Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
File: nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft (raw, json)
Hash identifier: PPLg+pm7LcqfaU7fZN1N1IfZaxyqeM3HMhPa0UPdQGk=
Subject key identifier: EF:88:D8:AB:08:29:83:95:4D:ED:F2:C0:66:2B:35:4F:70:CE:81:44
Authority key identifier: 9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC
Certificate issuer: /CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec
Certificate serial: 0198D62993BA84F6BFE637F17940EAEC9FD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 09:01:45 +0000
Manifest this update: Sat 23 Aug 2025 09:01:45 +0000
Manifest next update: Sun 24 Aug 2025 09:01:45 +0000
Files and hashes: 1: YH77N0FEznpizquL2OaCl5vYAjI.roa (hash: YndCp+4019jEGglb/4lGICFoI/oofyeIHhlA4OhtUTc=)
2: nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl (hash: 3DIWhJaKz/PNOrliAga8Phbc2wQp40fS3B4Ohl09SNc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:29:93:ba:84:f6:bf:e6:37:f1:79:40:ea:ec:9f:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec
Validity
Not Before: Aug 23 09:01:45 2025 GMT
Not After : Aug 24 09:01:45 2025 GMT
Subject: CN=ef88d8ab082983954dedf2c0662b354f70ce8144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:93:3d:47:52:3b:ab:ec:e4:47:b4:2f:cf:2c:
ca:d1:54:d5:0e:49:55:26:06:5f:59:61:c6:24:bf:
16:ee:70:4c:fb:b5:9a:05:b1:de:03:c2:87:09:80:
df:32:3f:1c:f4:6e:ba:13:92:63:44:f8:8b:29:1b:
aa:d3:b2:6b:19:04:b7:36:ca:43:78:a8:c0:f6:6d:
3a:16:66:4d:8b:7a:e0:65:0e:fd:c0:73:36:c3:cd:
6e:7f:89:37:5d:36:c5:58:d9:96:45:8b:3a:06:16:
04:9f:e2:94:7a:bb:32:63:02:63:e8:2f:32:e2:56:
a0:9e:da:de:f6:ae:e1:73:fe:0e:c8:7e:d7:00:92:
d2:54:a3:4e:13:c7:64:fb:30:8f:b5:ee:c4:e4:5f:
ac:73:3b:26:83:c5:11:1e:20:87:62:c3:bf:f8:be:
2e:01:77:c5:29:3b:43:1a:0d:27:df:99:fb:bc:af:
e2:3b:12:67:0c:ff:5b:bf:5d:59:86:87:28:78:d5:
6f:df:ac:5b:94:a1:1d:0d:74:d8:85:e6:9a:54:cb:
2a:b6:f3:f8:67:aa:e5:ac:52:83:e3:58:d2:ac:27:
8a:14:bb:70:d0:50:25:0a:4d:91:c9:37:ff:85:11:
e4:d0:bb:13:9d:2f:39:06:aa:90:fb:f3:3b:86:6d:
37:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:88:D8:AB:08:29:83:95:4D:ED:F2:C0:66:2B:35:4F:70:CE:81:44
X509v3 Authority Key Identifier:
keyid:9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:0a:2e:cd:c4:3c:17:eb:6c:5f:c9:82:9b:5d:60:ab:4a:16:
69:31:e0:6d:a9:9e:25:94:48:b7:7e:c4:cf:7c:4c:be:ba:ac:
61:59:66:e7:ae:7a:2d:41:54:a4:71:3f:fa:b6:3f:e1:13:c5:
02:3f:67:12:a8:ef:9f:1e:12:51:d2:e3:a3:23:0b:44:12:7d:
b2:9c:aa:12:2b:18:2f:b7:42:ef:18:e4:7d:fd:8c:fe:0e:8b:
49:8f:06:a2:c3:c8:5f:7a:b4:7e:c2:53:e8:2c:eb:d2:3f:0a:
1f:a9:69:60:e9:3e:8f:60:c5:9e:7a:24:2b:65:b3:99:92:2c:
f5:f0:50:4c:6c:e3:ca:0d:c3:87:bb:ba:70:d1:21:ab:5d:e2:
1b:de:36:2b:11:ad:e2:f4:fe:0f:75:ff:63:4a:92:80:dc:db:
ae:9e:03:71:95:22:97:84:23:b7:09:d8:cc:02:c3:39:ea:d8:
23:c6:b4:37:3d:ef:72:bd:03:7f:2b:00:f0:5b:d5:34:34:34:
1e:32:14:29:40:00:68:01:d5:f7:29:fb:bb:73:29:ff:27:a1:
cd:c5:e7:bf:b6:fc:aa:52:6e:e6:ad:eb:79:90:47:6a:e3:a0:
7e:98:21:30:10:1a:fa:ca:65:f3:32:f8:5c:86:b3:8f:b4:8c:
ef:7d:e7:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:47 2025 by rpki-client