Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
File: nlY8Qm0ark7R5_WVNnSQIgiehHk.mft (raw, json)
Hash identifier: 8zIbQxijBP5LLPvtlKvW2F84nFdzq56gdBTzD7Bi2to=
Subject key identifier: D3:6F:0D:EB:22:BE:C4:A4:C5:93:4E:E0:6D:AE:38:15:1A:A7:4C:26
Authority key identifier: 9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
Certificate issuer: /CN=9e563c426d1aae4ed1e7f59536749022089e8479
Certificate serial: 0198D5F15FBFAC7671AF976C003149AAA85E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
Manifest number: 0B0B
Signing time: Sat 23 Aug 2025 08:00:22 +0000
Manifest this update: Sat 23 Aug 2025 08:00:22 +0000
Manifest next update: Sun 24 Aug 2025 08:00:22 +0000
Files and hashes: 1: DLPCyIKM7jz79PsqVnrxNoMgYXE.roa (hash: +QgaTeTZpZ2fDtls8hcOtAF0lYWHQbDmqjy56TBm3AY=)
2: nlY8Qm0ark7R5_WVNnSQIgiehHk.crl (hash: po1pB09nlb7CQQS2H8ty+G7R6OzAuxEOUVj92W+lm9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 08:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:5f:bf:ac:76:71:af:97:6c:00:31:49:aa:a8:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e563c426d1aae4ed1e7f59536749022089e8479
Validity
Not Before: Aug 23 08:00:22 2025 GMT
Not After : Aug 24 08:00:22 2025 GMT
Subject: CN=d36f0deb22bec4a4c5934ee06dae38151aa74c26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f5:db:ed:53:d8:31:1f:ba:19:6a:fc:64:59:
6b:25:92:2e:f7:b6:7f:60:38:40:30:d1:1f:38:8b:
cb:c0:70:d5:b4:90:06:33:cf:be:6a:c8:58:fa:c2:
7b:fe:82:6e:84:66:07:d7:64:94:52:61:65:ca:a4:
ce:5e:db:7e:c7:8a:88:ad:aa:f8:7b:07:8c:ee:5a:
25:11:79:bd:2b:df:4f:d6:70:50:b2:ab:b6:93:9b:
05:11:d7:e8:57:cb:cc:e8:16:34:06:48:07:e5:f9:
07:b3:57:95:6e:d3:cb:f7:ed:a2:e1:9d:08:38:27:
e0:a5:65:a5:1f:0d:d6:ef:35:bb:39:fe:a1:5e:ee:
4e:07:1e:65:4d:bd:8c:25:7e:2d:3f:4e:41:8e:bd:
7b:29:cb:ca:86:1f:6e:2c:a0:07:eb:d1:60:55:a4:
8a:8d:ee:c0:3e:47:52:64:2c:eb:a5:ed:9f:87:8b:
3a:1e:e5:4e:72:dc:7a:b5:8e:b3:20:4f:db:e9:22:
95:d5:a5:fe:fa:69:30:88:c5:38:cc:50:7e:64:a2:
e9:7b:cb:f7:b6:00:50:1f:1c:0a:01:01:48:8f:6e:
83:c8:11:cf:7e:11:09:7f:ec:81:d8:16:9b:31:3a:
0b:7d:0e:79:93:69:85:45:e2:99:f5:88:c2:43:cc:
da:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:6F:0D:EB:22:BE:C4:A4:C5:93:4E:E0:6D:AE:38:15:1A:A7:4C:26
X509v3 Authority Key Identifier:
keyid:9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:4c:f4:3d:59:c5:17:c2:8d:ae:11:ed:28:25:9a:a3:20:58:
d7:02:f0:74:20:3f:89:5c:1b:b5:d8:87:f9:2c:ff:8d:33:a1:
19:8a:52:69:59:c1:f5:be:e3:ee:e9:95:f1:5a:0f:c6:71:c3:
cb:24:54:dc:50:80:df:7a:1a:65:fa:ba:ae:fe:04:a5:2a:3b:
82:55:bd:5d:a1:97:57:8e:91:a9:87:af:26:a2:63:bf:a2:04:
19:49:de:86:b6:90:6a:06:34:e5:7c:26:56:cf:d1:38:87:99:
96:a2:1c:19:87:3a:21:1b:80:ac:52:9d:09:a1:33:f8:3c:17:
40:91:29:c3:2d:96:1d:54:21:c7:8d:ef:35:e2:8e:2c:5f:2c:
6b:5c:60:50:5f:22:74:d7:93:98:4b:c7:ee:31:71:27:b4:21:
b5:34:ee:7e:de:44:f0:89:8d:a3:fa:84:f0:17:fd:d1:49:9e:
c0:d6:fc:d0:8d:b9:ec:db:53:d7:37:a2:f8:dc:52:61:db:8d:
30:06:e0:cb:e5:09:8a:79:e8:84:90:fa:03:a2:30:7c:08:18:
68:e5:a4:28:91:67:98:a5:b8:ee:76:16:14:c7:c9:06:d1:7b:
f2:25:08:45:00:61:24:cc:fb:9c:7e:ee:74:34:ec:e1:a4:3b:
57:76:68:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:21:40 2025 by rpki-client