Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
File: nhuhZT_KfIAXI8pG_0Qua6wekaA.mft (raw, json)
Hash identifier: lx+k3lUwzkwyxBA2EFP2lDJ3DfzN3FPX7PLKWAhLrRU=
Subject key identifier: 4A:84:91:53:BE:39:E1:29:DA:A4:98:59:22:E1:E9:52:50:9C:F8:8C
Authority key identifier: 9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
Certificate issuer: /CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Certificate serial: 0199FBEACF463781131658E711ACA914BE97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
Manifest number: 095A
Signing time: Sun 19 Oct 2025 10:01:33 +0000
Manifest this update: Sun 19 Oct 2025 10:01:33 +0000
Manifest next update: Mon 20 Oct 2025 10:01:33 +0000
Files and hashes: 1: cb8dWgekdgTmGEn_puzoSrtajs0.roa (hash: klMt7aeT4NJnkoShXspgSHaq5Jk7n53EuU54bLRTaLc=)
2: nhuhZT_KfIAXI8pG_0Qua6wekaA.crl (hash: pkavGiAY5h5hEeVAaLLxYkEMt3RjxNp64G845Px9zqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:cf:46:37:81:13:16:58:e7:11:ac:a9:14:be:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Validity
Not Before: Oct 19 10:01:33 2025 GMT
Not After : Oct 20 10:01:33 2025 GMT
Subject: CN=4a849153be39e129daa4985922e1e952509cf88c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:92:17:78:e3:23:bf:d7:6c:9c:0f:fb:64:84:
4e:a5:7e:64:64:6d:19:08:d3:eb:cc:21:fb:b8:81:
62:ac:1c:12:a5:6f:1e:0b:85:cc:4b:8a:6f:74:41:
1f:91:41:35:88:2f:0c:f2:63:cf:d6:a1:7a:28:50:
15:38:20:d1:f1:21:8d:69:b1:72:0b:57:bc:8f:1a:
14:5a:52:e3:8f:65:75:79:34:85:03:95:78:46:09:
36:9f:fa:0c:c9:33:51:f6:2f:9a:ca:22:76:dd:06:
ea:2a:8b:b5:f9:67:50:8e:01:95:31:0d:4c:1d:a1:
60:af:24:c4:2c:3c:4b:12:48:9e:6a:08:4c:0f:22:
f7:d8:da:0e:08:48:b9:d5:d6:3c:30:d5:5d:ee:8a:
b0:f6:72:d9:29:bc:f0:44:6c:67:f3:7a:b8:6b:17:
a3:b3:1f:6a:a0:25:39:56:f1:71:12:a3:fe:fe:4b:
5b:85:76:13:75:eb:f3:d3:ac:a2:7a:02:86:2d:b8:
28:b5:57:b6:b4:81:2f:98:3c:e1:ff:33:d7:05:21:
97:3b:b7:bf:4a:70:b4:79:a4:39:c4:5c:bb:16:e2:
3a:97:02:74:f0:c9:3b:23:d7:ea:de:ae:d1:21:44:
53:e6:8d:8f:cb:fa:11:ea:d9:ee:b7:27:82:60:20:
5a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:84:91:53:BE:39:E1:29:DA:A4:98:59:22:E1:E9:52:50:9C:F8:8C
X509v3 Authority Key Identifier:
keyid:9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:33:46:dd:fa:53:82:0a:9d:3a:14:d4:fb:f1:9d:ab:fc:0b:
0e:48:c4:d5:4e:4a:87:c7:f8:d9:e6:cb:80:7b:8e:25:98:93:
fc:90:de:ee:6e:c8:8f:96:41:e3:cb:a9:e2:f9:92:5f:15:e0:
72:c3:e5:e1:c8:5f:9d:b5:01:3d:2c:1d:83:7e:d4:9e:00:2d:
06:e4:57:8e:af:86:5e:f0:aa:b0:79:f2:a3:d5:55:2f:67:41:
20:4d:c7:d4:5f:dc:48:2c:15:4b:e8:3a:f5:12:01:65:93:e2:
2a:20:a4:11:e8:b8:90:88:03:1e:a8:db:b2:37:49:e8:24:fd:
e8:0e:21:17:64:fb:0e:1f:03:40:5c:cc:c7:d7:7b:ef:03:68:
6d:59:51:23:2f:0d:17:0c:0b:28:bd:67:88:fc:c3:76:6a:c5:
7a:17:3d:57:f7:f5:49:0d:0a:cb:d6:6c:99:68:5e:90:10:42:
ec:e6:54:e0:07:bb:55:58:34:87:a4:8a:f8:93:bd:55:1d:ce:
f9:05:a4:cc:83:51:0a:05:6a:d9:b8:69:12:b0:71:ea:4e:db:
c5:48:00:14:98:ec:c8:aa:c9:7c:65:55:a9:76:4d:fd:b7:4c:
15:06:79:7c:35:13:f4:61:48:da:db:a9:cc:63:bd:da:b1:29:
5b:06:10:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:42:44 2025 by rpki-client