Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft
File: nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft (raw, json)
Hash identifier: AdmblF8UQxHb+UB1yui2uo4BMCkkgM02t96JTBffmVY=
Subject key identifier: B8:F0:5A:3E:CF:F0:93:DB:2B:EB:37:F9:BE:8D:2D:AA:82:71:0E:80
Authority key identifier: 9D:36:27:D9:76:65:14:57:89:42:42:00:50:BF:83:A8:B1:29:16:6E
Certificate issuer: /CN=9d3627d9766514578942420050bf83a8b129166e
Certificate serial: 019922FA902F3F21AA4DDBECA4A333E171E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft
Manifest number: 1302
Signing time: Sun 07 Sep 2025 07:01:10 +0000
Manifest this update: Sun 07 Sep 2025 07:01:10 +0000
Manifest next update: Mon 08 Sep 2025 07:01:10 +0000
Files and hashes: 1: nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl (hash: FfBxAhpz/S5kgok9veyA8mbR5glU8urrKS5yV6KycKQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:90:2f:3f:21:aa:4d:db:ec:a4:a3:33:e1:71:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d3627d9766514578942420050bf83a8b129166e
Validity
Not Before: Sep 7 07:01:10 2025 GMT
Not After : Sep 8 07:01:10 2025 GMT
Subject: CN=b8f05a3ecff093db2beb37f9be8d2daa82710e80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d3:80:57:7e:bf:54:86:68:f5:30:8c:97:ef:
bb:2b:5a:68:30:c4:85:fd:7c:46:c2:ef:a4:a8:bf:
c1:40:b3:fa:20:24:95:1f:90:cc:03:67:09:2f:d9:
e3:f3:85:6d:c5:c0:64:16:ef:9c:2f:0d:f7:57:21:
f0:e3:38:08:da:18:f6:a9:03:3c:e8:79:0a:8a:96:
6c:8c:d8:be:14:a6:6f:bd:72:29:8d:ad:d8:02:3d:
50:34:cf:ea:cc:54:7e:52:cf:f7:86:5d:90:b0:fa:
d1:6d:cb:d9:cc:af:66:4c:68:f4:2c:c6:f6:0a:f3:
9e:4e:44:d6:2b:41:87:1c:68:2d:ca:1c:90:9e:27:
a6:af:9c:57:67:aa:a6:46:ba:79:92:4d:b7:51:ab:
da:e4:ca:31:16:b4:a4:27:cb:f2:0f:3a:7c:f6:88:
fa:de:eb:80:e5:6c:6e:31:05:7d:eb:53:b1:95:f4:
d1:dc:98:5e:b9:26:12:3a:91:9b:2f:89:1f:31:06:
e0:25:86:83:51:79:25:1d:43:ca:db:99:c3:43:b0:
8e:57:b5:28:11:bc:24:bb:d5:0d:f2:ae:e4:1b:29:
46:66:87:af:08:0b:b3:24:b3:a1:86:7e:95:8b:33:
21:6d:11:c7:88:50:39:de:93:ae:7c:10:0f:d8:1d:
51:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:F0:5A:3E:CF:F0:93:DB:2B:EB:37:F9:BE:8D:2D:AA:82:71:0E:80
X509v3 Authority Key Identifier:
keyid:9D:36:27:D9:76:65:14:57:89:42:42:00:50:BF:83:A8:B1:29:16:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:d6:60:3a:70:9a:81:64:35:17:16:65:e5:e3:53:d6:30:68:
1d:58:cd:13:62:cc:a9:2b:d2:f3:d1:96:f2:8c:28:85:7f:05:
1d:b8:6e:a2:b7:9d:42:89:29:32:2e:7b:94:38:e6:7a:62:2c:
e6:c3:69:19:65:9d:f8:a3:10:91:35:62:b6:fc:54:ab:2c:94:
c1:27:75:37:eb:12:b9:34:14:42:c1:e1:fd:d7:94:2c:8c:8e:
1f:d5:4f:36:5e:5b:6e:20:8e:87:71:23:90:1a:4e:11:b0:81:
65:ef:71:a2:8f:ef:bd:23:78:b3:01:24:fd:e2:f0:1d:ff:df:
85:b8:24:63:fc:f0:cb:08:b7:a8:fd:3e:4a:36:3e:f1:e2:9e:
b5:8f:ed:c8:db:31:34:80:7d:07:6d:e3:ca:97:95:60:e9:86:
2b:1d:f1:29:cc:84:11:72:6a:33:97:69:ab:21:24:97:6b:04:
ec:ba:09:6e:6a:5e:90:40:0f:54:53:1d:5e:c5:e7:36:86:ba:
e5:3d:01:df:2f:f5:ff:71:01:47:7f:62:51:fd:bf:d3:80:87:
f2:f0:7f:69:04:22:9d:3d:0c:70:71:6a:c6:55:b3:f7:49:75:
21:ee:df:58:37:c1:94:5c:1a:ad:74:cb:89:b7:cc:0e:55:1f:
3f:ee:97:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:45:19 2025 by rpki-client