Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft
File: n7bU2YfQBKAPopfmnCaOt189mkA.mft (raw, json)
Hash identifier: Y0aNRP4ZzzI2S3HKMSiO8VdqJRjAj2yEVpFuWv5JGCA=
Subject key identifier: E6:BE:91:B0:15:38:3E:17:C3:3B:1D:67:2A:54:36:72:16:1F:51:15
Authority key identifier: 9F:B6:D4:D9:87:D0:04:A0:0F:A2:97:E6:9C:26:8E:B7:5F:3D:9A:40
Certificate issuer: /CN=9fb6d4d987d004a00fa297e69c268eb75f3d9a40
Certificate serial: 0199FD343BB626DE73989DF7880527D4AE73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft
Manifest number: 0EC1
Signing time: Sun 19 Oct 2025 16:01:22 +0000
Manifest this update: Sun 19 Oct 2025 16:01:22 +0000
Manifest next update: Mon 20 Oct 2025 16:01:22 +0000
Files and hashes: 1: 5ZNOGBQ9w8dTp0XQhpuUk8zzApg.roa (hash: 1/+Fm1r/KA+hNLAy+y/H8/1fP0WyouANNJuTvhP3iNk=)
2: n7bU2YfQBKAPopfmnCaOt189mkA.crl (hash: 4kw5D7l8pPmW6iv4UhtUMjM/uaAZL4+PDsVIDQyxdqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft
rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 16:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:3b:b6:26:de:73:98:9d:f7:88:05:27:d4:ae:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fb6d4d987d004a00fa297e69c268eb75f3d9a40
Validity
Not Before: Oct 19 16:01:22 2025 GMT
Not After : Oct 20 16:01:22 2025 GMT
Subject: CN=e6be91b015383e17c33b1d672a543672161f5115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:5b:cb:05:ae:38:a1:1c:ae:4c:1a:e4:4b:7f:
79:0f:c5:09:17:86:81:f8:0b:42:3a:e7:23:6a:2c:
46:04:c1:83:73:b6:33:d9:f7:03:60:c0:1c:0a:0d:
18:7d:d4:ec:38:2a:4e:6d:b3:82:02:63:5c:75:4c:
8d:c8:8b:a6:0c:00:0b:1e:77:e3:aa:69:2a:5e:ee:
49:b3:05:dd:19:2c:b6:b5:e4:00:1f:99:29:2a:a4:
b2:20:25:89:f2:a2:ca:ed:cc:5b:d7:b5:34:28:80:
33:a4:85:b0:5e:5a:bf:95:99:8e:e2:80:b9:6c:41:
3a:85:dc:96:2d:86:4c:bd:21:ff:57:a4:1a:81:18:
f9:87:21:77:04:ae:67:0e:57:e2:b6:d2:74:c7:7e:
ae:77:c8:0e:90:cb:54:11:30:7e:21:fa:09:92:1d:
e8:02:10:33:cf:e1:9f:a1:9e:48:3d:bc:89:af:7e:
a3:6f:4a:67:a4:62:40:0b:42:28:2f:6d:4c:a4:83:
83:e8:16:41:eb:3f:e9:0b:e1:3c:9c:cf:f1:e4:df:
ae:35:75:23:94:91:aa:aa:38:64:d7:ad:67:bd:04:
76:5c:f7:ba:c6:64:80:35:35:be:89:5a:f2:47:4b:
77:36:1c:de:ea:7e:bd:f3:6b:09:75:b6:eb:ad:5c:
dc:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:BE:91:B0:15:38:3E:17:C3:3B:1D:67:2A:54:36:72:16:1F:51:15
X509v3 Authority Key Identifier:
keyid:9F:B6:D4:D9:87:D0:04:A0:0F:A2:97:E6:9C:26:8E:B7:5F:3D:9A:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:a5:85:70:17:c9:11:df:cd:51:5b:99:f7:c1:b8:6d:6c:e6:
9b:b8:63:eb:00:93:f7:7d:de:43:d7:95:56:18:a6:b2:8b:e6:
ee:9f:cc:70:bb:4e:ed:85:86:ea:3e:9d:7e:32:c4:2a:25:59:
b9:85:3b:c0:3e:ff:cc:a0:ca:a6:f5:11:be:14:17:f3:e5:ff:
84:9f:c2:29:f6:1a:99:24:9a:a4:c7:ff:ba:b3:6c:ac:f4:5c:
5c:91:5a:95:86:c8:b8:3e:66:19:95:4f:1c:02:a0:c1:0e:18:
44:c4:29:c3:82:7b:0e:b3:4c:cf:13:51:09:1c:cb:fa:d3:a7:
3a:bf:39:39:4a:86:91:51:a8:97:4c:b9:39:1c:1b:16:34:4a:
59:a7:fa:75:99:d0:36:be:4f:56:b0:2a:80:3e:a5:0f:0a:f7:
73:ff:b9:90:cb:5f:8b:86:a7:74:b2:2a:f6:47:29:b8:cf:b6:
35:1c:11:26:1d:a5:22:95:1d:5b:cf:6a:8b:70:f9:bb:b1:30:
fd:f6:bd:66:ce:6f:e3:72:c8:c9:3a:4e:55:45:71:af:54:8e:
41:af:9f:ae:e7:27:6a:39:7d:82:63:34:48:22:97:d5:e1:d5:
07:47:a5:7f:79:78:17:c6:f3:93:6a:08:30:19:83:54:94:52:
61:13:64:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:12:36 2025 by rpki-client