Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
File: nEswhmFPR4OKPoCj5uBR09imkvk.mft (raw, json)
Hash identifier: wgiKzrWUFvc/eZeX57KCt6cJcEJAahOW4yUa5C+pdBA=
Subject key identifier: 23:3A:BF:44:4E:F6:7E:8B:0F:37:68:A4:FD:CF:0F:CF:A8:95:68:CA
Authority key identifier: 9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
Certificate issuer: /CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Certificate serial: 0198D6607A993DD3C034336C86972663D51C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
Manifest number: 0696
Signing time: Sat 23 Aug 2025 10:01:43 +0000
Manifest this update: Sat 23 Aug 2025 10:01:43 +0000
Manifest next update: Sun 24 Aug 2025 10:01:43 +0000
Files and hashes: 1: a_Q0Oj2hhJ8gyCrgqERD5VjhULo.roa (hash: ix5ZmIac7PSSZ8cbH+U6PyHdhcxmOIX450xPjZ8S6o0=)
2: nEswhmFPR4OKPoCj5uBR09imkvk.crl (hash: rEmZ+eoBQeHpOynsNbwJljm6tUFhd0roM5HXJYoSLdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:7a:99:3d:d3:c0:34:33:6c:86:97:26:63:d5:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Validity
Not Before: Aug 23 10:01:43 2025 GMT
Not After : Aug 24 10:01:43 2025 GMT
Subject: CN=233abf444ef67e8b0f3768a4fdcf0fcfa89568ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:c3:08:24:04:6b:c2:0c:c7:b3:32:47:6e:45:
89:df:df:d4:82:79:7b:6d:d1:5b:1d:35:28:03:10:
e2:bb:74:54:95:ca:39:7a:51:a4:c6:26:81:47:09:
d4:d3:34:dd:0a:34:91:26:8b:c7:6e:94:1e:42:cd:
12:0c:bf:8a:21:ad:3a:6d:96:12:3c:ca:7a:34:64:
bf:47:ea:0a:3f:da:22:b4:59:6a:5f:35:36:29:1e:
0e:0f:19:5f:f1:de:a7:6e:48:57:86:61:b7:6f:fe:
4d:69:d8:ae:c9:43:56:6b:cc:8a:9b:ad:ae:2a:f5:
26:cc:54:e6:47:65:8b:7e:40:6e:94:89:45:26:9f:
a5:b1:5b:0a:22:db:78:8c:5c:2a:f2:1c:a2:5c:79:
17:81:19:2a:0c:01:6c:f3:01:99:ab:71:de:fc:22:
75:cb:c8:a0:bc:4f:f1:d0:20:bf:01:d9:ad:16:a1:
c8:38:bb:32:88:41:3f:3f:bc:e2:14:8d:32:4f:35:
89:7a:d3:df:ef:bf:d7:47:f9:e6:e8:59:98:3d:06:
cb:7b:ce:fd:77:70:7b:50:1b:e5:07:7a:58:9e:10:
17:1f:a6:05:aa:4f:e5:99:7c:4e:61:59:4a:c6:ea:
3b:53:74:55:3a:98:9e:93:c4:cf:0b:2b:74:a6:4e:
0d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:3A:BF:44:4E:F6:7E:8B:0F:37:68:A4:FD:CF:0F:CF:A8:95:68:CA
X509v3 Authority Key Identifier:
keyid:9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:6f:8d:87:f7:d4:aa:77:de:f7:f3:b7:04:60:8f:2d:61:16:
d5:ec:19:6d:8c:79:54:9d:dd:76:b5:c3:76:cd:65:cd:33:80:
77:e6:60:1b:2f:b6:ee:7d:bf:2e:b5:91:76:9c:8f:fa:ad:1c:
b8:58:b4:5d:f9:e7:fb:5e:93:cb:a8:be:c3:37:bd:93:95:58:
34:5d:a2:a6:aa:09:5d:81:b2:06:9c:82:d1:63:43:d2:9a:a4:
a4:6c:68:91:87:6b:8e:f3:c1:3f:3e:7b:48:ea:47:f9:a3:0e:
61:5f:6f:be:12:e6:07:57:bf:75:ba:1b:3d:54:73:88:fd:1b:
ea:62:a0:76:13:c9:db:6f:35:24:d9:ae:70:5f:9c:06:82:dd:
7c:46:77:46:7a:14:c1:ba:fb:9a:dd:c4:9b:7d:10:4b:ca:d7:
ba:94:a8:53:dd:60:53:b5:c7:9d:62:0b:b5:c2:c1:d6:99:82:
ce:ab:61:3d:da:a8:c4:5b:d7:7b:d1:97:59:65:0e:3e:2c:0a:
40:6d:9e:b5:e7:83:e3:b5:1c:30:83:85:6e:ad:8e:46:1d:ca:
ef:66:e6:bf:ca:a8:b5:76:f3:2b:61:ae:8b:df:06:93:86:55:
f5:5a:c8:d2:81:b5:48:e7:97:b9:1a:03:ad:3f:f0:07:78:20:
0c:e9:7f:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:23:16 2025 by rpki-client