Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.mft
File: nHIayAejJvhxu6oYSWPNYCtcwtY.mft (raw, json)
Hash identifier: gg5kAaXQts1dNCDC7Mlw3HKWzmL32lWj6Ch+cnBSscA=
Subject key identifier: 30:E3:72:5F:E8:C2:36:64:F2:CA:AA:B8:EC:AD:F0:98:3D:5D:19:CF
Authority key identifier: 9C:72:1A:C8:07:A3:26:F8:71:BB:AA:18:49:63:CD:60:2B:5C:C2:D6
Certificate issuer: /CN=9c721ac807a326f871bbaa184963cd602b5cc2d6
Certificate serial: 0199FCFD4DD2C11845BF1A2BB0D9A7C2EB88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nHIayAejJvhxu6oYSWPNYCtcwtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 15:01:22 +0000
Manifest this update: Sun 19 Oct 2025 15:01:22 +0000
Manifest next update: Mon 20 Oct 2025 15:01:22 +0000
Files and hashes: 1: 9jfoHjHhXlQUp0QHnvy8Xfhd38g.roa (hash: /upMq7FxxL/VBqHPpqBK/s+Z/2QbORhxGy0ijXbQbKE=)
2: nHIayAejJvhxu6oYSWPNYCtcwtY.crl (hash: 55PNNQifIlWzpqyKIK6aHOHla1i/dXBZpf+8b7kc1go=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.mft
rsync://rpki.ripe.net/repository/DEFAULT/nHIayAejJvhxu6oYSWPNYCtcwtY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:4d:d2:c1:18:45:bf:1a:2b:b0:d9:a7:c2:eb:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c721ac807a326f871bbaa184963cd602b5cc2d6
Validity
Not Before: Oct 19 15:01:22 2025 GMT
Not After : Oct 20 15:01:22 2025 GMT
Subject: CN=30e3725fe8c23664f2caaab8ecadf0983d5d19cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5e:93:8a:eb:13:60:91:8f:4f:38:c9:8f:fc:
43:35:22:04:f8:d2:80:92:dc:7f:8a:8b:68:88:5e:
ba:4e:61:24:c4:89:56:4c:ca:c2:e2:ef:48:3e:17:
f2:33:a3:21:71:6e:c8:b2:98:f8:23:40:94:db:fd:
ab:87:f9:52:3f:b9:77:df:5f:1b:12:85:56:3c:1f:
6b:66:01:77:29:2e:5a:b7:3a:3e:3c:60:78:1c:92:
29:32:7e:8e:34:fb:18:8b:08:ea:6f:7c:8a:c1:12:
d2:9e:48:e4:e1:e6:24:f6:23:1c:09:ad:55:06:68:
53:ac:98:4b:98:37:b4:cc:e2:9f:d7:39:cf:2d:b7:
5a:62:60:06:57:f8:e3:57:7b:2a:ad:0a:fb:7c:98:
36:76:85:ca:c6:89:cc:1a:94:f4:3f:7b:dd:04:9b:
58:8b:df:f0:63:ed:48:dc:15:2a:19:1b:d1:b6:19:
1e:cb:b4:53:ed:ca:2c:99:86:e9:38:72:79:50:11:
24:8a:17:d5:73:64:f7:f5:9b:3b:e2:09:3a:7a:f0:
9e:93:c1:c6:ad:38:bb:44:81:be:5c:d6:9c:d8:90:
98:0c:ef:60:33:22:5f:4a:b7:0d:11:26:fa:ee:57:
35:c9:92:71:67:b9:b9:33:bf:97:65:60:56:1b:b9:
35:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:E3:72:5F:E8:C2:36:64:F2:CA:AA:B8:EC:AD:F0:98:3D:5D:19:CF
X509v3 Authority Key Identifier:
keyid:9C:72:1A:C8:07:A3:26:F8:71:BB:AA:18:49:63:CD:60:2B:5C:C2:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHIayAejJvhxu6oYSWPNYCtcwtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:36:10:bb:f7:44:17:d0:a7:fc:a4:d9:67:5f:4c:05:1f:46:
db:33:50:8d:71:a8:3e:a7:dc:db:77:df:36:6d:02:88:55:db:
e0:77:2e:50:33:22:35:43:e9:f1:7a:d8:7a:3d:05:fc:0c:e5:
5a:1c:88:3d:ce:35:bd:86:cb:71:cc:39:6f:bf:75:49:8b:13:
6f:4c:86:9a:ad:b9:59:58:be:9e:97:68:48:79:ee:ac:f1:0c:
f9:3d:cf:86:dd:af:f6:b2:aa:cf:83:58:5f:f6:fb:e4:60:cb:
3e:d3:9d:ec:60:4d:5b:4b:c8:0d:35:33:43:81:4f:ff:1a:df:
93:28:35:2a:fa:8a:f6:a3:18:ff:c9:8f:37:2b:5e:84:4f:73:
d2:08:8d:09:f5:cf:c3:52:b9:6d:b1:af:7c:18:77:71:a2:df:
cf:3b:39:4d:c2:7b:4c:2d:ee:eb:75:1b:1a:da:52:65:1a:58:
7f:4a:5c:06:fa:8c:e6:ed:fa:8b:0f:cc:8c:57:c8:87:a4:53:
cc:cd:b8:43:2a:85:60:9a:9f:4e:a4:e9:e3:20:41:a1:88:a6:
13:c4:5e:c0:7b:79:15:f6:41:65:f1:98:02:21:0b:97:62:dc:
6f:66:f9:de:bc:1b:ac:44:42:07:38:ed:7e:d9:09:e8:89:46:
6b:de:24:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:23:24 2025 by rpki-client