Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft
File: nj3BkwnmeMFIJfxyCDyh3seEP00.mft (raw, json)
Hash identifier: D+pvLLHQNeEmsA/q4FsFlf8QvWAzkwsNzPwSNovGwp4=
Subject key identifier: C7:43:3B:B7:E9:B8:E8:B7:4A:76:EF:30:6B:D5:89:C0:4B:FF:23:D9
Authority key identifier: 9E:3D:C1:93:09:E6:78:C1:48:25:FC:72:08:3C:A1:DE:C7:84:3F:4D
Certificate issuer: /CN=9e3dc19309e678c14825fc72083ca1dec7843f4d
Certificate serial: 0198D54EB3F81FA133D3C320F7A4213D4D04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nj3BkwnmeMFIJfxyCDyh3seEP00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft
Manifest number: 1466
Signing time: Sat 23 Aug 2025 05:02:41 +0000
Manifest this update: Sat 23 Aug 2025 05:02:41 +0000
Manifest next update: Sun 24 Aug 2025 05:02:41 +0000
Files and hashes: 1: JbUoXDLL57xF-6BVNBln0RftcZM.roa (hash: t8EC2530fZ+9x7+BNfg3gfNISOK9q19vZC97hYMQk9g=)
2: nj3BkwnmeMFIJfxyCDyh3seEP00.crl (hash: 5XlAM3GGIdkZsPsjLZhUtlM6sI8ZBuWptzSjZsgfB9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft
rsync://rpki.ripe.net/repository/DEFAULT/nj3BkwnmeMFIJfxyCDyh3seEP00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:b3:f8:1f:a1:33:d3:c3:20:f7:a4:21:3d:4d:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e3dc19309e678c14825fc72083ca1dec7843f4d
Validity
Not Before: Aug 23 05:02:41 2025 GMT
Not After : Aug 24 05:02:41 2025 GMT
Subject: CN=c7433bb7e9b8e8b74a76ef306bd589c04bff23d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cb:ae:5e:4f:61:f5:f6:c3:41:a0:05:43:db:
7d:d9:93:e9:bc:d9:7d:2c:f4:de:16:09:98:1f:5e:
c7:6b:94:bc:5c:7c:5b:cf:90:54:cc:ef:13:64:46:
a6:f7:be:ec:f7:00:2a:a0:88:87:66:6f:5d:81:32:
6d:89:37:5f:34:fc:1c:46:dc:24:c4:e1:35:05:48:
43:4c:0d:1b:68:b0:20:29:c4:92:3d:4b:c4:fa:3d:
ae:f4:69:f7:c2:4c:3f:08:b9:ca:01:ef:75:82:cc:
d8:d2:01:43:96:b7:c0:96:c8:23:b1:31:fd:89:99:
a1:07:96:c6:28:53:26:00:a2:d5:bd:11:48:b6:d1:
29:01:cc:55:46:de:7b:44:fb:1b:80:5f:a0:de:9b:
ba:5a:6e:81:c6:21:ca:4d:83:77:23:eb:bc:53:50:
54:93:45:be:d2:3c:bb:69:17:26:25:1a:a7:0b:9d:
b8:3b:6e:47:4f:42:b3:87:42:ef:2b:ca:9e:7c:ab:
66:9b:de:98:26:47:2e:55:3e:b4:50:5a:52:7a:87:
2b:60:d6:3b:bd:18:d1:24:81:87:70:ea:71:f5:f3:
98:38:9f:d0:a8:0b:28:92:5a:b2:60:28:bf:06:b2:
b9:75:41:5c:0e:7a:d2:af:c8:b5:ea:87:3d:c3:99:
2e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:43:3B:B7:E9:B8:E8:B7:4A:76:EF:30:6B:D5:89:C0:4B:FF:23:D9
X509v3 Authority Key Identifier:
keyid:9E:3D:C1:93:09:E6:78:C1:48:25:FC:72:08:3C:A1:DE:C7:84:3F:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nj3BkwnmeMFIJfxyCDyh3seEP00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:c4:e1:b8:45:75:04:cd:b0:d0:33:08:71:f9:21:f2:51:f7:
23:9a:01:69:59:29:b2:11:44:0e:81:96:f7:ee:ee:ca:63:94:
30:71:83:e7:a5:0c:1a:9f:46:ab:36:48:20:ed:8d:51:d0:c4:
98:ef:c8:ea:01:80:f0:7b:3e:ee:19:2d:bf:99:58:50:d9:39:
78:35:24:e6:f5:d8:41:ee:38:93:4d:ea:d1:8c:d0:22:aa:2c:
7c:0f:15:fd:a7:a8:18:9e:d8:7a:82:28:f3:a3:7b:aa:44:8a:
71:4e:9c:da:50:1a:3d:41:8e:c9:7f:51:76:b2:af:da:7d:8d:
ca:cf:18:2c:ba:71:af:06:9c:ed:a1:ed:e9:20:53:95:c7:a5:
8a:03:8a:8c:e0:2b:1d:2c:e2:92:dd:97:90:a0:6c:5e:82:ed:
5d:d7:46:d7:ce:af:f4:d9:5b:1a:78:31:b9:80:5d:e8:29:01:
14:6b:52:8c:52:d9:9e:5b:df:14:9b:b2:d1:b9:d2:1a:9a:ba:
89:11:7e:ba:fe:00:48:67:e1:3d:0c:a0:ac:65:c4:85:1d:1a:
92:1e:02:bf:35:a6:4c:2f:e2:48:cf:ef:43:21:6c:de:59:6b:
3a:f0:9c:61:2c:09:3b:5c:9a:89:4d:c0:9a:77:87:e4:85:78:
67:17:af:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:29:47 2025 by rpki-client