Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.mft
File: npzXqbifTgVovUoLbCwRzRfn8OE.mft (raw, json)
Hash identifier: JNcVtqiuyejVc0X6eeE8dtk+/rbyCtc3p0HU9XF/KCQ=
Subject key identifier: 0F:4C:92:6F:68:D9:77:D1:2B:56:6C:50:10:9F:35:E8:E8:DF:06:F9
Authority key identifier: 9E:9C:D7:A9:B8:9F:4E:05:68:BD:4A:0B:6C:2C:11:CD:17:E7:F0:E1
Certificate issuer: /CN=9e9cd7a9b89f4e0568bd4a0b6c2c11cd17e7f0e1
Certificate serial: 0199221ECA4F6CDFFA415E2C004DF4E46B17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npzXqbifTgVovUoLbCwRzRfn8OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.mft
Manifest number: 0423
Signing time: Sun 07 Sep 2025 03:01:07 +0000
Manifest this update: Sun 07 Sep 2025 03:01:07 +0000
Manifest next update: Mon 08 Sep 2025 03:01:07 +0000
Files and hashes: 1: npzXqbifTgVovUoLbCwRzRfn8OE.crl (hash: L5IPlBzKMI6w1a52LhQqc9OXMXRfdXKNJ0i95DzJPYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.mft
rsync://rpki.ripe.net/repository/DEFAULT/npzXqbifTgVovUoLbCwRzRfn8OE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:ca:4f:6c:df:fa:41:5e:2c:00:4d:f4:e4:6b:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e9cd7a9b89f4e0568bd4a0b6c2c11cd17e7f0e1
Validity
Not Before: Sep 7 03:01:07 2025 GMT
Not After : Sep 8 03:01:07 2025 GMT
Subject: CN=0f4c926f68d977d12b566c50109f35e8e8df06f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d4:45:b9:37:0a:92:14:8e:b7:81:51:9d:e7:
54:0f:3c:39:ef:fc:ce:7d:bf:13:3b:06:64:8a:fd:
af:9c:f6:38:03:b5:d0:25:78:90:24:97:ec:97:48:
f2:ba:1f:3e:b6:1b:ae:c0:ba:21:ee:bb:8e:18:0c:
f5:11:30:6b:6d:af:d5:5c:8c:a5:08:74:cc:05:25:
42:f6:45:e2:7b:8c:39:c5:72:27:f6:ca:a2:42:01:
de:55:b9:14:81:61:05:e6:73:4b:0c:8c:6e:0f:01:
2b:57:01:b6:a0:77:fe:b0:0c:b1:2c:aa:5e:3e:5e:
cc:22:50:f7:c9:62:df:e2:99:d8:f9:e3:c1:48:ad:
14:45:57:9d:39:e4:e2:34:89:43:2d:2d:a2:c7:ab:
07:c0:e1:89:b4:4d:57:62:3f:5e:a1:10:03:a5:99:
b8:67:b2:c9:5c:8f:72:8c:99:b2:a0:fe:7e:89:88:
d2:73:82:e9:43:06:a3:82:c0:4a:c8:3c:d1:f4:e1:
2e:6f:70:ae:cf:9b:d4:e0:df:09:53:1b:9e:b6:fa:
f4:91:30:4e:81:71:87:89:07:eb:fe:de:83:c2:f0:
c7:8b:31:d2:06:51:0e:6b:ce:9b:da:41:75:f4:9e:
51:6b:81:c7:0b:32:ed:06:5c:b1:cb:7b:07:46:60:
66:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:4C:92:6F:68:D9:77:D1:2B:56:6C:50:10:9F:35:E8:E8:DF:06:F9
X509v3 Authority Key Identifier:
keyid:9E:9C:D7:A9:B8:9F:4E:05:68:BD:4A:0B:6C:2C:11:CD:17:E7:F0:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npzXqbifTgVovUoLbCwRzRfn8OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:ca:9d:fe:f6:f8:8f:e3:c3:a5:bb:c6:5b:a4:c6:cd:00:df:
8a:e5:e6:6d:d4:fb:dc:18:8d:6b:b4:bc:ce:7b:08:19:a1:9d:
c0:62:cb:0a:97:f2:a7:86:3c:c5:e9:e8:d6:a8:28:15:b7:d1:
e4:c1:a8:12:ab:02:e6:4b:be:91:a1:8f:81:43:9f:38:20:a8:
a9:f9:3d:15:3a:ee:52:2e:6a:ca:ee:ee:eb:3e:5f:03:13:ab:
b9:c3:22:3c:be:d7:fb:fb:01:db:e0:0c:7a:fa:2d:82:09:bd:
4b:ef:0c:e1:ad:f0:da:e8:28:e5:6d:81:72:61:87:1b:a9:f4:
e2:00:7d:b7:2f:49:bc:ef:e8:8b:2c:d6:e8:91:6c:27:15:ad:
95:5b:19:fa:5d:0a:69:67:14:13:5b:eb:f4:44:59:a0:47:c7:
c0:93:18:ea:82:dd:35:76:e7:52:28:1b:c0:00:4a:99:95:f3:
0e:6e:9f:67:3d:36:dd:3c:4a:b7:7b:a8:86:fe:79:7e:c6:8f:
f3:c2:54:40:77:53:de:19:fa:a0:9e:58:7c:75:9a:74:d3:b8:
64:63:17:1d:54:27:dd:38:df:b1:3c:42:8d:59:9a:b2:4e:5d:
9e:cb:e0:0d:4e:d9:ca:38:ff:bf:d1:c9:93:bb:a9:38:d0:4e:
53:38:0a:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:22:53 2025 by rpki-client