Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft
File: nGCyJ8t1doofV4Vuw1M8loSCYZw.mft (raw, json)
Hash identifier: AGA/TQnWHGJf3WL14n0mpUdH7KQjJuGJE8eBmp8yuaQ=
Subject key identifier: 5E:4A:85:C3:B6:06:22:C6:25:E6:F2:1B:3E:0C:9F:F1:8D:0E:CD:3A
Authority key identifier: 9C:60:B2:27:CB:75:76:8A:1F:57:85:6E:C3:53:3C:96:84:82:61:9C
Certificate issuer: /CN=9c60b227cb75768a1f57856ec3533c968482619c
Certificate serial: 0199221E98CA95E34A25A6A2425E2AFA7106
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGCyJ8t1doofV4Vuw1M8loSCYZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft
Manifest number: 1523
Signing time: Sun 07 Sep 2025 03:00:54 +0000
Manifest this update: Sun 07 Sep 2025 03:00:54 +0000
Manifest next update: Mon 08 Sep 2025 03:00:54 +0000
Files and hashes: 1: nGCyJ8t1doofV4Vuw1M8loSCYZw.crl (hash: Iim2nCjf83M1L/3ml2KOKxrd7cuCFZENbypmglqwX5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nGCyJ8t1doofV4Vuw1M8loSCYZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:98:ca:95:e3:4a:25:a6:a2:42:5e:2a:fa:71:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c60b227cb75768a1f57856ec3533c968482619c
Validity
Not Before: Sep 7 03:00:54 2025 GMT
Not After : Sep 8 03:00:54 2025 GMT
Subject: CN=5e4a85c3b60622c625e6f21b3e0c9ff18d0ecd3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7c:29:ce:d9:3e:4c:67:c9:a3:f2:ef:39:68:
c1:37:32:3a:4a:12:d8:df:ff:91:8a:10:6a:3f:b4:
36:7e:ba:0d:99:9e:c6:4d:f0:34:68:de:17:f4:b1:
75:0c:d2:e8:36:2c:75:49:21:ca:a4:07:ea:1c:33:
da:26:24:f2:32:ab:ae:d9:e0:07:03:79:2f:4d:3f:
d5:75:c4:92:46:1e:e1:06:8e:e9:39:56:2e:d9:ed:
7a:cd:40:fe:71:d3:84:2c:96:6f:a3:60:ec:34:ac:
de:cd:32:2d:27:39:87:17:9e:04:09:7c:f1:d2:e3:
bf:bf:63:19:70:5c:94:5a:e4:06:3b:ae:28:fb:dc:
28:66:0a:ce:f3:63:19:af:44:a7:3b:2c:26:41:12:
e6:19:73:4e:fd:ed:2f:d8:39:d5:71:e7:11:ff:83:
16:8a:82:4d:b8:bf:0c:c3:49:51:4d:b7:95:08:3e:
d8:0a:95:32:0c:96:ca:96:17:2d:21:6f:b5:85:aa:
41:ad:62:b7:69:9f:e6:e2:b2:b7:83:48:c1:ac:87:
9e:e4:73:05:64:94:12:ba:88:a3:4d:bf:9c:84:4b:
8a:f2:e3:5c:f2:dd:78:88:91:30:d2:2a:c8:25:47:
73:75:ca:13:fc:e1:b8:62:7d:8d:8c:ca:a6:ad:95:
12:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:4A:85:C3:B6:06:22:C6:25:E6:F2:1B:3E:0C:9F:F1:8D:0E:CD:3A
X509v3 Authority Key Identifier:
keyid:9C:60:B2:27:CB:75:76:8A:1F:57:85:6E:C3:53:3C:96:84:82:61:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGCyJ8t1doofV4Vuw1M8loSCYZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:0f:67:1a:3d:48:b7:3e:4f:75:15:43:d9:06:88:06:11:87:
60:c8:78:b7:35:31:f3:c3:ef:6c:cd:b6:7e:d2:6e:f2:e6:d0:
a3:df:7c:28:04:62:e8:8b:85:fe:91:a3:01:66:0e:5b:ea:71:
f4:b5:20:c2:dc:3e:5c:ed:6c:d3:b3:e4:af:bd:b4:02:1a:5e:
a9:16:85:f3:c5:2f:f5:64:bc:53:61:c5:bc:d6:e2:da:12:03:
ee:ab:d4:7f:5d:8b:2a:8b:c7:26:22:ad:01:ef:96:47:72:2d:
5f:cc:b0:1b:7d:fb:cc:64:81:31:4f:5b:ab:18:b5:98:fe:f2:
3a:8c:dd:cf:67:87:ca:72:3e:07:6a:87:36:4a:e1:e3:48:04:
22:96:02:87:8b:da:c6:a2:1b:5a:96:51:a4:05:13:29:6f:6e:
f5:4c:98:05:29:55:79:1b:87:d9:26:1e:80:60:c3:1d:89:a7:
bc:eb:11:a8:af:f1:9d:d5:c9:e8:bc:ff:11:f7:66:7e:3f:97:
89:16:a8:ad:f9:d4:3b:40:1d:74:3f:42:21:82:5e:c9:4e:d2:
d0:d4:f7:a2:22:6c:33:f4:16:6d:49:ad:ba:b6:7d:c0:d9:8d:
7f:53:ee:46:42:11:e1:f1:06:98:eb:07:78:05:bf:45:e2:62:
3d:cd:ca:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:27:28 2025 by rpki-client