Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.mft
File: nQhzWjV9MfqK2jHinxlYam_9lZI.mft (raw, json)
Hash identifier: oTOwC7u0fibR2KDSS+PWrOgsyqZLlrxObMas8haPY4A=
Subject key identifier: F0:B2:3A:E5:FA:25:AD:D1:BE:B6:FD:39:35:43:A2:24:6A:4A:3C:67
Authority key identifier: 9D:08:73:5A:35:7D:31:FA:8A:DA:31:E2:9F:19:58:6A:6F:FD:95:92
Certificate issuer: /CN=9d08735a357d31fa8ada31e29f19586a6ffd9592
Certificate serial: 0198D65F306132790321034E63F508F2F940
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQhzWjV9MfqK2jHinxlYam_9lZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.mft
Manifest number: 0599
Signing time: Sat 23 Aug 2025 10:00:19 +0000
Manifest this update: Sat 23 Aug 2025 10:00:19 +0000
Manifest next update: Sun 24 Aug 2025 10:00:19 +0000
Files and hashes: 1: nQhzWjV9MfqK2jHinxlYam_9lZI.crl (hash: rIt6XTJdNTKd5rIZO/vhdflIf9F/zxPcuJPY3w7w84o=)
2: zCy2TEUINZmipMaXJF_ZJiCXKXs.roa (hash: kFNybXZv7aLQUvfMaX6TQe+E+VLOfa/7bi5eq9XGzik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/nQhzWjV9MfqK2jHinxlYam_9lZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:30:61:32:79:03:21:03:4e:63:f5:08:f2:f9:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d08735a357d31fa8ada31e29f19586a6ffd9592
Validity
Not Before: Aug 23 10:00:19 2025 GMT
Not After : Aug 24 10:00:19 2025 GMT
Subject: CN=f0b23ae5fa25add1beb6fd393543a2246a4a3c67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:66:57:4f:df:3b:bf:51:49:6e:62:81:a2:59:
ad:47:c8:af:97:b1:61:c3:7b:fb:e5:8d:50:45:fb:
2f:ad:f9:6c:48:4e:8d:2a:61:ff:bf:d3:c0:cf:f8:
75:b4:5d:d6:f3:44:2d:65:f5:82:9d:8f:5d:a8:9f:
83:72:a7:ab:14:67:97:65:0b:15:c2:91:3a:67:af:
e3:a6:c8:01:1a:ea:f4:a1:39:2a:94:7a:9d:2f:aa:
ff:cc:62:88:13:88:a5:24:23:f7:20:c6:9a:9b:ae:
19:60:4f:82:bc:55:44:e6:07:ef:ba:5b:9b:e1:29:
4a:c2:75:ae:59:73:4a:e7:03:d1:8f:02:87:04:47:
2d:97:58:81:7f:77:bf:61:a0:48:1d:2c:d5:a2:60:
a2:8d:c1:00:2a:72:fc:1b:84:3a:01:b0:9a:ef:86:
38:04:dd:c2:7f:4a:26:40:1d:f9:34:1e:46:db:a6:
96:c9:c8:04:9f:71:93:24:69:bf:22:dd:7b:9c:df:
3f:f7:14:58:3b:8a:4b:4d:c4:68:ee:81:40:f4:3b:
0d:f8:0e:45:97:f9:df:6b:8a:bf:24:d8:98:c4:f1:
ff:9c:cb:10:37:dc:dd:c2:ec:5a:3d:f6:be:ba:66:
2e:4b:d1:62:29:5c:aa:8d:15:c4:a9:80:82:86:c3:
62:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:B2:3A:E5:FA:25:AD:D1:BE:B6:FD:39:35:43:A2:24:6A:4A:3C:67
X509v3 Authority Key Identifier:
keyid:9D:08:73:5A:35:7D:31:FA:8A:DA:31:E2:9F:19:58:6A:6F:FD:95:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQhzWjV9MfqK2jHinxlYam_9lZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:fe:58:25:7a:c7:e7:78:0f:42:ac:a4:56:6d:da:5d:23:5c:
79:f8:3e:b6:75:59:b3:28:61:ae:ae:e0:38:73:f6:0d:3a:09:
96:63:80:bc:b7:57:3d:d6:27:3b:2a:c0:7c:ab:db:fa:1a:99:
0b:9d:ad:fc:3a:ba:0e:fd:b4:b8:bf:1b:d3:12:2e:b4:c9:3b:
65:b8:c6:d4:75:70:8e:0e:7d:5e:bf:78:7c:ea:ae:af:58:05:
c0:ea:6d:cb:e8:ca:72:31:c3:4b:97:ef:a5:0a:19:50:35:82:
19:f0:8d:35:61:8a:34:2f:66:3a:ba:5e:6e:9d:b7:ce:2d:8a:
87:ae:02:ad:3e:ba:de:e8:c7:88:b5:ba:2d:b9:48:1a:c0:66:
b3:9f:a0:b5:94:4c:00:ce:61:86:0a:45:a4:ef:ea:c1:74:52:
f7:5c:a0:c0:c1:94:c1:79:c8:0f:a5:cb:8b:18:80:8b:e6:ba:
c7:9c:f6:1a:46:20:02:30:e9:d1:09:14:2d:3b:e7:d7:14:36:
e5:bf:a5:d8:66:81:eb:f6:d4:95:a0:8d:fd:20:b4:bd:5f:87:
ba:5c:fe:02:b6:cc:91:e2:1f:08:9a:d0:ab:09:16:2e:4b:63:
06:2d:04:4c:a9:d1:a6:d0:07:78:4d:31:69:23:1e:42:33:48:
e7:e1:37:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:12:30 2025 by rpki-client