Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.mft
File: nVK4OxL6igcTLMgIM6ED4J2L0E8.mft (raw, json)
Hash identifier: w4BEO/KRzOjA/31UNJFhRNszfC/qu76iGTDpm/jhMB4=
Subject key identifier: D4:82:C4:DD:5C:A0:85:3A:FC:F1:D1:FA:8E:C4:5B:08:25:05:34:0A
Authority key identifier: 9D:52:B8:3B:12:FA:8A:07:13:2C:C8:08:33:A1:03:E0:9D:8B:D0:4F
Certificate issuer: /CN=9d52b83b12fa8a07132cc80833a103e09d8bd04f
Certificate serial: 0199356EA7E9755F412ACBE2F37AB5BB7336
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nVK4OxL6igcTLMgIM6ED4J2L0E8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.mft
Manifest number: 0373
Signing time: Wed 10 Sep 2025 21:01:08 +0000
Manifest this update: Wed 10 Sep 2025 21:01:08 +0000
Manifest next update: Thu 11 Sep 2025 21:01:08 +0000
Files and hashes: 1: 38Ols_fwuqUro_09-_uv-_Ul2jA.roa (hash: QymLTZTAomDxu/BGko1S2mbZfpR+LRurtzVVTfHo8uA=)
2: nVK4OxL6igcTLMgIM6ED4J2L0E8.crl (hash: LVLDEtgXcgpSerWb4F1Yf7bJoJG1fyG4017TrQs/Pz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.mft
rsync://rpki.ripe.net/repository/DEFAULT/nVK4OxL6igcTLMgIM6ED4J2L0E8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 20:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:6e:a7:e9:75:5f:41:2a:cb:e2:f3:7a:b5:bb:73:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d52b83b12fa8a07132cc80833a103e09d8bd04f
Validity
Not Before: Sep 10 21:01:08 2025 GMT
Not After : Sep 11 21:01:08 2025 GMT
Subject: CN=d482c4dd5ca0853afcf1d1fa8ec45b082505340a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e5:41:fb:43:b8:f8:d0:3b:4d:fc:95:3c:bc:
03:c0:6b:64:c7:3f:c0:cd:32:fd:de:a0:65:86:7c:
a5:2d:85:5d:4a:89:7b:a5:d8:64:e9:ee:ca:a4:85:
6f:73:7a:25:e4:ea:97:95:f6:3e:c3:de:35:f0:e3:
95:1b:59:1b:86:88:3e:26:b3:3b:66:c8:26:86:22:
45:7b:f2:c7:0e:1b:a1:85:56:2a:75:dc:bd:c3:b1:
86:40:28:fb:d6:2a:e3:a6:12:53:42:34:15:e9:a1:
b7:f9:e1:0e:18:a7:ff:df:5b:62:d6:da:3b:b1:25:
26:36:51:87:0e:07:93:66:e3:ca:98:89:64:63:15:
e7:3d:fa:12:47:8e:6c:13:af:54:4b:7a:37:a4:2a:
e6:41:c3:8a:ff:57:70:86:01:e6:73:69:3f:ee:8a:
77:24:44:a3:70:7d:6c:13:63:b4:70:4a:8d:ae:49:
eb:70:fc:42:f9:b8:a5:dc:77:0c:bf:15:ac:f3:c1:
58:0f:23:68:6b:bd:3d:ea:c0:38:a0:ca:aa:03:30:
ab:c4:d9:bf:26:07:25:52:51:59:de:89:45:4f:8c:
57:ff:3f:aa:c7:16:af:aa:a6:d1:96:bc:5a:2d:ba:
14:47:bd:71:24:17:e5:04:19:82:5f:c9:49:e0:c9:
45:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:82:C4:DD:5C:A0:85:3A:FC:F1:D1:FA:8E:C4:5B:08:25:05:34:0A
X509v3 Authority Key Identifier:
keyid:9D:52:B8:3B:12:FA:8A:07:13:2C:C8:08:33:A1:03:E0:9D:8B:D0:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nVK4OxL6igcTLMgIM6ED4J2L0E8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:37:5f:4f:5a:5c:62:8e:d0:fd:64:c5:fc:35:9f:ac:24:47:
f6:00:44:ad:21:9d:a6:ea:f1:bf:cd:04:7c:13:3e:42:57:46:
a2:d5:b5:44:da:b4:1c:5b:cb:bf:2a:16:9a:04:5b:30:30:37:
d3:e2:16:50:19:f4:3a:e5:ec:4f:5d:15:e9:9e:87:2f:9e:2d:
39:d1:b1:5a:0f:bd:a1:bb:96:f4:bc:97:c5:21:c2:52:7b:ae:
88:70:b2:ba:22:16:f5:d2:9c:6c:99:e8:d5:80:16:94:a8:bc:
f3:31:3b:f0:42:9d:6a:31:bd:d6:00:d9:81:87:07:c2:5c:e6:
39:a7:49:bd:da:5e:90:f4:86:b2:b4:b0:1c:b0:a1:a7:95:97:
c1:f2:48:50:f9:f8:52:f1:2d:e8:8f:52:53:03:dd:38:a0:fb:
4c:57:51:ac:50:0c:f2:0e:77:87:4f:a2:b2:a1:e2:ba:86:a1:
fd:4e:d0:6a:53:aa:d7:bf:28:a9:fc:fd:e5:60:5b:e3:7e:56:
6e:ce:33:f0:ad:0a:0f:4f:f2:48:06:39:99:ec:df:d7:64:f0:
05:b0:8a:b4:8f:fc:8a:18:be:e0:58:26:b3:2f:e1:59:17:5b:
0d:04:4b:c4:46:97:ba:82:50:18:ae:b7:da:17:5b:b1:56:fd:
62:a3:99:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 22:57:58 2025 by rpki-client