Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
File: nAMai2oolAx5NrpueCuUoJYr-yc.mft (raw, json)
Hash identifier: qnqHpYm1cl6EUdgBuRpyFZPr7zw0H2KWoWT7l3gJRro=
Subject key identifier: C8:EE:74:A2:44:78:DD:64:F1:99:05:80:3B:73:9B:B4:29:BB:F9:E9
Authority key identifier: 9C:03:1A:8B:6A:28:94:0C:79:36:BA:6E:78:2B:94:A0:96:2B:FB:27
Certificate issuer: /CN=9c031a8b6a28940c7936ba6e782b94a0962bfb27
Certificate serial: 0199FBEC0F87B3D8E71FD921D8BE68EC910C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
Manifest number: 0471
Signing time: Sun 19 Oct 2025 10:02:55 +0000
Manifest this update: Sun 19 Oct 2025 10:02:55 +0000
Manifest next update: Mon 20 Oct 2025 10:02:55 +0000
Files and hashes: 1: nAMai2oolAx5NrpueCuUoJYr-yc.crl (hash: uFvu7sfrSJDDn8h8+mB1WBnYPFW12XX0t5dyJkXe5Rc=)
2: sazfzVz6q9bIns0N5tJ_KIxOhyU.roa (hash: 7Dx7RnLHW4HsXUHgAbio+tOs+19yMbUTjmWX8tX1e1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:0f:87:b3:d8:e7:1f:d9:21:d8:be:68:ec:91:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c031a8b6a28940c7936ba6e782b94a0962bfb27
Validity
Not Before: Oct 19 10:02:55 2025 GMT
Not After : Oct 20 10:02:55 2025 GMT
Subject: CN=c8ee74a24478dd64f19905803b739bb429bbf9e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:14:e9:49:6d:e0:a8:eb:5c:6c:d9:04:63:38:
af:dc:34:7d:e7:24:b1:96:12:63:5f:f7:f7:a5:4d:
75:65:f9:0a:0f:ac:c8:02:ab:29:4f:9a:d6:85:0c:
b7:22:49:b1:5d:df:1d:3c:6a:90:6d:0f:93:28:3d:
ee:2a:86:cb:c3:6f:95:96:0e:0d:fd:c1:56:bf:36:
c0:92:3d:6d:94:30:9b:4f:9e:0f:43:f1:c9:a8:60:
e3:9c:33:5e:ef:6b:61:68:40:88:3c:31:fa:12:5d:
5d:a9:78:c8:59:da:bd:1b:62:87:ce:d6:f6:9c:fc:
7f:a1:2f:d2:45:f0:4e:dc:1c:1f:87:76:85:2b:e0:
d0:1f:73:af:15:e8:30:81:fa:09:1a:4d:88:15:69:
f6:10:10:29:9c:1d:fd:7c:ce:97:d1:bc:23:e8:da:
98:21:c9:55:77:f4:98:c8:9e:21:e2:a2:b8:83:29:
b2:79:71:28:76:c7:db:59:a2:5b:34:d0:19:ac:f2:
8a:48:10:4a:38:26:70:a3:6c:eb:20:87:27:18:d4:
c2:13:86:2c:9d:d1:eb:53:87:c8:ef:c5:6e:cf:f4:
9c:6d:84:29:ec:73:d8:56:1c:44:e5:a2:47:62:fb:
51:57:47:42:b5:2f:d6:64:8b:b3:0a:75:d0:c3:7a:
d9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:EE:74:A2:44:78:DD:64:F1:99:05:80:3B:73:9B:B4:29:BB:F9:E9
X509v3 Authority Key Identifier:
keyid:9C:03:1A:8B:6A:28:94:0C:79:36:BA:6E:78:2B:94:A0:96:2B:FB:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:53:8e:6a:68:30:e4:33:3e:7e:0b:e1:ac:c3:0b:ac:8f:ab:
54:94:24:08:ad:79:2e:cb:83:aa:a0:df:fc:f1:ac:c6:c7:f3:
14:3f:7b:7b:20:10:24:b9:7e:1d:a0:09:ca:63:54:8e:8d:02:
3e:c5:51:23:78:21:3d:bb:90:84:5c:d9:c7:42:e5:78:35:1f:
f7:2d:b4:81:54:f8:13:9a:66:5d:88:5e:85:8b:ff:47:a3:bb:
7f:ad:f7:33:2e:8a:3d:5f:1c:72:f3:ef:fb:a0:35:93:e9:43:
98:09:ab:4e:54:7c:b9:ff:30:3f:45:93:22:f9:84:1e:f5:ca:
f9:71:50:b4:9b:9f:af:d9:47:4e:ce:33:68:3a:56:9b:37:af:
9c:f1:28:87:87:40:3b:fd:4e:2a:3d:83:fb:5c:28:e8:52:4a:
b2:a8:dd:c4:27:4a:cb:c4:c8:a0:89:45:46:a7:5b:24:c3:13:
ed:81:69:1d:db:de:55:84:a6:c2:0a:67:10:9b:52:cc:4c:d1:
9e:9e:20:88:ef:53:b4:18:dc:e3:2d:4e:e2:07:80:aa:e7:f6:
aa:9c:49:2f:79:51:c5:ce:e0:64:50:20:e0:4c:ad:ba:e3:78:
4f:ee:d6:a5:3a:49:b6:e1:85:8d:c5:df:a0:4e:09:be:ed:e2:
34:86:88:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:10:09 2025 by rpki-client