Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.mft
File: npzXqbifTgVovUoLbCwRzRfn8OE.mft (raw, json)
Hash identifier: 9MxXNvmrXwWzvsVLE1MvO20MLfP9YoXAuNRgST+sTh4=
Subject key identifier: 92:86:9E:C3:29:8F:AC:03:C3:50:D6:C2:F6:C0:F7:C0:C0:66:D4:EB
Authority key identifier: 9E:9C:D7:A9:B8:9F:4E:05:68:BD:4A:0B:6C:2C:11:CD:17:E7:F0:E1
Certificate issuer: /CN=9e9cd7a9b89f4e0568bd4a0b6c2c11cd17e7f0e1
Certificate serial: 019A72266AB84DE5FD5AA1DF71A14FFB6E53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npzXqbifTgVovUoLbCwRzRfn8OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.mft
Manifest number: 04D1
Signing time: Tue 11 Nov 2025 09:01:51 +0000
Manifest this update: Tue 11 Nov 2025 09:01:51 +0000
Manifest next update: Wed 12 Nov 2025 09:01:51 +0000
Files and hashes: 1: npzXqbifTgVovUoLbCwRzRfn8OE.crl (hash: xxJ54TH/4tRXB8l2YyOrPerQNox/sbzAz+n1Bm7UHBw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.mft
rsync://rpki.ripe.net/repository/DEFAULT/npzXqbifTgVovUoLbCwRzRfn8OE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:6a:b8:4d:e5:fd:5a:a1:df:71:a1:4f:fb:6e:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e9cd7a9b89f4e0568bd4a0b6c2c11cd17e7f0e1
Validity
Not Before: Nov 11 09:01:51 2025 GMT
Not After : Nov 12 09:01:51 2025 GMT
Subject: CN=92869ec3298fac03c350d6c2f6c0f7c0c066d4eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6b:e4:f2:e2:ba:16:71:d1:21:ec:f8:0b:c2:
5b:4a:37:2c:54:ca:b4:d3:bc:a8:c4:4d:4a:89:bf:
7a:ec:c5:a8:a9:95:eb:f3:6a:63:62:2b:2b:6f:4a:
8d:d7:36:38:54:21:f9:c0:6e:21:ef:b0:a3:54:c7:
e0:d7:60:5f:b7:de:c4:17:e8:46:bb:03:ab:6d:c3:
ec:c1:ee:24:f5:13:da:11:bc:57:7b:41:1e:2e:43:
b9:5c:37:2e:45:a1:41:2f:fd:ef:68:7b:00:0f:9c:
e9:c4:68:94:f0:2f:91:9e:f4:f4:2b:1f:83:57:9e:
97:51:a1:24:28:05:d7:cd:b7:cf:81:a0:16:4b:47:
36:31:65:66:31:a6:58:d6:c7:12:7a:1d:ac:a2:6b:
e7:a7:cb:38:a3:62:01:fd:7d:25:bd:0b:24:45:32:
d4:7b:3a:b5:47:f4:48:8c:b6:44:bd:ce:85:e3:70:
34:76:3b:30:f9:57:71:6d:ca:ce:4e:5c:be:cc:e5:
32:d4:81:7a:e7:b8:2d:44:a1:7a:3a:ff:99:e1:84:
26:00:88:c2:77:b5:e9:7e:dd:4b:19:81:dd:54:93:
46:41:3b:76:5c:4f:50:52:75:8b:f7:bf:80:24:a7:
f4:f7:e2:dd:2c:cb:91:29:7b:67:4a:25:6e:65:d2:
e6:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:86:9E:C3:29:8F:AC:03:C3:50:D6:C2:F6:C0:F7:C0:C0:66:D4:EB
X509v3 Authority Key Identifier:
keyid:9E:9C:D7:A9:B8:9F:4E:05:68:BD:4A:0B:6C:2C:11:CD:17:E7:F0:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npzXqbifTgVovUoLbCwRzRfn8OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:b1:9e:d5:b1:b7:6f:bb:1a:e9:dc:c8:33:85:d0:e5:ba:1a:
b0:38:76:b0:51:cc:dd:14:2e:8c:68:df:aa:5a:6b:6e:7c:9d:
30:d2:9e:7e:8a:3d:14:09:52:c9:33:60:9e:51:2d:4f:f2:da:
ea:52:7e:f1:a9:c7:c9:69:3c:76:38:9a:64:62:08:d4:c6:7a:
08:ea:c5:5d:53:be:9f:86:f6:27:c9:f9:70:e0:e6:89:6b:e6:
25:0d:dc:77:2a:5e:9c:94:5b:4d:eb:29:c5:5f:2b:77:fd:6e:
05:86:e5:1e:a8:aa:98:e2:36:5e:35:45:62:1a:ae:a8:4f:d8:
80:0a:67:69:b0:28:c9:03:3e:21:6d:b9:54:53:43:65:ff:dc:
b8:49:d6:d8:46:29:14:6b:ab:ee:65:0f:d4:b7:1a:72:36:c1:
8a:27:25:93:c5:03:3b:31:e8:4e:75:31:88:ac:c8:77:4d:5f:
62:a4:18:e8:b6:18:7a:e3:66:e4:78:5f:6c:7a:54:a8:02:1b:
27:04:ba:96:9d:6d:93:2c:5a:4e:0f:02:b7:9f:b6:b2:4e:32:
42:22:be:76:c5:af:e8:51:2b:c0:64:ee:5a:92:90:1a:60:12:
6b:36:4e:33:cf:23:dc:93:84:b2:a5:7e:ea:87:61:e7:06:2d:
01:1f:c9:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:44:42 2025 by rpki-client