Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
File: nFVnZyAcUPayqVXbah5uAR36XUQ.mft (raw, json)
Hash identifier: Ev3dchBURcs4oYP6HhEt9mOwYmtKe6SyEQ5EB0ZapJM=
Subject key identifier: 31:C5:C4:0C:58:EC:DD:41:63:54:17:22:F9:E7:A6:D5:48:CE:A3:9B
Authority key identifier: 9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44
Certificate issuer: /CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44
Certificate serial: 0198D47263F55E74B37C33092911D0AB34DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
Manifest number: 0B71
Signing time: Sat 23 Aug 2025 01:02:03 +0000
Manifest this update: Sat 23 Aug 2025 01:02:03 +0000
Manifest next update: Sun 24 Aug 2025 01:02:03 +0000
Files and hashes: 1: cmsoMlIRCcbLziNipTUjZc3lrew.roa (hash: a1CFCcY0jADOuS6DTKGkRSmsv5gzH4GzUcir7HG6pUE=)
2: nFVnZyAcUPayqVXbah5uAR36XUQ.crl (hash: /08PlzY9PNL59xMo/nizCZx8x38kBAb+ay9uddlOOUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:63:f5:5e:74:b3:7c:33:09:29:11:d0:ab:34:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44
Validity
Not Before: Aug 23 01:02:03 2025 GMT
Not After : Aug 24 01:02:03 2025 GMT
Subject: CN=31c5c40c58ecdd4163541722f9e7a6d548cea39b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:50:53:3c:39:4e:90:f6:35:a3:af:e5:ef:49:
49:cc:f8:02:5d:94:99:8a:0e:16:fc:3b:67:91:7d:
d0:5b:4f:39:08:0f:17:00:76:49:97:a9:7f:55:1b:
92:25:1c:7d:ab:08:76:cc:4d:ef:06:0d:b3:c5:8e:
18:53:12:52:65:0c:8a:49:ee:ba:37:07:38:ab:74:
38:68:ad:a0:59:9f:c6:f0:6b:5a:ae:79:21:17:22:
b8:79:f9:ff:e6:fb:d9:0b:a2:ed:ae:08:2a:80:ab:
8d:2c:8a:f7:47:99:8c:09:0a:c5:28:45:eb:33:0f:
05:4c:f8:04:ce:21:04:79:84:e0:4a:98:35:e2:c9:
c8:00:b4:56:0a:33:75:13:ac:d6:31:a4:5f:fb:29:
da:d1:d3:d3:51:93:73:41:7c:2a:8a:59:ad:73:41:
62:87:18:8c:84:1f:cb:44:de:0e:33:7f:6d:f1:99:
22:18:1e:14:77:17:ef:d0:68:fb:e7:e1:5a:88:80:
5d:ef:0e:a0:3a:e7:96:e4:02:c7:6b:f3:7a:e0:f3:
bd:7b:22:35:c0:8d:75:83:12:ed:c4:11:92:51:8a:
e2:e5:2b:6b:13:ae:9b:99:19:f0:57:ed:78:31:83:
a0:f3:43:fb:e0:49:d0:d0:7c:8b:16:25:a1:66:c2:
f5:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:C5:C4:0C:58:EC:DD:41:63:54:17:22:F9:E7:A6:D5:48:CE:A3:9B
X509v3 Authority Key Identifier:
keyid:9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:49:5a:13:0a:a0:96:ac:ac:f2:a8:b6:99:74:35:f5:af:0a:
cd:24:e9:d3:d4:76:f1:23:65:e1:a0:99:e3:d0:5a:d6:ef:85:
02:99:71:47:66:cc:96:9f:e9:ec:02:83:91:d6:e5:04:1e:7b:
70:49:0f:89:12:a9:99:46:7c:ed:62:63:fb:07:09:25:e6:fc:
dd:78:5c:31:2d:76:45:da:76:94:f8:f5:54:13:da:9f:b2:36:
4f:34:6d:76:98:fb:3a:94:41:2e:2a:96:cf:00:64:1d:4d:d0:
3a:07:8d:e5:6a:d1:44:7a:71:ad:e6:54:53:a5:7a:23:c0:0f:
ec:c2:fa:71:08:e0:73:21:a7:25:43:d5:12:47:1b:eb:0d:69:
93:20:e9:50:2f:fd:4c:f5:44:12:73:b9:41:8f:38:8a:b6:08:
f5:8b:8b:0e:d4:c5:cd:4c:11:07:49:26:2c:22:78:d5:6a:8b:
57:8a:e9:27:5e:07:cf:76:af:ee:f4:4c:80:7b:97:a9:ad:0f:
e5:46:6e:d5:45:1a:3a:b7:56:26:4f:f5:e0:c4:01:5c:12:6f:
5e:bd:64:db:b8:77:a7:a3:d9:3b:c6:07:32:00:6e:2d:d7:06:
3e:c5:c8:d5:0a:d0:a5:ec:13:24:ba:80:a5:44:44:5e:96:9e:
d6:f6:77:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:28:27 2025 by rpki-client