Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
File: nTHCM8vSZtsCYgud65DQjkFpLmc.mft (raw, json)
Hash identifier: xppQe3y51o+Kai5oXknvmYtQRaNMo0sB9dH5gygHRLg=
Subject key identifier: B5:A0:68:56:C6:30:8D:5F:25:BC:26:46:8E:C4:01:5B:8D:63:B5:25
Authority key identifier: 9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
Certificate issuer: /CN=9d31c233cbd266db02620b9deb90d08e41692e67
Certificate serial: 0198D4727BB8CEA306ADE43303E13AEA9DA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
Manifest number: 0D29
Signing time: Sat 23 Aug 2025 01:02:09 +0000
Manifest this update: Sat 23 Aug 2025 01:02:09 +0000
Manifest next update: Sun 24 Aug 2025 01:02:09 +0000
Files and hashes: 1: _rMAcV1Zh6HxKo_vwEpVhjFVwy8.roa (hash: r1imevw1h8qWVS0OoTwBJnDWSm49xN9+9T+LLaWUqWk=)
2: nTHCM8vSZtsCYgud65DQjkFpLmc.crl (hash: TVwhC7fE0x24oVWdBOMpQwzODLOskosLOgfNfjc0JU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:7b:b8:ce:a3:06:ad:e4:33:03:e1:3a:ea:9d:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d31c233cbd266db02620b9deb90d08e41692e67
Validity
Not Before: Aug 23 01:02:09 2025 GMT
Not After : Aug 24 01:02:09 2025 GMT
Subject: CN=b5a06856c6308d5f25bc26468ec4015b8d63b525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:6e:fd:fd:f7:18:3d:98:dd:09:38:2e:ae:37:
1c:97:08:18:7b:6c:ed:32:09:30:d9:56:39:c6:ec:
a3:bc:31:c3:58:2b:26:ae:7e:45:9e:2a:08:90:c3:
84:37:2a:5f:68:e7:0a:01:0f:d8:37:3b:be:3e:93:
90:6a:a4:05:98:2e:87:49:c9:ff:52:0f:8d:88:59:
a3:3f:8c:92:ac:60:de:34:bf:9e:a4:a0:ed:ac:10:
f6:c7:ef:c1:80:b5:23:87:0f:f0:dd:40:9d:ef:31:
4a:32:0c:25:e5:02:54:3d:7f:7a:e5:db:b8:b4:f3:
6a:43:90:98:4e:eb:ef:5f:e2:98:5e:5a:d3:85:bd:
3d:17:52:61:57:f9:bc:94:ba:56:d0:f9:ec:03:26:
2c:c5:cc:c2:c5:a7:83:b1:3f:da:a6:9b:55:17:ae:
24:4f:25:13:6d:08:78:37:02:e5:0d:3f:2b:72:83:
c0:c5:f7:87:15:f4:e8:df:08:01:38:e2:24:b3:a6:
3d:70:9c:e0:43:49:3c:8e:5c:e5:56:3a:d4:cf:96:
16:3a:ae:d3:7f:8b:58:bc:d5:31:16:37:9e:24:d5:
5c:69:57:46:15:4d:dd:22:01:3d:56:a6:87:04:c6:
ce:3b:59:eb:e7:2e:ec:cc:22:f0:10:f7:58:dc:94:
ef:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:A0:68:56:C6:30:8D:5F:25:BC:26:46:8E:C4:01:5B:8D:63:B5:25
X509v3 Authority Key Identifier:
keyid:9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:c7:3d:f5:8e:55:aa:1c:67:5b:86:a9:23:a8:ec:5e:a0:a8:
be:2e:3e:e5:d2:38:0c:f1:b7:6d:8d:9f:f6:25:15:4d:61:b8:
c2:58:13:5c:9b:7b:8d:10:96:89:3f:59:c7:60:d2:b4:7e:8c:
2f:a2:b8:fd:23:ab:73:77:53:f9:74:3b:03:11:25:a1:70:eb:
4c:9f:7e:0b:68:17:16:9e:fb:ca:13:76:11:27:d4:7a:c2:b2:
eb:96:b4:5e:70:38:96:9a:96:b2:05:75:c5:87:d3:e0:bc:a2:
ab:74:7a:5d:8a:d2:32:2d:f6:73:40:9d:15:d0:b0:cc:a8:46:
0e:e2:57:3f:f1:f9:2c:50:ee:f3:f1:2a:83:ce:73:c8:41:19:
9e:d8:d3:12:65:76:86:e7:34:74:6d:3e:65:9e:4e:49:80:2e:
1c:2c:3c:a1:d7:cf:d1:b6:c2:6a:7e:31:30:31:dd:7b:c2:73:
6f:14:48:16:69:75:64:41:95:ee:c4:b9:d1:85:e8:31:6d:ea:
51:63:f9:13:90:8e:95:ea:06:1a:07:85:28:60:c6:90:72:ac:
04:06:8b:c9:18:1d:6f:34:c7:e8:68:a6:a1:fa:10:96:3c:84:
8d:4e:35:4a:bb:57:fd:9e:71:94:2a:2d:6f:18:18:f0:41:87:
c9:99:2d:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:32:43 2025 by rpki-client