Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
File: nSh1M866BkWhSM8QyMJ-qachoJ0.mft (raw, json)
Hash identifier: YfcWAvbHni4PlZSGnSCB3wXMOYrfzXc4EcyrsWrCxvs=
Subject key identifier: 36:9F:98:05:3F:7C:B0:47:24:DD:E4:49:9D:D2:39:6C:35:22:B6:BA
Authority key identifier: 9D:28:75:33:CE:BA:06:45:A1:48:CF:10:C8:C2:7E:A9:A7:21:A0:9D
Certificate issuer: /CN=9d287533ceba0645a148cf10c8c27ea9a721a09d
Certificate serial: 0199FC58FEAB3CE5A4E77BF9728D6DCADD47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 12:01:54 +0000
Manifest this update: Sun 19 Oct 2025 12:01:54 +0000
Manifest next update: Mon 20 Oct 2025 12:01:54 +0000
Files and hashes: 1: MEQtA-51-LVqFHEVZDRMjfjnudY.roa (hash: mP68hXGlyjMnNhpMDZaBlI/pFMVdjYCWoJ7Gpxv9o84=)
2: Re1CMq4a8GRTlVAhciRLdjmNzME.roa (hash: e1LlxuTfucQ1ynw/jUhK7unO/vlcuYPu64TBZ3UmBVk=)
3: nSh1M866BkWhSM8QyMJ-qachoJ0.crl (hash: YDVOIKB1BsLhp8r8sMRcpQo1WCbDwSjAyeLJ2Rc7P9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:fe:ab:3c:e5:a4:e7:7b:f9:72:8d:6d:ca:dd:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d287533ceba0645a148cf10c8c27ea9a721a09d
Validity
Not Before: Oct 19 12:01:54 2025 GMT
Not After : Oct 20 12:01:54 2025 GMT
Subject: CN=369f98053f7cb04724dde4499dd2396c3522b6ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:66:f0:1c:7b:57:7a:c1:d2:e0:e4:71:e8:69:
1f:14:44:9e:85:84:56:c2:4a:0b:3c:b3:75:74:9d:
34:c1:fb:23:1b:a5:78:91:40:85:9e:9b:bd:64:f7:
15:38:e6:bb:4c:63:79:aa:6b:28:9f:ff:c9:91:92:
9d:97:57:37:e1:72:bc:23:a6:22:bb:c2:74:32:72:
93:d0:6e:c6:b3:0f:a9:27:83:e3:bd:e0:b3:0f:d3:
3b:b6:25:b9:d3:05:46:e1:b5:54:7e:43:f4:ab:52:
d8:c4:84:11:95:b7:79:44:af:e2:b7:f3:be:db:6a:
13:1b:d5:fc:7a:56:4b:f0:0d:1d:77:c1:8f:f7:c9:
7f:d3:29:6d:70:97:41:e6:b0:8d:0e:8d:2d:f5:51:
91:ba:bf:19:79:3c:09:17:42:18:db:66:94:74:4c:
a2:84:c8:a9:a4:c0:8e:37:b9:6f:78:cb:0a:04:fa:
75:d4:fb:9f:19:e8:24:af:a2:4d:62:bd:e3:e5:95:
30:9a:f8:ab:47:bb:d5:64:7d:c7:04:0f:0a:2d:38:
87:d0:d6:f1:0a:b7:16:0d:94:3a:66:b6:f9:7e:eb:
09:59:a6:83:d7:6c:ac:c7:a9:69:3f:d7:78:4f:da:
39:cd:80:34:b1:a7:47:d9:fe:62:93:03:80:30:21:
a2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:9F:98:05:3F:7C:B0:47:24:DD:E4:49:9D:D2:39:6C:35:22:B6:BA
X509v3 Authority Key Identifier:
keyid:9D:28:75:33:CE:BA:06:45:A1:48:CF:10:C8:C2:7E:A9:A7:21:A0:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:58:c3:86:43:66:0b:8f:d2:ee:bd:92:f8:ed:8a:d1:3a:68:
56:16:0e:88:fb:9f:1d:62:0b:65:df:06:94:ae:34:9f:f8:c2:
28:6c:1e:1e:cd:0d:6a:1f:db:53:bb:80:db:ca:f7:c2:f3:f6:
2d:da:98:bf:b8:10:0f:56:e3:65:44:a9:b1:ee:9f:07:5a:c3:
bc:25:91:82:d4:26:be:8d:c6:0c:d1:58:38:8b:c8:fb:b7:a5:
45:26:e3:9e:d0:2f:c1:c3:0f:d9:a3:ec:2a:34:a9:00:f7:39:
05:60:48:bb:e6:81:41:7a:b9:c0:05:c5:5e:3f:2b:51:61:3f:
f9:d4:c7:a4:34:6d:16:ed:08:da:5c:14:18:1d:10:ff:28:0d:
47:e6:e2:82:fa:6a:22:41:b6:d9:65:f7:08:18:51:b1:d6:b0:
51:88:18:20:66:2e:e2:bb:61:02:cf:c1:75:f6:2c:fd:75:da:
b8:cd:d6:f9:52:6c:7c:2c:6f:31:31:4d:34:50:1a:37:de:0d:
8b:70:ef:bd:63:c2:a0:76:2a:a8:94:18:8e:f3:74:a0:17:c6:
b0:6c:a5:04:2c:06:92:fb:0d:84:cd:f8:6e:c1:cf:3c:d3:7f:
31:1a:91:68:2c:29:49:97:69:f0:e7:33:8b:0a:cd:ec:a4:7f:
06:a9:e8:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:47:48 2025 by rpki-client