Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/e42336-eb77-4540-be41-55fd6dc1a1d8/1/n0XrWiiMaO1g29m4fk6CBsqckz8.mft
File: n0XrWiiMaO1g29m4fk6CBsqckz8.mft (raw, json)
Hash identifier: 1YABD3tpKip1f9Kb7UYEbfk2SeH1LRhb3jZXK+/f3g4=
Subject key identifier: A3:43:4D:54:00:C0:F3:77:36:46:1A:C0:E6:00:59:37:4C:02:FD:58
Authority key identifier: 9F:45:EB:5A:28:8C:68:ED:60:DB:D9:B8:7E:4E:82:06:CA:9C:93:3F
Certificate issuer: /CN=9f45eb5a288c68ed60dbd9b87e4e8206ca9c933f
Certificate serial: 0199239ED3C595E85CAEAFE39DFBD5BED920
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n0XrWiiMaO1g29m4fk6CBsqckz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/e42336-eb77-4540-be41-55fd6dc1a1d8/1/n0XrWiiMaO1g29m4fk6CBsqckz8.mft
Manifest number: 104C
Signing time: Sun 07 Sep 2025 10:00:35 +0000
Manifest this update: Sun 07 Sep 2025 10:00:35 +0000
Manifest next update: Mon 08 Sep 2025 10:00:35 +0000
Files and hashes: 1: n0XrWiiMaO1g29m4fk6CBsqckz8.crl (hash: W5zpg4Oa5BkAtTc2CM7b5wO4dghT4qAMBiG4fg8I89g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/e42336-eb77-4540-be41-55fd6dc1a1d8/1/n0XrWiiMaO1g29m4fk6CBsqckz8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/e42336-eb77-4540-be41-55fd6dc1a1d8/1/n0XrWiiMaO1g29m4fk6CBsqckz8.mft
rsync://rpki.ripe.net/repository/DEFAULT/n0XrWiiMaO1g29m4fk6CBsqckz8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9e:d3:c5:95:e8:5c:ae:af:e3:9d:fb:d5:be:d9:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f45eb5a288c68ed60dbd9b87e4e8206ca9c933f
Validity
Not Before: Sep 7 10:00:35 2025 GMT
Not After : Sep 8 10:00:35 2025 GMT
Subject: CN=a3434d5400c0f37736461ac0e60059374c02fd58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:57:bd:03:60:3f:89:bd:51:a9:87:7e:24:07:
4f:5f:64:72:b4:f2:b4:73:b2:6f:6c:83:92:25:47:
5f:3a:15:76:d5:ad:ce:5e:2f:c0:7a:f9:9e:91:9e:
57:34:18:68:3d:67:e4:7a:d3:a9:79:fe:b5:cc:7d:
c1:52:1c:ff:23:30:fe:ed:39:70:c6:e8:a3:80:99:
65:b8:07:35:a8:26:a9:31:c6:de:8e:6f:18:47:7b:
a0:94:51:7b:59:d7:2a:ab:64:d5:b4:55:ca:11:aa:
cb:73:c9:88:15:d5:77:22:56:e9:b2:43:85:00:a2:
1f:fa:e5:af:92:17:98:ad:d7:cc:71:c7:84:f1:24:
f0:db:76:da:61:60:d5:ff:43:ef:82:1a:76:75:ca:
48:74:b9:0c:5d:38:fe:18:3f:6c:95:06:20:58:46:
8e:89:94:d6:ad:d3:66:dc:f9:59:b4:8a:b3:e7:34:
e8:94:d9:a9:81:89:0b:27:9e:5b:24:f5:38:09:a2:
54:ad:06:39:11:94:ea:bf:e7:8a:c3:e7:da:d7:8c:
7e:e0:0a:4c:25:8f:ae:60:65:4b:a5:f4:46:0f:d5:
fe:d0:22:99:78:72:29:2b:41:66:be:97:61:68:1b:
d5:8e:75:45:bc:51:0a:9d:e6:25:9c:cc:26:2b:bb:
8a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:43:4D:54:00:C0:F3:77:36:46:1A:C0:E6:00:59:37:4C:02:FD:58
X509v3 Authority Key Identifier:
keyid:9F:45:EB:5A:28:8C:68:ED:60:DB:D9:B8:7E:4E:82:06:CA:9C:93:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n0XrWiiMaO1g29m4fk6CBsqckz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/e42336-eb77-4540-be41-55fd6dc1a1d8/1/n0XrWiiMaO1g29m4fk6CBsqckz8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/e42336-eb77-4540-be41-55fd6dc1a1d8/1/n0XrWiiMaO1g29m4fk6CBsqckz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:ff:6b:e0:21:c3:3b:35:55:ca:07:86:81:0e:5a:21:37:09:
55:9b:3b:73:b1:08:c6:98:35:ce:59:33:1f:00:15:e3:3a:70:
96:c8:0b:38:8d:fa:17:da:4c:c3:e5:44:69:cf:d7:e2:8e:bc:
13:2d:8e:4f:25:41:8c:6b:e4:b2:8a:a9:1d:f8:cd:62:10:56:
42:a4:01:b8:a3:54:54:9c:30:5a:d1:d3:7c:1b:2d:34:e4:f8:
2f:c9:34:d7:5f:48:a0:3c:50:8a:4a:98:00:63:0b:d6:85:f2:
7b:63:b1:f0:a7:cd:c8:2b:11:83:c4:69:30:43:27:ea:db:9a:
c9:b4:00:1f:93:c0:75:9a:dd:c5:43:7c:f9:d0:8a:0d:bc:99:
79:41:61:a6:61:f7:46:da:1f:99:17:57:73:99:aa:7c:db:59:
ee:97:13:b6:1a:4a:14:e3:e4:5c:e8:d5:d7:a7:63:58:b4:76:
a2:a6:b2:5d:26:28:24:38:13:f9:23:fa:5a:64:59:bd:d1:2a:
9a:df:f6:7f:fe:ec:60:94:4e:e9:b9:f6:af:39:63:2b:d4:23:
78:da:c1:71:42:dc:05:d1:05:5c:f0:95:bf:a2:bf:be:c0:d3:
e0:7c:20:e3:88:21:10:ec:4d:c9:67:5a:24:df:93:60:c7:db:
d2:56:fd:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:54:09 2025 by rpki-client