Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.mft
File: nVK4OxL6igcTLMgIM6ED4J2L0E8.mft (raw, json)
Hash identifier: wjsaTNo7vevQtBlhhzHj/6ivxtuQqkY7Eim9FKwKmzI=
Subject key identifier: 69:82:4F:E0:74:18:9F:E3:AB:28:45:AA:F1:2C:40:F0:CB:87:FC:8D
Authority key identifier: 9D:52:B8:3B:12:FA:8A:07:13:2C:C8:08:33:A1:03:E0:9D:8B:D0:4F
Certificate issuer: /CN=9d52b83b12fa8a07132cc80833a103e09d8bd04f
Certificate serial: 019A7225B1E9809E311A808CA0D92D35B8BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nVK4OxL6igcTLMgIM6ED4J2L0E8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.mft
Manifest number: 0417
Signing time: Tue 11 Nov 2025 09:01:04 +0000
Manifest this update: Tue 11 Nov 2025 09:01:04 +0000
Manifest next update: Wed 12 Nov 2025 09:01:04 +0000
Files and hashes: 1: 38Ols_fwuqUro_09-_uv-_Ul2jA.roa (hash: QymLTZTAomDxu/BGko1S2mbZfpR+LRurtzVVTfHo8uA=)
2: nVK4OxL6igcTLMgIM6ED4J2L0E8.crl (hash: epIqp31hiac1ilE9nLqCqs1j1kff2edRjDqX8wgxcQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.mft
rsync://rpki.ripe.net/repository/DEFAULT/nVK4OxL6igcTLMgIM6ED4J2L0E8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:b1:e9:80:9e:31:1a:80:8c:a0:d9:2d:35:b8:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d52b83b12fa8a07132cc80833a103e09d8bd04f
Validity
Not Before: Nov 11 09:01:04 2025 GMT
Not After : Nov 12 09:01:04 2025 GMT
Subject: CN=69824fe074189fe3ab2845aaf12c40f0cb87fc8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:47:9e:02:a1:1b:47:e2:cc:07:c3:e0:8e:c5:
73:82:c2:1d:6a:32:45:92:1f:82:3d:1f:a2:b7:07:
e0:58:3e:c7:75:6c:73:88:a5:56:d6:63:5f:b1:1d:
aa:de:8f:24:13:1f:0f:05:c0:c5:86:5b:03:74:ab:
01:a8:e1:dd:e8:4b:85:94:15:76:74:0a:02:c4:be:
b2:b2:db:53:38:3e:48:00:89:a2:a6:f9:81:1b:87:
28:61:96:14:01:55:a3:e7:55:fd:7b:d8:71:13:70:
61:4f:91:e4:1e:b4:2d:45:6c:c2:a2:52:3f:6a:ee:
41:fd:a0:95:3e:91:7a:b9:d7:6b:53:fc:20:82:42:
a4:a3:6a:4b:42:e9:95:c9:1b:13:fc:b1:ca:66:d2:
35:07:c6:10:8a:f6:a2:77:3a:68:97:d5:25:cd:60:
fe:ca:5d:07:3f:4f:34:12:dc:db:3a:c2:eb:9c:89:
cf:52:2c:28:fc:f5:11:c3:bb:03:43:7d:36:ad:ea:
5c:56:89:df:08:ec:50:c5:66:2e:e9:b4:df:be:d9:
c2:61:3f:04:72:3a:98:a2:ff:3e:d0:85:5c:1e:a9:
8c:cf:ff:a0:78:e3:0a:fc:8e:30:54:f3:95:37:b9:
3c:44:7c:33:7a:82:d5:67:44:a4:f0:33:98:2c:33:
df:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:82:4F:E0:74:18:9F:E3:AB:28:45:AA:F1:2C:40:F0:CB:87:FC:8D
X509v3 Authority Key Identifier:
keyid:9D:52:B8:3B:12:FA:8A:07:13:2C:C8:08:33:A1:03:E0:9D:8B:D0:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nVK4OxL6igcTLMgIM6ED4J2L0E8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:e4:e3:25:d3:bb:01:0c:45:78:bf:0c:9d:57:4e:df:d6:db:
a2:48:85:a8:98:a4:e0:ef:53:71:05:b7:9c:e9:ab:0f:7c:a9:
85:33:3f:5d:17:f8:88:33:47:c4:b0:1c:6c:bf:92:03:d6:97:
89:d5:54:e6:0c:a5:5c:38:30:a5:df:bb:26:4d:cc:7d:cd:b8:
f5:98:69:41:df:8a:2c:5a:cd:48:a2:ce:73:34:87:19:fa:82:
e9:74:d3:c3:2f:81:44:9b:6e:39:c8:23:d4:e3:f3:90:34:b7:
b0:a5:d2:1b:e1:aa:e6:38:b1:1d:d5:58:e1:81:70:bf:59:f3:
54:fe:6e:ea:ee:a2:5e:c1:f4:ed:45:d2:58:25:2e:ee:71:12:
9f:9a:ee:94:79:ba:b3:56:d9:f5:16:a4:9d:d2:8d:0a:25:97:
cd:c9:86:13:4d:6a:e5:57:c2:1f:83:eb:15:ee:08:7f:94:81:
05:74:da:dd:ac:43:b3:98:e6:8a:9d:c5:c7:ef:0c:f5:fd:05:
cb:33:40:ad:55:0b:01:28:46:5f:9d:50:2d:9a:40:b6:9c:09:
79:27:69:d3:bd:95:b9:40:cb:26:95:3f:bc:8c:1b:e5:a1:66:
d0:d1:c6:08:a3:13:25:e4:c5:82:e4:db:1a:b3:7b:23:f4:e8:
b0:72:e7:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:52:30 2025 by rpki-client