Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
File: nHLoTFLlxJCdvHAqodIS1HiHX60.mft (raw, json)
Hash identifier: LDvgRA7teJ58peYlTV1a4vBPIxF3u1j6wxpjomW9MX4=
Subject key identifier: F9:BD:E7:A7:12:A2:09:7C:81:36:4B:FE:4A:6D:57:A2:38:23:63:AF
Authority key identifier: 9C:72:E8:4C:52:E5:C4:90:9D:BC:70:2A:A1:D2:12:D4:78:87:5F:AD
Certificate issuer: /CN=9c72e84c52e5c4909dbc702aa1d212d478875fad
Certificate serial: 0198D66070B18199AD4FC15DA469358E95B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
Manifest number: 0635
Signing time: Sat 23 Aug 2025 10:01:41 +0000
Manifest this update: Sat 23 Aug 2025 10:01:41 +0000
Manifest next update: Sun 24 Aug 2025 10:01:41 +0000
Files and hashes: 1: MJgreWjojTG3TWAm0IOsT3PX7yE.roa (hash: QQOCbVX4ydh8RHwVZnu9QI+n2Ns0Q1CadZGcMjFSReI=)
2: nHLoTFLlxJCdvHAqodIS1HiHX60.crl (hash: pu5SDi19JthSRMbNXPLCVofZ5Ir+IA2xVtk/Mi3xxs0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:70:b1:81:99:ad:4f:c1:5d:a4:69:35:8e:95:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c72e84c52e5c4909dbc702aa1d212d478875fad
Validity
Not Before: Aug 23 10:01:41 2025 GMT
Not After : Aug 24 10:01:41 2025 GMT
Subject: CN=f9bde7a712a2097c81364bfe4a6d57a2382363af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c1:7a:6c:ec:85:e0:7a:39:8c:c2:df:70:5a:
3c:c6:05:5a:e1:8e:8f:32:b5:67:d9:40:94:db:40:
4b:71:e2:4a:ad:84:38:84:1a:65:8c:0b:90:89:d9:
39:9e:e1:a4:ea:e9:13:96:3e:fb:93:2c:02:14:27:
04:d2:01:67:64:f7:0d:ed:8d:d5:62:09:85:0f:81:
c8:e1:5b:63:0d:72:c1:4b:0d:49:a1:de:f6:ff:d3:
b7:16:b2:0c:7f:6c:d2:6b:76:3b:65:73:86:a1:a9:
89:41:a4:7d:26:f6:f1:0b:23:91:82:ff:bd:41:d5:
9e:e3:70:9d:44:ed:de:1b:5d:d8:43:51:05:ce:53:
8f:a4:d3:00:43:10:e5:4d:8d:ac:c2:5c:ac:f6:42:
97:55:e8:d2:af:75:0a:1c:a7:6c:8b:e9:7f:b6:a2:
d5:31:be:53:a5:63:87:b6:7d:50:3e:cc:f2:6b:1e:
6d:c4:f1:1e:85:79:44:bc:48:9e:6a:19:b6:0b:83:
1c:26:0c:fa:da:f5:27:aa:f8:83:bf:10:18:13:bb:
f4:6c:d1:24:9d:e4:ac:34:ae:c3:65:28:1a:9a:a1:
80:14:f9:04:29:0e:f8:c3:5b:c8:e6:20:71:bd:9b:
9f:f0:e4:f4:a3:0e:50:c4:c9:ae:7d:8a:5c:1e:3e:
37:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:BD:E7:A7:12:A2:09:7C:81:36:4B:FE:4A:6D:57:A2:38:23:63:AF
X509v3 Authority Key Identifier:
keyid:9C:72:E8:4C:52:E5:C4:90:9D:BC:70:2A:A1:D2:12:D4:78:87:5F:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:d1:f9:2d:8a:cb:d6:ab:d1:ae:ba:79:8c:88:04:ce:53:be:
8c:53:5f:5e:43:7d:d0:e9:26:8c:c9:56:7f:1f:f3:72:3f:3b:
8b:0e:23:72:c2:2e:2f:c9:1a:a3:ed:8a:29:05:ce:bb:a1:fa:
2d:ac:a6:9a:4f:f9:a7:ef:37:0f:95:90:b6:89:59:42:d9:ea:
c3:1c:d8:0a:18:8c:9c:25:fc:c5:9e:98:12:3a:2d:59:5a:f8:
18:f9:4d:c6:51:38:bd:8b:33:2b:7d:39:13:3d:96:42:3f:55:
c4:8f:37:de:cb:cf:04:a5:a2:16:e4:31:49:a4:95:97:0f:30:
ce:38:03:6d:63:35:02:f1:b6:56:55:24:e7:bd:16:b2:a2:a1:
50:0f:a8:01:bf:19:e9:69:04:e5:77:1d:ca:cb:84:1e:1e:36:
fb:52:f7:09:60:0a:8a:e3:a4:b3:6b:60:ae:1e:05:b8:91:33:
b9:85:c5:1b:12:f7:12:a1:c8:c2:77:22:f4:10:bd:ec:40:6c:
64:45:4d:6f:d1:b2:ac:5d:b5:63:9a:c8:30:86:0a:ea:3e:9b:
58:29:b4:4c:88:73:5c:e7:cb:03:1e:f1:3d:14:2f:91:8c:1c:
a6:d6:9b:a9:72:cd:2f:6c:1a:66:74:4c:d3:51:af:9c:6a:2f:
fc:f7:63:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:37:27 2025 by rpki-client