Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
File: nDKfMzH1ND8pDrSkHxbENjooLJA.mft (raw, json)
Hash identifier: qqQ29AiY2F6M04fcz1JI4uEgdXtIxKxjJ1w4DyreU84=
Subject key identifier: 68:CC:AB:29:63:7F:E0:DE:CC:31:2B:33:27:0D:86:0D:AE:F1:D7:5C
Authority key identifier: 9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
Certificate issuer: /CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Certificate serial: 0199FC58D92B2556EFE955754F5F224A22DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 12:01:45 +0000
Manifest this update: Sun 19 Oct 2025 12:01:45 +0000
Manifest next update: Mon 20 Oct 2025 12:01:45 +0000
Files and hashes: 1: nDKfMzH1ND8pDrSkHxbENjooLJA.crl (hash: clGIKpWsrgv0nOhVoE3b4xBjTPnGXsv+JwvTajqZ31c=)
2: xXqtZaQE8p1BJ-LrGDHK3ctGl88.roa (hash: 19HlQM5dbXIMn5dc2AbBJAmDmCjDbQENEnPoWF/ZUJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:d9:2b:25:56:ef:e9:55:75:4f:5f:22:4a:22:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Validity
Not Before: Oct 19 12:01:45 2025 GMT
Not After : Oct 20 12:01:45 2025 GMT
Subject: CN=68ccab29637fe0decc312b33270d860daef1d75c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1f:cc:f2:10:63:f4:89:47:88:78:94:3f:29:
19:60:f5:2c:0f:f7:5f:35:a5:17:5d:69:a5:89:68:
75:71:56:e2:d0:55:d5:b8:2e:ec:c3:e2:a5:8d:9e:
8b:93:61:a3:bf:c7:a6:62:51:92:38:7c:98:c9:db:
97:fb:7d:98:fc:f3:8a:80:2c:9b:c9:ee:ba:a8:79:
86:bb:24:a7:1f:dd:8a:75:61:87:c6:ad:8e:24:3a:
4f:eb:60:50:2b:9c:d5:01:bd:73:a3:29:b3:58:b8:
b6:e9:98:06:b0:00:ba:3f:f7:13:d0:1f:e4:12:8b:
08:34:c6:ff:82:4e:e0:98:ce:0a:ca:cd:a1:27:3e:
3a:ae:26:a8:8e:cf:cd:f3:8c:09:14:ce:a2:9a:f4:
ab:8e:fb:36:30:a9:60:58:61:83:43:b9:9b:cd:a6:
dd:48:92:44:00:80:85:ae:0a:38:5c:43:4f:d9:c5:
e3:82:fc:0d:6a:1a:c9:6c:bb:b6:0a:1b:1c:cf:c5:
dc:3f:6d:9e:9c:3a:eb:49:d7:a9:26:d7:22:a1:7a:
6d:05:6c:86:ff:06:84:58:55:b2:a9:68:39:56:9a:
ee:91:95:04:be:89:55:c9:34:6e:ae:ac:4e:d2:ac:
53:05:39:47:26:4f:f5:90:7b:c2:cf:69:ee:aa:36:
9b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:CC:AB:29:63:7F:E0:DE:CC:31:2B:33:27:0D:86:0D:AE:F1:D7:5C
X509v3 Authority Key Identifier:
keyid:9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:f7:8f:b8:09:ac:46:3b:a8:fe:b0:2a:96:66:27:27:a0:8f:
71:72:23:09:d1:51:06:53:f0:54:8f:df:5a:03:8a:06:f4:9a:
45:ee:84:7d:de:be:28:47:ff:1b:fb:b0:77:c6:0d:43:49:8b:
4b:1a:98:50:4e:58:a7:bf:4f:15:a3:2b:8a:85:f2:16:f3:0d:
bf:5f:0d:23:27:59:52:4b:60:b5:0a:c6:af:c5:9c:25:8b:ad:
4f:7e:d9:b2:e2:37:1f:52:8d:ba:82:7b:7b:9c:63:53:8d:30:
8a:ff:64:27:ac:e2:c9:de:28:bd:ba:57:fe:f7:98:da:0d:63:
77:11:8b:15:9a:ac:17:6f:37:b6:96:24:d1:b1:0d:34:aa:dc:
ea:ae:69:70:a5:eb:8d:f9:41:93:0b:fa:fb:0c:80:98:3c:59:
11:72:c8:93:1d:07:90:45:ff:09:55:9f:b3:85:c9:f5:ed:fa:
e1:45:c7:e1:be:ad:33:66:36:c2:69:fe:cb:99:c8:cc:c0:d4:
1c:cf:53:3d:05:a4:3b:6a:b7:61:0b:b7:35:15:6c:79:0f:3c:
c9:db:e8:a0:73:2d:1c:4a:dc:20:71:9e:0d:52:de:5d:bb:9f:
ef:4d:3e:e9:75:88:3d:e2:61:76:8d:44:68:4a:e8:d9:7e:8a:
f6:9f:ed:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:03:06 2025 by rpki-client