Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
File: nhuhZT_KfIAXI8pG_0Qua6wekaA.mft (raw, json)
Hash identifier: 5rAzVvm9wIlY5rWNs4MEGe1bFoZGPhtrgQgeT+9AowU=
Subject key identifier: 80:A2:EF:4D:8D:4B:6B:20:BB:D3:45:6F:E8:ED:79:E7:9A:AE:B1:E9
Authority key identifier: 9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
Certificate issuer: /CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Certificate serial: 0198D65F4DB37D50C3C33F282070676E44BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
Manifest number: 08C2
Signing time: Sat 23 Aug 2025 10:00:26 +0000
Manifest this update: Sat 23 Aug 2025 10:00:26 +0000
Manifest next update: Sun 24 Aug 2025 10:00:26 +0000
Files and hashes: 1: cb8dWgekdgTmGEn_puzoSrtajs0.roa (hash: klMt7aeT4NJnkoShXspgSHaq5Jk7n53EuU54bLRTaLc=)
2: nhuhZT_KfIAXI8pG_0Qua6wekaA.crl (hash: TjFnnj6nVhN+Ng0Htp8rebh+slhIMG5AkuMRb0Of6U4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:4d:b3:7d:50:c3:c3:3f:28:20:70:67:6e:44:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Validity
Not Before: Aug 23 10:00:26 2025 GMT
Not After : Aug 24 10:00:26 2025 GMT
Subject: CN=80a2ef4d8d4b6b20bbd3456fe8ed79e79aaeb1e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:81:f4:28:0d:01:04:8a:d5:cc:05:0b:4a:fa:
6a:39:d5:3c:f9:ff:49:a3:0e:c0:62:d0:f8:a2:6f:
ad:68:14:46:06:7a:a0:8a:46:12:cc:89:c6:df:2d:
5c:a5:fb:63:2f:a6:80:31:57:71:02:5b:20:bc:91:
b0:97:9b:ed:1b:0a:c2:f8:84:d1:af:b3:22:12:1b:
70:58:75:fd:03:2d:d1:65:41:4d:75:d0:64:50:fc:
35:2c:19:44:6f:53:d3:5f:a1:ea:2f:ff:a4:ef:c0:
be:71:cf:cb:6c:c1:95:b5:ee:b9:74:37:10:46:3c:
61:c5:2b:27:da:3d:36:af:e4:3c:70:63:36:dd:89:
01:40:39:c6:af:85:56:cf:a2:e6:c9:2f:5d:d8:4f:
c3:2d:61:41:b5:f8:32:ca:f0:93:9f:a8:9e:d6:e2:
52:d8:ef:8d:5a:ba:b4:a3:3c:54:cd:24:c6:83:e9:
d6:14:49:58:45:79:a9:ff:8c:6e:a4:5a:f6:69:5d:
18:3d:d8:5d:5d:0f:32:8f:a9:2c:e8:c1:59:7b:93:
95:51:34:ec:44:da:e0:35:95:b9:46:09:0c:8d:c6:
a3:52:1e:dd:bf:bb:aa:86:29:bf:09:b8:da:ff:65:
4e:b8:f1:ff:5c:04:cf:d6:24:fd:3f:f8:b7:10:c4:
36:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A2:EF:4D:8D:4B:6B:20:BB:D3:45:6F:E8:ED:79:E7:9A:AE:B1:E9
X509v3 Authority Key Identifier:
keyid:9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:c8:84:f1:a9:0d:9b:e6:83:5c:ed:62:71:bc:30:89:0d:f7:
c0:fd:7b:43:f3:ff:27:39:10:45:52:7e:52:15:57:48:ef:4f:
6c:dd:5e:f7:f1:2b:be:e7:6d:c7:36:69:2e:82:48:67:ad:d1:
01:d7:a7:e0:3e:66:ac:4d:50:0a:4e:f8:bc:a9:ff:cd:75:9b:
e0:af:f2:0b:f2:e2:ca:df:d0:1b:de:6a:46:0e:33:b2:10:84:
94:91:d6:9c:6d:21:b4:e7:5b:fa:10:03:99:7a:42:a1:43:32:
d1:be:c7:0d:25:6f:bf:30:ad:45:db:33:4f:6b:21:ee:88:c5:
fd:2f:52:aa:60:43:e6:60:c1:93:10:d8:b5:9a:3c:22:f1:b3:
83:a5:6a:fa:0b:5b:1d:86:fb:e1:b4:55:70:6b:9f:53:7f:5c:
90:ea:22:81:42:93:78:bd:df:14:40:36:e6:2e:fd:d8:23:9c:
a1:82:82:5b:05:bc:2b:00:6b:10:d0:12:91:74:50:62:c6:55:
a6:e8:a5:db:16:a5:ea:6c:3c:f6:6c:02:47:b2:a0:51:7d:a6:
d3:94:77:f6:2c:b9:d4:54:60:54:bd:af:2d:2b:64:6d:e2:4f:
83:0f:c3:2e:3c:2c:5b:6e:36:69:b1:60:0e:b3:58:91:03:69:
9f:80:82:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:30:40 2025 by rpki-client