 26 13:01:25 2025 GMT
Not After : Oct 27 13:01:25 2025 GMT
Subject: CN=cc9ade54dfe384bd59489996741abb61bd34a7a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:cf:c3:5f:e6:ab:a6:c1:d9:c1:1c:45:ee:93:
7a:04:15:96:fe:88:77:71:12:e5:3a:08:78:31:a1:
5c:28:a3:55:d9:d4:61:68:9d:e2:f8:8c:e6:ba:ab:
a0:02:95:4b:88:c1:24:a0:91:28:1a:d5:1e:39:c4:
1c:0a:57:c7:de:11:10:4b:7b:c8:d1:2b:b5:e8:ed:
86:38:36:bd:fb:43:0f:19:e6:a5:f3:ac:97:b3:94:
69:18:f3:d1:ac:5f:d9:03:a4:67:13:92:ab:16:7d:
5e:cb:bc:a4:8e:cf:82:42:a5:ee:54:09:4a:15:4d:
4c:0d:5b:03:38:68:94:1f:a9:9f:d2:88:3c:7e:97:
76:66:2a:b8:84:63:d1:80:07:80:57:c2:a5:dc:a9:
5c:2f:2b:ee:87:dd:03:58:a7:0a:be:92:51:67:13:
fe:98:e8:a0:61:f0:f2:9a:4f:6f:12:17:3a:3f:9b:
ad:8a:84:d4:ac:75:73:6e:99:f5:d3:0d:c5:0d:d8:
2a:69:8b:ad:98:4d:42:fb:82:7a:0d:e3:a1:7f:fe:
e8:4b:92:02:82:2c:1d:ea:2c:b0:cd:28:00:65:44:
f6:5c:de:6f:2d:a2:b6:fd:d2:dc:84:5c:61:37:7a:
15:81:29:a0:1c:72:03:2d:1a:1f:ab:32:33:cf:d5:
b9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:9A:DE:54:DF:E3:84:BD:59:48:99:96:74:1A:BB:61:BD:34:A7:A3
X509v3 Authority Key Identifier:
keyid:34:DD:40:26:D2:90:F3:20:1D:28:EF:68:4D:3C:5A:C1:3C:96:EC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:6a:f5:5e:7c:31:b5:89:74:d3:8b:95:e6:ab:a2:63:e3:f9:
b1:29:37:37:47:39:5d:c5:49:2d:7b:5a:8e:ba:24:fe:e5:66:
01:62:b7:3a:20:16:6b:a8:99:00:7a:c4:ec:79:8b:20:ce:df:
25:8a:ea:3e:6e:69:4b:1e:b1:68:ce:62:d3:7f:c8:13:78:a8:
98:6a:0f:28:9d:39:e7:01:d3:29:fa:63:03:f1:38:ee:7d:bf:
91:4c:7e:4d:f6:73:8e:a4:eb:a9:cb:2e:e6:82:02:df:b9:66:
b7:2c:68:af:37:ee:2a:f5:fb:dd:97:a7:86:a1:0d:70:de:7c:
d7:98:0d:18:bf:2e:ee:91:81:c0:d2:55:94:9b:82:94:51:8b:
bf:ac:93:04:19:48:94:ff:47:f7:a5:64:76:5f:dc:b7:cb:b4:
19:b3:c6:4d:41:e8:ee:2c:ca:a6:c6:72:50:c9:1b:4e:18:f6:
dd:a2:e6:e5:2a:e1:d4:b6:ad:f4:b8:37:6b:f9:97:53:82:a5:
10:33:2a:78:cb:53:df:52:64:a2:f9:3a:0d:20:4f:f8:e8:e5:
01:0b:61:cf:26:97:02:a7:d0:11:41:c0:b2:72:9f:cb:80:75:
1d:97:13:c2:0b:ee:c6:db:cb:73:c2:da:70:ae:38:ee:16:67:
8d:57:12:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 23:18:37 2025 by rpki-client