Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
File: nDKfMzH1ND8pDrSkHxbENjooLJA.mft (raw, json)
Hash identifier: d7Mvv+B6zq4x9qp4QTviEXJV6sKeBTtZkw/F8FSvGqM=
Subject key identifier: 51:A1:3F:10:09:7D:0D:65:34:E1:A2:57:3D:EE:3E:12:F7:76:02:9E
Authority key identifier: 9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
Certificate issuer: /CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Certificate serial: 0198D6CDD1DDB7B4B8DB6314AEA2B4BA6723
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 12:01:09 +0000
Manifest this update: Sat 23 Aug 2025 12:01:09 +0000
Manifest next update: Sun 24 Aug 2025 12:01:09 +0000
Files and hashes: 1: nDKfMzH1ND8pDrSkHxbENjooLJA.crl (hash: nI48FqtIfB5VtXO1pgQVzucxI42/TAZQh3rmn4VkQYg=)
2: xXqtZaQE8p1BJ-LrGDHK3ctGl88.roa (hash: 19HlQM5dbXIMn5dc2AbBJAmDmCjDbQENEnPoWF/ZUJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:d1:dd:b7:b4:b8:db:63:14:ae:a2:b4:ba:67:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Validity
Not Before: Aug 23 12:01:09 2025 GMT
Not After : Aug 24 12:01:09 2025 GMT
Subject: CN=51a13f10097d0d6534e1a2573dee3e12f776029e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c3:45:dd:f4:0d:b6:3d:bd:9e:2e:29:75:c6:
7b:0f:7e:d6:da:e1:ca:4f:2b:16:68:32:69:c4:50:
63:99:41:64:e4:d7:53:74:24:c3:56:ad:4a:25:f1:
89:d3:4a:a1:25:80:bd:46:c5:4c:a7:ef:4f:ed:2b:
79:1b:26:d7:9d:32:4a:4d:ca:39:6c:ce:14:fd:54:
4e:e9:d2:ea:b3:a0:2a:79:ba:70:a7:2c:43:c6:9d:
f4:15:9c:0f:f1:2d:ce:71:7a:b2:4f:66:97:5a:6f:
95:5b:d0:49:8a:af:0c:ab:b9:83:e3:b4:3a:08:6b:
52:18:59:cc:fb:25:bd:3a:29:24:aa:8d:82:ac:3e:
a4:22:0b:8b:f5:cc:97:46:3b:2d:a9:b8:af:50:48:
5a:96:7e:a1:7f:57:3f:c0:58:71:27:5e:33:36:ad:
91:b8:81:e1:57:87:6f:b0:36:89:bc:f4:d5:03:67:
c5:70:73:cc:f8:f9:21:7c:2b:63:2c:cc:21:9c:99:
90:bf:9d:e3:f3:35:ac:18:1e:d4:e5:f3:3a:83:c5:
ae:d5:12:e8:7e:e1:c1:0f:a4:9b:a2:78:93:8e:d9:
2e:ff:20:3f:5c:b4:9d:4d:d3:8d:6f:b3:23:ff:4a:
64:13:f7:eb:db:8f:11:e0:cf:6f:f3:76:5e:59:33:
1c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:A1:3F:10:09:7D:0D:65:34:E1:A2:57:3D:EE:3E:12:F7:76:02:9E
X509v3 Authority Key Identifier:
keyid:9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:36:a4:e5:f5:c9:f9:7e:4f:f2:84:3a:11:b4:b1:55:79:8c:
25:ec:ba:7d:3a:cb:7e:5f:04:9c:24:ae:de:51:fd:b0:38:c9:
3e:5f:99:5d:d4:bc:89:a6:01:5d:1f:35:80:f9:49:19:96:d4:
35:e1:fc:b1:0d:4e:62:87:41:d6:00:ee:99:4b:d9:bf:ee:92:
76:6f:ca:4b:24:0a:a2:91:bf:e5:0b:93:21:cc:1b:fa:00:55:
3b:94:1b:19:d4:b7:cb:80:2d:50:c5:cb:f5:48:f9:c7:24:e4:
da:32:f9:22:80:1c:61:6b:e7:a1:34:bc:2b:d7:78:c9:cd:64:
68:77:ad:03:c7:b2:81:fa:f6:9a:3f:7b:63:a5:37:0c:fe:68:
e6:0a:ae:bd:24:e6:75:d5:c1:e9:0c:7c:e0:03:8e:84:0d:2c:
43:0f:14:a2:25:57:e4:24:af:c8:83:27:f1:14:af:53:08:64:
1b:4b:18:d7:ac:70:f4:8a:9e:e0:4f:fb:f0:c0:a1:32:06:2b:
27:da:6e:21:c2:78:0d:77:d7:33:a9:1c:c5:e6:24:8f:df:01:
1e:33:a2:2e:13:ae:5a:ed:81:d3:7e:68:8b:03:4f:82:aa:8b:
35:53:8b:e9:db:16:88:80:45:d5:9f:40:2a:0a:7c:be:d9:06:
41:38:9c:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:26:30 2025 by rpki-client