Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft
File: nj3BkwnmeMFIJfxyCDyh3seEP00.mft (raw, json)
Hash identifier: kQqgEfo9cJXShj0aLQ3MD3k7QQor694gQJPvpvY68As=
Subject key identifier: 73:F3:DF:A3:FE:8F:D7:23:08:ED:35:E4:B0:21:61:BB:F3:2E:AC:45
Authority key identifier: 9E:3D:C1:93:09:E6:78:C1:48:25:FC:72:08:3C:A1:DE:C7:84:3F:4D
Certificate issuer: /CN=9e3dc19309e678c14825fc72083ca1dec7843f4d
Certificate serial: 0199FCC6C8D4BA57C9810426D67E3A68B81D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nj3BkwnmeMFIJfxyCDyh3seEP00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft
Manifest number: 14FF
Signing time: Sun 19 Oct 2025 14:01:49 +0000
Manifest this update: Sun 19 Oct 2025 14:01:49 +0000
Manifest next update: Mon 20 Oct 2025 14:01:49 +0000
Files and hashes: 1: JbUoXDLL57xF-6BVNBln0RftcZM.roa (hash: t8EC2530fZ+9x7+BNfg3gfNISOK9q19vZC97hYMQk9g=)
2: nj3BkwnmeMFIJfxyCDyh3seEP00.crl (hash: RXP/rMStCS2DS8FQ1rZmeltwTAyabYu6ujnXdXuSaGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft
rsync://rpki.ripe.net/repository/DEFAULT/nj3BkwnmeMFIJfxyCDyh3seEP00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:c8:d4:ba:57:c9:81:04:26:d6:7e:3a:68:b8:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e3dc19309e678c14825fc72083ca1dec7843f4d
Validity
Not Before: Oct 19 14:01:49 2025 GMT
Not After : Oct 20 14:01:49 2025 GMT
Subject: CN=73f3dfa3fe8fd72308ed35e4b02161bbf32eac45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:4a:5c:9f:34:ed:09:fa:04:1d:68:44:f0:13:
6f:f0:ce:ad:27:f2:2a:21:1e:47:7a:77:6b:34:72:
af:cd:ca:9f:b0:96:29:35:00:3b:de:80:f0:a5:44:
30:33:07:75:d2:44:e1:c7:04:6c:3b:5e:ff:71:74:
6a:b6:4d:b1:3b:5d:c9:8b:45:65:18:79:4f:57:1b:
58:65:20:d7:41:bd:c1:9c:f5:e5:17:7d:25:75:3d:
cc:d6:36:6c:03:1b:45:fa:aa:1d:4d:31:e3:e3:42:
c0:83:b7:bb:d7:db:1e:a6:76:64:5c:80:75:be:a8:
75:23:f9:fe:07:43:ac:32:ad:49:0a:20:f2:4c:fb:
82:75:37:88:0e:bf:49:35:4d:1a:c7:6d:f0:73:07:
28:e8:b5:46:cb:48:67:17:69:14:d8:1a:52:ea:3a:
86:35:8c:b0:a7:59:fd:98:5f:19:26:19:8e:65:4a:
e8:01:6b:91:4c:8a:8a:14:cc:31:c4:96:ff:90:02:
20:f7:bd:ed:44:06:25:39:dc:8b:77:4c:41:bd:0f:
fa:3f:87:76:9e:7f:f8:bc:21:69:59:19:d7:50:38:
50:e7:36:e4:e1:ff:81:1c:2b:f6:30:9f:52:5d:05:
a8:0b:6c:da:61:c0:bc:7b:71:01:f2:84:d8:34:e9:
03:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F3:DF:A3:FE:8F:D7:23:08:ED:35:E4:B0:21:61:BB:F3:2E:AC:45
X509v3 Authority Key Identifier:
keyid:9E:3D:C1:93:09:E6:78:C1:48:25:FC:72:08:3C:A1:DE:C7:84:3F:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nj3BkwnmeMFIJfxyCDyh3seEP00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:0e:26:d8:6b:f7:ad:13:9d:e3:1f:8c:bc:25:2d:6e:f9:e7:
53:14:fd:8d:37:c7:f4:c6:ca:ff:67:96:dd:85:29:8a:d6:6e:
5a:4e:66:8d:e1:e0:92:05:b4:2a:9e:28:2d:c2:39:7b:49:a3:
67:54:1c:54:74:7a:aa:86:aa:33:f9:f6:bb:85:1d:65:37:31:
d0:4c:39:c9:56:18:b9:de:a4:36:3f:73:59:87:8c:7b:4c:c4:
77:d0:0e:d0:5b:fa:f5:65:a4:39:1f:14:6a:7c:c0:e8:a5:0b:
d6:d8:aa:4a:ed:4d:30:67:0c:37:5f:b0:f5:37:5d:ed:9a:75:
76:12:62:04:56:8e:2a:f0:89:e7:c4:fb:13:ea:c0:ce:db:bc:
cc:2a:ee:e1:67:ba:42:46:60:52:ba:c0:0e:05:27:69:04:88:
07:b6:e9:ed:c9:a1:76:a0:a4:a9:f4:e2:2d:b4:13:fa:2c:5d:
b9:6e:ca:d6:28:62:24:b9:10:6c:33:a5:bc:59:66:f4:31:62:
2f:32:83:95:43:03:7e:c6:6c:71:f5:2e:62:7f:be:5d:df:fb:
a2:b8:de:6b:0e:b2:14:40:b9:34:62:46:82:8b:1e:fb:db:76:
b9:1d:68:c6:9b:c1:ab:8e:f1:5b:ad:75:e8:35:82:cf:c5:fe:
ce:63:80:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:19:19 2025 by rpki-client