Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft
File: nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft (raw, json)
Hash identifier: /U0/eXzfnVtIYwsib3lxINnMTDH9LLssJQqMz7lBLMA=
Subject key identifier: 22:45:4D:19:F4:56:48:09:9D:67:9C:9E:2C:91:3C:0E:1F:A3:58:0D
Authority key identifier: 9E:74:13:5B:B0:7C:65:40:CD:30:7B:DA:08:CA:06:74:BC:84:C9:39
Certificate issuer: /CN=9e74135bb07c6540cd307bda08ca0674bc84c939
Certificate serial: 0198D515E10F406C79DA7E2FA1CF306FF24B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 04:00:37 +0000
Manifest this update: Sat 23 Aug 2025 04:00:37 +0000
Manifest next update: Sun 24 Aug 2025 04:00:37 +0000
Files and hashes: 1: 1-T1wzl3TUKiA8m5iaH9QZh9hjp0.roa (hash: JRA15qBJeMepq09VmhJeTzptT8oyDdYWsjobeMnNOAk=)
2: nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl (hash: lqLZJqOpN0JgnpVbNLuh43EWhTU3vVNkcxgnW72IXVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:e1:0f:40:6c:79:da:7e:2f:a1:cf:30:6f:f2:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e74135bb07c6540cd307bda08ca0674bc84c939
Validity
Not Before: Aug 23 04:00:37 2025 GMT
Not After : Aug 24 04:00:37 2025 GMT
Subject: CN=22454d19f45648099d679c9e2c913c0e1fa3580d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fa:f9:a4:9e:d0:1b:b1:21:86:16:16:1c:0a:
62:58:55:27:88:aa:31:02:77:2a:80:10:f2:59:e8:
17:f5:b8:e9:82:0f:59:88:43:29:37:7b:e5:70:27:
af:4f:f6:1b:5c:e2:a5:9b:7c:a5:2a:62:e8:7a:00:
3e:97:7d:7f:b7:be:c2:ae:37:3f:09:13:0f:52:8d:
bf:5b:a1:aa:6d:c5:51:5e:d5:3e:b8:42:22:d2:85:
b2:4a:62:77:90:ff:12:38:d3:0f:cc:af:d6:e4:bc:
0a:7a:8a:66:2a:3b:89:5f:bf:44:9d:e9:03:34:6b:
ed:9e:ee:c7:14:a5:4f:82:39:f6:6d:75:74:0f:e9:
b7:a9:fc:29:ec:30:f1:f4:ce:06:d5:02:53:d0:ae:
16:90:29:5e:2c:ab:8f:66:61:16:04:8c:64:c1:7b:
e0:cd:9a:00:a4:f7:fe:57:3e:33:fe:dc:0b:0e:57:
5e:ac:03:70:3b:3b:3b:fe:9d:c5:a0:9e:05:8e:11:
12:ee:94:8a:83:66:28:e9:ed:2b:89:62:b3:85:2d:
87:47:69:35:1c:f1:e2:49:62:33:9f:9a:94:e5:e4:
64:59:d9:43:04:ee:56:f4:9d:fd:5f:7f:8f:ad:f7:
6f:22:a8:03:0f:e0:0b:a9:f5:6c:b6:89:11:89:52:
25:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:45:4D:19:F4:56:48:09:9D:67:9C:9E:2C:91:3C:0E:1F:A3:58:0D
X509v3 Authority Key Identifier:
keyid:9E:74:13:5B:B0:7C:65:40:CD:30:7B:DA:08:CA:06:74:BC:84:C9:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:86:99:e9:00:4b:38:5f:83:63:95:cf:95:ba:75:dd:f6:55:
bd:7d:a4:a3:b6:00:85:04:d3:4e:f5:8d:3a:e9:ad:6e:43:79:
8c:d4:06:67:67:26:c1:fd:e1:a2:71:1f:c7:6f:01:eb:9a:9d:
da:eb:17:f3:54:5a:2f:dd:76:9d:aa:28:8e:b5:d4:00:1b:62:
7d:be:02:95:f7:da:a0:da:b8:20:60:ec:d9:5d:b8:7e:c1:da:
e6:60:45:a5:c0:82:48:9f:0b:6c:1e:be:10:2b:68:15:2b:02:
2d:96:b3:42:a9:5b:1b:6f:a2:ca:9f:36:a4:5d:c3:e5:10:b7:
0f:ae:eb:3f:cd:72:d1:52:75:d4:1b:e5:bb:99:65:7a:8e:1a:
fb:46:56:03:4f:29:06:01:df:b8:42:a4:0a:93:5d:c7:de:7c:
b4:5f:1a:02:52:9f:8a:48:a7:39:3b:ae:94:80:52:16:bf:80:
4c:f0:56:90:51:54:c9:1c:53:01:d3:7f:5c:65:f6:6a:04:d1:
1f:46:59:ed:2b:fe:29:d0:b9:9e:51:2b:e4:a7:ce:cb:cb:83:
c2:0f:a0:d7:5f:de:26:b7:d0:91:05:ca:08:4a:d5:ac:b8:43:
ea:d5:17:6b:e3:77:19:f8:ad:22:11:29:c0:88:3c:cc:cd:a2:
95:94:a7:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:15:49 2025 by rpki-client