Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
File: nUkl6XatC_tz4JfaaRfoD1vObIw.mft (raw, json)
Hash identifier: q1SPmN5wvnZrgdaA6P9eziF03ZT7/unkmr8AGISQsZI=
Subject key identifier: DD:F7:DF:AE:A3:2D:B8:05:05:44:0B:06:D3:4C:BF:5D:96:92:99:B6
Authority key identifier: 9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
Certificate issuer: /CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Certificate serial: 0198D84FB944DDB4E26C49287EE664450441
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
Manifest number: 10A9
Signing time: Sat 23 Aug 2025 19:02:40 +0000
Manifest this update: Sat 23 Aug 2025 19:02:40 +0000
Manifest next update: Sun 24 Aug 2025 19:02:40 +0000
Files and hashes: 1: 7Wfm8N_BNNM1ZIAzk65u_y1CoxQ.roa (hash: vGKhwTsZ6bUD5wem1afZhHCNpuoU8y3whIP7i2K9fc8=)
2: nUkl6XatC_tz4JfaaRfoD1vObIw.crl (hash: fHtddOuCr21k/vOkGlGR3XuU/eZOgVOeMoME6nIW6NA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:4f:b9:44:dd:b4:e2:6c:49:28:7e:e6:64:45:04:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Validity
Not Before: Aug 23 19:02:40 2025 GMT
Not After : Aug 24 19:02:40 2025 GMT
Subject: CN=ddf7dfaea32db80505440b06d34cbf5d969299b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:cc:8e:f5:c0:e7:c9:7c:eb:d8:a1:ba:62:ec:
74:59:88:ab:b8:7b:8b:40:f8:b4:56:cf:fc:ba:68:
e1:39:b5:90:46:79:8f:da:98:0e:d6:fd:06:1c:38:
55:5b:c9:90:4a:59:f0:26:0d:7c:58:26:0a:99:d1:
de:f8:a4:45:f6:eb:cd:b0:a8:af:68:80:2d:b0:5f:
33:fe:3a:24:35:0f:10:e7:34:09:dc:08:ef:b5:85:
20:0c:a0:62:48:d8:34:3a:72:44:9e:0b:04:94:76:
d1:a1:32:60:a1:e0:a8:3a:f8:c5:42:ab:2f:a4:c0:
e6:73:27:d7:54:94:ea:33:e5:2e:13:61:8c:4d:6c:
09:09:d0:63:6d:44:e6:dd:eb:b3:ee:02:f3:2a:a9:
9e:aa:93:27:97:8c:39:fb:63:4d:0d:6f:e0:49:5e:
1c:8f:24:a3:1a:72:89:63:68:78:f4:3a:ac:f6:8f:
c6:d5:b7:b6:05:2e:6f:e8:b2:72:15:d1:41:20:7b:
3c:dd:61:6a:53:33:a0:28:ce:e3:11:af:95:4a:bd:
1f:aa:e3:cf:1a:a3:cd:b1:bb:25:3d:a4:c4:cc:ca:
1d:55:6d:73:21:09:ed:d2:aa:c0:48:74:f2:ed:d6:
d7:c2:00:ea:92:d5:62:94:8a:87:ba:69:61:00:fa:
38:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:F7:DF:AE:A3:2D:B8:05:05:44:0B:06:D3:4C:BF:5D:96:92:99:B6
X509v3 Authority Key Identifier:
keyid:9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:51:b4:52:74:12:67:0a:e3:fe:24:66:0f:97:d7:4e:3c:ce:
02:91:98:ba:8c:71:54:5b:f3:7f:3e:03:f5:c0:22:6f:93:17:
a5:67:9d:09:61:d2:3e:72:22:64:53:15:9d:ed:cf:65:77:e9:
8a:0f:c9:4f:0b:5e:d3:d2:55:7b:17:bf:43:54:c4:1b:ad:06:
35:63:9f:41:46:5d:cb:d5:47:86:65:88:36:d3:95:02:c6:96:
64:0b:ca:48:9c:6d:b9:bd:8b:a2:a3:22:8d:ab:84:57:25:03:
42:04:4b:ac:75:4a:22:2c:32:c6:1a:d1:b7:d2:6a:fa:54:be:
ca:2b:4d:c5:15:80:40:2a:fc:6b:71:4f:bc:a8:1a:8d:00:8d:
ec:26:fd:00:6e:12:97:40:02:28:8b:6d:d3:fa:ed:a4:fb:1b:
71:89:3a:20:70:e0:84:24:0e:88:05:80:c6:9c:64:37:0a:2e:
3a:dd:33:a9:08:6d:43:08:a1:53:91:b1:2b:8d:99:f2:83:c6:
47:eb:9a:9f:c1:b4:34:24:a7:41:66:c5:cd:90:48:ef:8b:28:
fe:f0:ef:cc:b5:7e:f9:ff:9a:ef:9e:4a:ca:c9:23:78:50:90:
23:aa:73:88:e3:54:8e:ba:1e:58:e7:ac:f5:85:bb:7f:49:a8:
18:26:8d:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:51:47 2025 by rpki-client