Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft
File: n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft (raw, json)
Hash identifier: LdbZQ+dWXtLQfZqsFOxVbjccR3u19fpkFA3OmkaAXwM=
Subject key identifier: 07:5A:F6:D4:7E:16:81:70:53:1D:1B:CD:0D:C9:5E:75:D2:5C:82:CF
Authority key identifier: 9F:8A:3C:9A:9E:DF:64:47:35:A9:4E:B0:9F:01:CA:B3:98:55:D2:78
Certificate issuer: /CN=9f8a3c9a9edf644735a94eb09f01cab39855d278
Certificate serial: 0198D516040CC1B65368BE8AB1C1B62404EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n4o8mp7fZEc1qU6wnwHKs5hV0ng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft
Manifest number: 0AB6
Signing time: Sat 23 Aug 2025 04:00:46 +0000
Manifest this update: Sat 23 Aug 2025 04:00:46 +0000
Manifest next update: Sun 24 Aug 2025 04:00:46 +0000
Files and hashes: 1: 9nrkqBfEEEVb2ilynt5HJRxEGWw.roa (hash: 9p3+VvNvFq4rrBtC/Z9UeyBNK7rF8lIsM8oxPtubKQs=)
2: n4o8mp7fZEc1qU6wnwHKs5hV0ng.crl (hash: urP340Z+5WZbl0iDofWwOCE2QiuTyDfrDSzR5Vec62A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft
rsync://rpki.ripe.net/repository/DEFAULT/n4o8mp7fZEc1qU6wnwHKs5hV0ng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:04:0c:c1:b6:53:68:be:8a:b1:c1:b6:24:04:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f8a3c9a9edf644735a94eb09f01cab39855d278
Validity
Not Before: Aug 23 04:00:46 2025 GMT
Not After : Aug 24 04:00:46 2025 GMT
Subject: CN=075af6d47e168170531d1bcd0dc95e75d25c82cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:07:5a:7b:47:52:fa:8d:68:5c:23:37:f1:9a:
bb:e3:e6:8d:5a:90:b7:9c:e8:b5:87:3d:43:fc:26:
1a:6b:7d:e1:4f:6a:9c:5a:1b:31:77:fc:04:ab:2c:
d6:86:b2:4b:df:09:60:2c:79:43:41:51:de:44:2d:
7f:25:1b:22:12:99:84:ce:63:08:96:38:a0:d0:c3:
bd:c5:f0:42:e8:80:f9:72:df:c8:a6:88:66:51:10:
91:fa:c6:ef:55:40:43:f3:27:a2:ec:d4:bf:f1:92:
de:79:0e:57:97:c5:43:07:0c:03:0a:70:cd:af:67:
c2:4c:d4:2d:99:0a:af:f9:e1:84:8a:1c:f7:b4:a7:
0f:a1:b2:91:fc:9c:c7:6c:60:79:42:63:32:ba:b9:
d0:e0:fb:4f:32:1a:9f:e2:e1:74:19:91:ff:5c:17:
7d:ee:95:1a:e7:ed:ca:da:6f:3c:3d:f9:6b:f9:62:
26:ca:bb:a8:f3:d5:bf:35:e9:e0:0b:49:57:4c:1c:
1c:28:c2:ea:ec:0a:77:4a:c0:2d:7f:0a:b0:72:76:
d8:e8:84:37:c8:fa:64:c5:b3:ed:3f:6d:25:ca:fb:
50:51:1f:b6:9e:f4:af:2c:33:c5:d2:54:da:9e:a7:
84:cf:22:c7:8e:94:b6:0d:ac:57:8b:4a:5d:95:51:
16:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:5A:F6:D4:7E:16:81:70:53:1D:1B:CD:0D:C9:5E:75:D2:5C:82:CF
X509v3 Authority Key Identifier:
keyid:9F:8A:3C:9A:9E:DF:64:47:35:A9:4E:B0:9F:01:CA:B3:98:55:D2:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n4o8mp7fZEc1qU6wnwHKs5hV0ng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:dd:53:91:6e:9c:45:9a:5c:7d:17:5a:2a:d9:97:16:7a:19:
01:b9:8f:d4:47:b4:df:f4:27:95:6b:49:f3:bc:c6:9a:cf:0b:
6a:7a:53:c6:9f:66:8f:06:9e:d6:39:fc:06:10:a0:8c:8c:ca:
00:ab:a6:b3:8c:c0:18:53:55:30:ab:54:9e:5d:f0:e7:fe:4f:
15:16:86:c6:94:bd:32:c2:41:13:fe:d4:1c:3a:c4:cd:1c:4b:
52:c7:83:1c:cf:66:52:9d:67:5b:66:cc:e0:8e:86:2b:5e:b3:
8c:f9:0f:81:96:9f:90:0e:52:5c:d0:88:46:0a:ef:eb:49:eb:
2e:f3:86:2f:61:b2:64:2a:2c:d2:b9:67:25:3d:f4:cf:3c:90:
c0:17:d2:30:ae:1a:f4:f4:74:8f:b1:18:9a:cf:1b:5d:4a:14:
15:41:5c:b1:31:12:b2:5c:42:37:91:0d:42:27:b3:c8:fc:96:
06:de:21:50:54:6a:33:de:ef:43:5e:ca:f8:18:36:64:b5:c6:
eb:79:4e:bc:40:98:bb:f9:d0:85:48:c4:b7:e6:aa:7b:07:f5:
c4:d8:a2:b0:6f:67:01:22:c5:05:2c:11:bc:0b:ca:6c:f0:fb:
19:10:43:a1:bc:a1:51:4f:e7:ab:53:7e:44:55:7e:56:30:15:
d1:18:08:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:12:54 2025 by rpki-client