Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
File: nHLoTFLlxJCdvHAqodIS1HiHX60.mft (raw, json)
Hash identifier: ZTBR6SwCtQk+oczFvavgRamI2SYAwMrerHoReT3c5Zk=
Subject key identifier: 47:51:8E:61:B3:FF:B7:03:5A:63:2C:D3:C9:EA:1F:D1:7D:10:29:EE
Authority key identifier: 9C:72:E8:4C:52:E5:C4:90:9D:BC:70:2A:A1:D2:12:D4:78:87:5F:AD
Certificate issuer: /CN=9c72e84c52e5c4909dbc702aa1d212d478875fad
Certificate serial: 0199FBEBF1E11D1BBCD551836656F3F9EB59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
Manifest number: 06CD
Signing time: Sun 19 Oct 2025 10:02:47 +0000
Manifest this update: Sun 19 Oct 2025 10:02:47 +0000
Manifest next update: Mon 20 Oct 2025 10:02:47 +0000
Files and hashes: 1: MJgreWjojTG3TWAm0IOsT3PX7yE.roa (hash: QQOCbVX4ydh8RHwVZnu9QI+n2Ns0Q1CadZGcMjFSReI=)
2: nHLoTFLlxJCdvHAqodIS1HiHX60.crl (hash: hcmzfLGWQDx6b/NkxZILn0glIalCq8LMoGyD1eemaLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:f1:e1:1d:1b:bc:d5:51:83:66:56:f3:f9:eb:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c72e84c52e5c4909dbc702aa1d212d478875fad
Validity
Not Before: Oct 19 10:02:47 2025 GMT
Not After : Oct 20 10:02:47 2025 GMT
Subject: CN=47518e61b3ffb7035a632cd3c9ea1fd17d1029ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3a:98:e3:c0:dc:18:11:d4:b1:22:49:68:fe:
e6:b1:21:c4:d3:91:fa:71:bb:05:cb:8d:c3:56:e5:
19:38:8c:8f:bf:e4:9e:b1:f5:d7:88:7c:6b:87:31:
b8:93:14:dd:3b:48:5e:a2:e4:be:f0:71:1f:2b:21:
67:c4:0e:92:df:12:92:ef:21:dc:19:76:bd:8a:d3:
c7:09:9b:ed:59:49:88:04:4c:a5:a7:57:8a:53:4c:
8c:f7:f8:c6:2d:b6:ed:45:fc:f9:df:1e:f0:73:7a:
01:20:31:60:19:b0:c1:69:96:31:11:f5:76:cc:f4:
b8:46:3b:7c:d3:99:21:a7:51:5b:d6:bf:df:44:94:
c2:79:0a:a0:d6:81:38:45:b5:fb:37:ba:37:4f:7d:
98:44:58:a6:15:68:47:b7:f8:53:e5:bf:91:8a:59:
ee:e1:bb:7e:dd:fe:9d:4a:91:48:68:f7:cd:43:94:
89:5e:13:8d:db:35:4f:54:f0:9f:37:e3:70:3d:52:
92:33:8d:4b:f8:3e:3b:4f:58:60:1b:ba:7f:fc:9c:
d0:dc:68:23:4a:22:1e:b4:ac:ce:5d:b2:cf:d2:ea:
fa:9a:23:31:b5:0f:c1:e0:bc:19:7a:e5:97:46:17:
1f:c2:6e:3a:c1:38:a4:b4:d6:48:b1:60:28:fc:3b:
82:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:51:8E:61:B3:FF:B7:03:5A:63:2C:D3:C9:EA:1F:D1:7D:10:29:EE
X509v3 Authority Key Identifier:
keyid:9C:72:E8:4C:52:E5:C4:90:9D:BC:70:2A:A1:D2:12:D4:78:87:5F:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:42:bd:83:7e:d4:11:17:29:55:f2:6d:6f:8e:30:66:bf:62:
5c:3c:dc:2b:c1:52:31:bc:fd:67:bb:4b:7b:de:23:3d:4d:8c:
5c:89:6b:d1:80:0f:6e:dd:3b:ce:9b:91:c1:f3:88:28:1c:12:
e5:1d:98:93:de:d8:19:aa:a8:8a:31:2a:e0:77:39:38:10:3f:
19:56:7d:be:76:e3:b9:a3:1c:35:68:82:f6:7d:27:ac:5f:02:
79:35:ed:33:1e:16:3e:18:ae:71:da:c1:98:bb:77:25:4b:00:
11:16:25:5d:33:14:c4:f6:19:99:83:a9:27:a5:27:c9:bb:76:
43:22:04:af:be:98:d6:78:d1:30:97:65:80:b4:da:4f:12:ab:
72:61:40:5a:8f:7e:71:b9:bf:f2:75:9c:d4:17:69:b0:cf:96:
6d:43:17:d1:29:38:1c:a0:e5:aa:29:01:d0:d4:28:54:78:9f:
c3:90:6b:71:f3:54:6a:b7:a8:72:0f:84:55:6b:0e:d5:74:c9:
18:69:7e:52:00:6f:de:d4:6c:c5:88:05:ed:79:c8:ef:86:67:
1b:6c:cd:4a:a3:9c:f0:55:51:7e:e2:b5:d2:56:b4:7a:c4:5a:
09:b0:a8:b0:f4:23:db:c4:09:f0:26:68:c9:d5:3c:3a:b9:bc:
a1:b3:30:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:13:27 2025 by rpki-client