Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
File: nAMai2oolAx5NrpueCuUoJYr-yc.mft (raw, json)
Hash identifier: Z5TzVTe7XRWgfDHL8iaeAw87tbil11GfnxzOB2MGZo8=
Subject key identifier: 80:2E:B1:3E:62:08:64:D0:21:D5:5E:36:C8:33:64:A3:46:87:92:EF
Authority key identifier: 9C:03:1A:8B:6A:28:94:0C:79:36:BA:6E:78:2B:94:A0:96:2B:FB:27
Certificate issuer: /CN=9c031a8b6a28940c7936ba6e782b94a0962bfb27
Certificate serial: 0198D47311459B2D536C12BDA2341619067D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
Manifest number: 03D8
Signing time: Sat 23 Aug 2025 01:02:47 +0000
Manifest this update: Sat 23 Aug 2025 01:02:47 +0000
Manifest next update: Sun 24 Aug 2025 01:02:47 +0000
Files and hashes: 1: nAMai2oolAx5NrpueCuUoJYr-yc.crl (hash: Gd7re7zLlmXyS7TjArssP5E+7kPGaQAlkfsMDxP31Wo=)
2: sazfzVz6q9bIns0N5tJ_KIxOhyU.roa (hash: 7Dx7RnLHW4HsXUHgAbio+tOs+19yMbUTjmWX8tX1e1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:11:45:9b:2d:53:6c:12:bd:a2:34:16:19:06:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c031a8b6a28940c7936ba6e782b94a0962bfb27
Validity
Not Before: Aug 23 01:02:47 2025 GMT
Not After : Aug 24 01:02:47 2025 GMT
Subject: CN=802eb13e620864d021d55e36c83364a3468792ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:b7:7f:0f:78:d9:cf:3b:cc:a3:f6:e6:79:5f:
79:98:ec:86:84:a0:1f:e2:1f:36:40:a0:1e:3a:3f:
6f:df:74:9f:3a:be:59:f2:ed:34:10:c7:c0:14:5d:
76:cd:27:ac:45:c1:b9:3f:78:6b:70:d0:78:19:a5:
2d:0d:d0:d0:26:3a:c1:6c:4d:30:fb:37:c3:70:d4:
d5:2a:b0:89:73:df:c1:47:11:0f:b7:77:a5:2f:b5:
e9:35:fd:46:34:31:13:bc:8d:50:f6:d2:03:59:14:
8f:dc:cb:70:95:dd:87:26:d8:8c:98:e1:59:88:fc:
da:12:61:d4:e3:ff:21:31:34:cf:fd:6a:05:71:2b:
6b:7e:46:3a:ac:8f:5d:6a:36:74:57:70:a6:7d:c5:
e5:a7:af:89:80:bf:98:f6:03:34:40:d6:dc:a8:7f:
d7:2b:37:37:2c:02:e4:a3:46:b9:25:3d:0a:08:3b:
3a:14:33:74:b8:38:ae:b1:e9:1b:c7:62:57:db:81:
90:5b:df:ef:bd:e0:e4:a3:00:93:96:a1:1b:8f:23:
6c:59:d7:0c:9d:8e:cf:96:c6:d0:9b:29:49:21:5f:
06:a3:e8:26:3d:fe:a4:e1:12:02:29:df:bc:8a:2b:
65:c3:61:c9:3d:1b:37:ef:dd:30:ea:3a:7d:95:95:
ef:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:2E:B1:3E:62:08:64:D0:21:D5:5E:36:C8:33:64:A3:46:87:92:EF
X509v3 Authority Key Identifier:
keyid:9C:03:1A:8B:6A:28:94:0C:79:36:BA:6E:78:2B:94:A0:96:2B:FB:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:c3:18:96:86:a2:dd:fd:1e:8e:40:21:2e:fd:09:99:ee:ff:
43:8b:62:79:c5:02:95:f2:30:d4:a3:dd:f2:c1:78:88:b2:4a:
20:fd:89:b1:f3:8b:15:1e:90:f8:b2:16:fc:75:cd:f2:3c:74:
01:8c:4f:28:78:a7:52:4a:62:56:24:61:ac:41:29:f4:a7:4d:
48:f6:ff:a5:6d:be:0b:5d:07:10:32:98:dd:01:9a:f2:52:5b:
8c:e5:88:bc:b5:eb:72:0e:03:9c:3f:9c:02:e1:0a:24:a4:3a:
c2:9b:48:62:83:b8:fc:ab:2c:10:96:5f:da:63:7c:2c:85:53:
e6:b0:d7:d2:99:c2:7f:52:04:8e:64:aa:2b:b1:78:2b:09:74:
7f:8a:85:7f:77:7f:ad:af:9c:d8:1f:8f:cb:45:55:7d:0a:28:
05:0a:a7:ae:fd:f3:e2:53:97:e3:e0:8f:26:2f:fb:f0:d0:09:
bd:aa:5b:50:5c:63:d5:c5:c0:d9:ed:f4:12:1b:6d:01:11:82:
c8:1a:6d:cb:b0:f2:c1:36:1c:c7:92:b8:df:a5:8f:cb:3d:34:
3f:12:56:12:ce:ae:04:08:c9:74:9b:b2:d9:e7:e4:2f:14:ed:
fb:7e:eb:83:c5:61:0e:b1:8a:c2:2b:05:19:67:89:11:2a:3a:
8e:8a:e3:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUcxFFmy1TbBK9ojQWGQZ9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljMDMxYThiNmEyODk0MGM3OTM2YmE2ZTc4MmI5NGEwOTYy
YmZiMjcwHhcNMjUwODIzMDEwMjQ3WhcNMjUwODI0MDEwMjQ3WjAzMTEwLwYDVQQD
Eyg4MDJlYjEzZTYyMDg2NGQwMjFkNTVlMzZjODMzNjRhMzQ2ODc5MmVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA47d/D3jZzzvMo/bmeV95mOyGhKAf
4h82QKAeOj9v33SfOr5Z8u00EMfAFF12zSesRcG5P3hrcNB4GaUtDdDQJjrBbE0w
+zfDcNTVKrCJc9/BRxEPt3elL7XpNf1GNDETvI1Q9tIDWRSP3Mtwld2HJtiMmOFZ
iPzaEmHU4/8hMTTP/WoFcStrfkY6rI9dajZ0V3CmfcXlp6+JgL+Y9gM0QNbcqH/X
Kzc3LALko0a5JT0KCDs6FDN0uDiusekbx2JX24GQW9/vveDkowCTlqEbjyNsWdcM
nY7PlsbQmylJIV8Go+gmPf6k4RICKd+8iitlw2HJPRs3790w6jp9lZXvuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIAusT5iCGTQIdVeNsgzZKNGh5LvMB8GA1UdIwQY
MBaAFJwDGotqKJQMeTa6bngrlKCWK/snMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkFNYWkyb29sQXg1TnJwdWVDdVVvSllyLXljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8zNDMzZmUtNjQwOC00NjhkLTgxZTQt
ZjAzZWI4NzQwYzNlLzEvbkFNYWkyb29sQXg1TnJwdWVDdVVvSllyLXljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy8zNDMzZmUtNjQwOC00NjhkLTgxZTQtZjAzZWI4NzQwYzNl
LzEvbkFNYWkyb29sQXg1TnJwdWVDdVVvSllyLXljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB8MYloai
3f0ejkAhLv0Jme7/Q4tiecUClfIw1KPd8sF4iLJKIP2JsfOLFR6Q+LIW/HXN8jx0
AYxPKHinUkpiViRhrEEp9KdNSPb/pW2+C10HEDKY3QGa8lJbjOWIvLXrcg4DnD+c
AuEKJKQ6wptIYoO4/KssEJZf2mN8LIVT5rDX0pnCf1IEjmSqK7F4Kwl0f4qFf3d/
ra+c2B+Py0VVfQooBQqnrv3z4lOX4+CPJi/78NAJvapbUFxj1cXA2e30EhttARGC
yBpty7DywTYcx5K436WPyz00PxJWEs6uBAjJdJuy2efkLxTt+37rg8VhDrGKwisF
GWeJESo6jorjHQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:31 2025 by rpki-client