
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft
File: nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft (raw, json)
Hash identifier: 1+GJeTrkujovgu7RgD9Q90wcHms5wKRjorz6mrF1uzA=
Subject key identifier: 67:D1:6F:4F:73:98:83:43:0C:6D:78:E7:FD:64:99:DF:DD:4B:91:CD
Authority key identifier: 9E:74:13:5B:B0:7C:65:40:CD:30:7B:DA:08:CA:06:74:BC:84:C9:39
Certificate issuer: /CN=9e74135bb07c6540cd307bda08ca0674bc84c939
Certificate serial: 0199FE7E17303742A0FDFFFF35B8C79CFF77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft
Manifest number: 16E6
Signing time: Sun 19 Oct 2025 22:01:40 +0000
Manifest this update: Sun 19 Oct 2025 22:01:40 +0000
Manifest next update: Mon 20 Oct 2025 22:01:40 +0000
Files and hashes: 1: 1-T1wzl3TUKiA8m5iaH9QZh9hjp0.roa (hash: JRA15qBJeMepq09VmhJeTzptT8oyDdYWsjobeMnNOAk=)
2: nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl (hash: ZGCIEA3KVbwXaNApXgO1Aru4+a3wzegNaLtax2pN7R8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:7e:17:30:37:42:a0:fd:ff:ff:35:b8:c7:9c:ff:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e74135bb07c6540cd307bda08ca0674bc84c939
Validity
Not Before: Oct 19 22:01:40 2025 GMT
Not After : Oct 20 22:01:40 2025 GMT
Subject: CN=67d16f4f739883430c6d78e7fd6499dfdd4b91cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ad:5c:3b:aa:8b:b3:15:94:08:03:71:56:6e:
a2:fa:04:9c:e8:1d:ac:f2:40:6f:c6:71:64:97:1b:
3f:95:7e:dd:37:96:06:f7:be:68:6f:ec:28:85:d2:
c2:7b:37:a0:53:5f:1c:96:7c:a0:fa:d7:ab:de:28:
5c:ca:14:45:c7:6e:58:ca:2d:ad:00:d5:0a:6a:99:
5b:fc:32:a3:25:58:3d:a2:c9:0b:a7:d2:de:a8:31:
e5:d7:cc:dd:a3:88:9f:5e:1d:0f:a1:4b:d3:fd:9a:
ab:f0:c6:45:20:7b:06:74:d7:27:1d:8a:f0:3e:3b:
fd:74:f8:49:83:1e:1d:01:2a:35:b8:20:01:00:a2:
b1:4c:92:47:de:dd:d3:fa:74:8a:44:e6:03:63:42:
36:76:d5:fd:61:1f:c9:bf:e9:57:92:b0:d0:db:3d:
45:08:45:c1:c8:48:f1:09:35:3d:e4:95:63:ee:da:
72:64:d2:2a:25:21:ae:1d:1d:de:c9:04:09:f1:4e:
05:b4:a3:fd:89:72:4e:de:e6:a3:42:d1:1f:74:52:
23:33:4f:7c:c0:35:e1:de:66:bf:cd:0c:3b:90:1e:
72:72:6c:fb:a5:7b:99:c2:bc:c8:17:10:23:fe:55:
13:ae:ef:0b:b8:de:15:5b:b7:af:55:d9:93:38:69:
bd:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:D1:6F:4F:73:98:83:43:0C:6D:78:E7:FD:64:99:DF:DD:4B:91:CD
X509v3 Authority Key Identifier:
keyid:9E:74:13:5B:B0:7C:65:40:CD:30:7B:DA:08:CA:06:74:BC:84:C9:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:be:f9:a9:0b:d4:38:1b:fb:d1:a3:0c:72:53:70:d4:6a:14:
4c:6e:3b:4d:22:a1:9f:05:66:13:54:5e:1e:36:b3:e9:a5:23:
2c:91:df:95:78:7a:11:4d:b4:92:a8:47:18:16:74:ab:83:3e:
21:42:fe:f5:87:cf:26:36:16:9b:0d:8a:a5:16:fa:dc:17:f9:
6c:36:c8:b2:6c:82:a7:52:3b:46:9e:a3:50:ab:38:2f:3b:f0:
1d:fd:cc:35:3b:e0:f8:df:1e:f0:a2:68:fb:dc:9f:2f:4d:f9:
94:7e:1c:21:d2:d4:61:34:91:4f:5d:21:61:39:36:b8:20:6b:
f2:b9:cb:1a:52:4b:03:bf:45:a6:2e:24:14:7b:96:83:0b:ae:
da:24:04:f8:be:08:7b:a0:da:e9:87:b7:df:18:7f:d7:a1:6d:
e5:e8:16:9d:d2:99:65:6e:67:35:4c:6d:05:e3:8c:46:6b:45:
f1:39:26:bc:09:3e:cb:5b:87:34:a8:82:eb:1e:84:58:1e:29:
b2:74:25:5b:fb:69:4f:b6:6a:7c:03:be:8a:8d:28:7b:1f:6d:
9e:f3:d9:d0:0d:76:f0:0a:18:22:27:7d:cf:62:d1:08:0e:bb:
32:6b:59:16:00:f6:91:06:4a:1a:8e:ec:13:88:1a:2f:19:05:
9c:f5:d2:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:33:52 2025 by rpki-client