Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
File: nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft (raw, json)
Hash identifier: yfVzv5SLugyNPvPPN13h/lkTD4nmV+QPHO3Eg6OFkf8=
Subject key identifier: C9:EE:3A:D8:33:0A:0C:63:A9:BF:A6:02:CD:B3:B9:4B:FB:A5:DF:1E
Authority key identifier: 9F:24:06:4F:95:33:1C:F1:F3:15:DC:50:DE:4D:B0:5F:F9:5A:A4:10
Certificate issuer: /CN=9f24064f95331cf1f315dc50de4db05ff95aa410
Certificate serial: 019916F5D29FCD4B500519BD5FB09AE7ADAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
Manifest number: 0F91
Signing time: Thu 04 Sep 2025 23:00:32 +0000
Manifest this update: Thu 04 Sep 2025 23:00:32 +0000
Manifest next update: Fri 05 Sep 2025 23:00:32 +0000
Files and hashes: 1: nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl (hash: I5xABD6Xgx2p8XAWTf0ETbrRoeRpthLg8UiYEnZ+D0o=)
2: xk36of5GcRMNZGUJt-_5r_QctTo.roa (hash: BbMVXEvQwTUOBV0n4W+iUw7Na6Uh7I6Smkrm6hqGQWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 23:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:f5:d2:9f:cd:4b:50:05:19:bd:5f:b0:9a:e7:ad:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f24064f95331cf1f315dc50de4db05ff95aa410
Validity
Not Before: Sep 4 23:00:32 2025 GMT
Not After : Sep 5 23:00:32 2025 GMT
Subject: CN=c9ee3ad8330a0c63a9bfa602cdb3b94bfba5df1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:84:d5:29:6c:8a:ee:f5:89:28:8b:39:f6:e1:
7c:b8:aa:57:58:33:6e:b3:b1:ec:1b:ac:18:27:52:
26:dc:09:4e:b3:af:b2:2d:8e:d8:59:67:19:af:65:
cd:6e:ab:ed:f6:9a:b4:91:2a:f9:91:4d:05:13:54:
58:a3:cf:95:0d:e0:15:e9:85:06:35:ed:38:f1:7c:
08:b4:65:15:4d:6d:5d:59:8b:8a:4f:52:dc:2d:bd:
72:a3:9b:bb:90:81:c4:c7:5b:cb:4a:f0:5d:aa:52:
53:83:c8:ae:73:87:91:3b:06:58:ac:ff:6f:91:30:
f2:63:3b:bc:5b:88:57:88:7c:a4:a8:3b:2e:8f:57:
3e:8a:3f:6a:e2:02:f4:d7:14:58:a3:98:c7:31:ef:
c3:7d:2f:5c:a1:7d:f8:1e:8b:52:79:43:8d:83:47:
8a:c0:0d:56:3b:04:41:56:41:41:c2:fc:14:58:3e:
35:90:50:c9:b7:b8:2f:8f:09:b5:dc:e1:d6:0c:30:
98:82:9e:5b:14:37:35:12:f7:80:97:2b:99:e3:42:
25:40:56:f4:1b:56:ac:27:dc:15:69:cc:70:6f:1e:
0d:b8:89:2d:6c:f3:e2:f9:a0:b9:b1:6a:50:8d:3a:
c7:05:c8:fc:e4:54:70:0e:51:e6:1f:b3:44:eb:b6:
4d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:EE:3A:D8:33:0A:0C:63:A9:BF:A6:02:CD:B3:B9:4B:FB:A5:DF:1E
X509v3 Authority Key Identifier:
keyid:9F:24:06:4F:95:33:1C:F1:F3:15:DC:50:DE:4D:B0:5F:F9:5A:A4:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:83:bb:62:20:35:2f:12:ad:a8:c7:0b:67:95:72:59:30:3a:
a7:1d:cf:ea:35:bb:9a:55:bb:57:91:6c:f8:aa:c6:34:a2:35:
14:04:78:89:1a:bc:8e:d5:6a:75:6c:88:0f:8e:7d:d4:b1:18:
74:b0:78:29:40:96:fe:53:89:67:2e:6d:25:00:8e:bc:68:7d:
55:db:19:61:18:4e:f0:7c:d0:b4:d3:aa:df:06:bd:61:c8:11:
2b:3c:65:b6:5e:8c:df:0c:13:20:f3:de:f4:94:c0:e4:ca:09:
f2:4b:c6:43:92:97:9b:52:bc:39:c1:b2:c1:a4:02:61:22:44:
ef:d0:b0:2c:7e:e2:44:0e:97:c8:fe:f3:02:4c:b8:30:a8:25:
a6:69:20:18:31:88:93:af:b3:68:c6:cf:a9:66:02:a2:22:be:
ce:db:5e:52:85:9a:73:27:f3:c3:d8:60:2b:b0:71:e0:d4:62:
25:88:bd:be:4c:37:e2:82:a2:f9:36:fc:b8:c6:4b:43:10:de:
f8:af:64:f4:a3:72:b7:e8:55:b1:d3:be:6d:54:6f:94:41:40:
b0:09:a7:9f:fe:fa:1a:08:59:c0:56:c0:b0:2e:4d:f8:dc:ce:
ca:cc:63:f7:39:c3:3e:4a:4d:92:91:3b:71:8f:0a:4e:99:8b:
47:d1:4b:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:21:28 2025 by rpki-client