Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
File: nFVnZyAcUPayqVXbah5uAR36XUQ.mft (raw, json)
Hash identifier: b4mEx4R3xMqOuavHfHRSI0WQGz5K+yirxhVLOADS8Dw=
Subject key identifier: CC:F1:38:A2:CA:D6:95:2F:54:06:22:C5:19:4C:A5:C8:9F:F3:CD:13
Authority key identifier: 9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44
Certificate issuer: /CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44
Certificate serial: 0199FBEAACA906869B59FA44957A33A56684
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
Manifest number: 0C0A
Signing time: Sun 19 Oct 2025 10:01:24 +0000
Manifest this update: Sun 19 Oct 2025 10:01:24 +0000
Manifest next update: Mon 20 Oct 2025 10:01:24 +0000
Files and hashes: 1: cmsoMlIRCcbLziNipTUjZc3lrew.roa (hash: a1CFCcY0jADOuS6DTKGkRSmsv5gzH4GzUcir7HG6pUE=)
2: nFVnZyAcUPayqVXbah5uAR36XUQ.crl (hash: lg0YyjxeDf81U4gSsWlPfdOZt+j5ppzoqj/itq+K57g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:ac:a9:06:86:9b:59:fa:44:95:7a:33:a5:66:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44
Validity
Not Before: Oct 19 10:01:24 2025 GMT
Not After : Oct 20 10:01:24 2025 GMT
Subject: CN=ccf138a2cad6952f540622c5194ca5c89ff3cd13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:37:2c:7f:80:54:80:14:79:93:a8:79:b6:c9:
04:89:04:3a:d1:ec:94:88:c9:80:36:74:de:f4:d8:
6f:ae:07:9e:15:2e:af:4a:2b:4b:2f:df:26:82:7f:
5d:8a:84:9b:ef:78:1b:85:48:87:6e:49:4c:bb:5d:
4b:20:8b:49:90:2b:1d:16:11:eb:eb:e7:ae:2b:e0:
f0:08:9e:a7:0d:cb:b0:8c:2c:ac:fe:b4:13:bc:cc:
e8:b7:8f:a5:2e:6c:4c:a3:5d:58:ad:f8:bb:6e:e6:
3b:f2:69:56:cc:51:80:86:da:79:00:ea:71:3a:52:
5d:9e:f9:84:4a:07:83:e6:c9:15:8e:2f:09:77:38:
85:f1:14:dd:b8:ab:3b:7b:9b:99:de:0f:29:54:5a:
74:2a:4f:1b:04:8b:1b:c6:69:5c:1d:69:02:0c:75:
a3:de:99:f8:fe:4f:9e:ca:86:7b:ae:72:b3:db:f5:
f2:6b:f0:01:5a:e9:c0:2b:e6:67:08:34:94:4b:31:
57:31:b1:19:4a:2b:fd:ca:ff:f1:9f:92:a1:b0:e0:
2d:04:18:72:84:ab:df:51:99:86:00:49:23:d9:e7:
8c:dd:1b:9c:83:33:fe:00:3c:ac:66:34:e5:5c:56:
22:eb:59:fb:f8:8e:42:0e:93:1e:dd:68:71:f7:e6:
3f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:F1:38:A2:CA:D6:95:2F:54:06:22:C5:19:4C:A5:C8:9F:F3:CD:13
X509v3 Authority Key Identifier:
keyid:9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:70:41:48:f6:13:4c:d9:c3:ae:6a:fd:72:56:45:95:2b:e1:
fc:3f:68:58:d7:b3:6e:64:ee:eb:bd:49:29:d1:df:81:dc:cd:
88:54:b6:a9:e9:ae:e2:28:59:47:eb:2d:6b:0d:dc:84:ac:b7:
de:1a:7e:2f:9b:fc:26:e5:91:76:bf:bb:43:92:5c:4f:f4:79:
79:65:fc:cd:4b:7b:04:67:03:65:e1:1d:2a:53:8f:88:69:aa:
6f:97:ae:34:44:a7:c8:9a:df:4e:70:12:f1:90:d6:2c:05:c7:
03:0f:36:5d:9f:13:06:01:2f:0b:08:0b:f8:08:0b:39:8b:18:
96:f1:60:77:a2:e1:7b:29:c2:84:be:29:34:fd:a4:7b:95:8e:
14:48:a8:c2:b9:f0:e3:f2:83:36:86:05:94:d6:1d:b3:2e:65:
bc:de:fe:25:3b:ff:c6:b5:03:54:82:b1:c9:cc:44:48:ef:b7:
7c:48:93:1c:6f:14:1c:c5:94:b4:5a:51:fa:da:ba:30:5d:36:
0c:b8:4e:58:6d:b9:c6:93:e9:87:15:25:2d:b2:54:59:09:54:
3a:aa:ec:e2:e7:53:e9:fc:61:0d:16:83:3d:87:7a:55:27:fd:
a7:e8:11:e5:93:ec:5f:4f:75:f4:83:c6:73:ea:e1:31:63:1f:
d1:e0:19:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:32:26 2025 by rpki-client