Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
File: nxFouFcXoUZmABtbL2yQgBmX3gY.mft (raw, json)
Hash identifier: hNLoLs315EDJrFU4BH0yoBhkNx39mlMwdQDs6sOqFSU=
Subject key identifier: EB:65:6A:E1:67:DE:94:D2:E7:6A:31:52:80:30:96:A2:A2:CD:80:2D
Authority key identifier: 9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06
Certificate issuer: /CN=9f1168b85717a14666001b5b2f6c90801997de06
Certificate serial: 019A02230B989193DB53C83C209E410D32B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
Manifest number: 0497
Signing time: Mon 20 Oct 2025 15:00:42 +0000
Manifest this update: Mon 20 Oct 2025 15:00:42 +0000
Manifest next update: Tue 21 Oct 2025 15:00:42 +0000
Files and hashes: 1: 3aRtdaLoPOZF10CX_CZEh4-VCqI.roa (hash: OscvtFvqL/u9a9yzvKDIzZQyXS+BuqyG+0F0KwScDL8=)
2: nxFouFcXoUZmABtbL2yQgBmX3gY.crl (hash: JT/BbyioWf3GBqukEeiRnRcRei7EHHPcPIu1QKtbRMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:02:23:0b:98:91:93:db:53:c8:3c:20:9e:41:0d:32:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f1168b85717a14666001b5b2f6c90801997de06
Validity
Not Before: Oct 20 15:00:42 2025 GMT
Not After : Oct 21 15:00:42 2025 GMT
Subject: CN=eb656ae167de94d2e76a3152803096a2a2cd802d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:65:8c:35:5f:52:87:74:44:b0:b6:ba:75:e8:
a8:3e:fa:cf:91:bd:3b:a2:4b:e6:cd:13:c7:f4:12:
05:e1:6f:f3:10:35:78:9c:14:2e:ca:75:f0:e3:da:
83:84:5b:9c:9a:f9:80:4f:d2:6e:b6:db:47:91:cc:
c1:df:e1:04:1d:5c:39:c1:97:3a:b8:a3:b2:ac:ae:
19:60:cb:7c:0b:3c:6e:1c:20:0d:83:b2:e6:5b:f3:
6a:33:1d:06:21:4e:b2:4e:71:b3:7b:65:03:d2:d4:
8d:ee:87:f6:b7:99:18:c4:e2:3f:55:cc:08:c8:93:
92:2b:f4:c1:82:62:79:2d:a2:45:c4:68:a1:bc:ff:
25:50:ee:74:8a:8c:5d:17:d0:b6:97:e6:7c:9a:ba:
23:41:6b:f1:d7:07:5d:ff:3a:7c:40:27:77:5e:90:
9a:a1:a3:7e:42:98:b7:03:cb:49:18:8f:3d:3a:2c:
03:1d:60:d8:14:0c:47:3e:85:4f:49:1c:f1:1f:37:
0f:f2:76:14:a0:ee:5a:19:c4:cf:b4:b3:70:49:db:
d9:d7:6b:19:10:ab:32:c3:12:5d:ac:be:c1:16:78:
f4:47:70:09:13:64:df:c6:9f:5e:ce:5b:88:f0:d9:
47:2e:4a:0a:01:06:a9:a8:e7:34:d5:58:8c:d3:82:
79:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:65:6A:E1:67:DE:94:D2:E7:6A:31:52:80:30:96:A2:A2:CD:80:2D
X509v3 Authority Key Identifier:
keyid:9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:38:ba:a5:e0:48:15:ea:83:f2:6d:b6:5b:f5:f8:c2:ed:f1:
3b:7f:a5:6f:3d:ae:0e:c7:a8:f2:f3:b0:b2:b3:ac:d2:0b:b0:
a5:54:2f:25:63:ab:1a:6e:6f:48:8b:ff:b6:67:bc:1d:f0:76:
9b:81:c5:f0:d7:55:be:cd:03:34:3c:39:6d:b5:dd:c1:c2:ca:
b1:b5:db:d2:8c:b1:c7:f0:b5:f2:1f:e0:a9:20:4e:24:86:b7:
9c:fa:4f:12:14:06:c8:4a:61:33:69:5c:09:07:a2:4d:a2:31:
ae:57:a5:b5:9b:ef:e2:36:53:be:7f:66:c1:62:63:c9:66:4f:
b0:1c:87:9c:89:48:7a:33:21:c1:cc:75:96:19:0f:f9:f2:f2:
e9:28:65:d3:0a:35:17:02:34:bf:db:71:2c:12:9e:a1:d9:23:
80:7d:42:cb:7a:37:fa:2d:60:ff:74:95:bd:be:44:c3:64:6e:
01:91:09:3e:d2:f4:5e:80:0d:7c:4f:06:dc:5d:5e:f5:1a:cf:
4e:a7:d2:93:27:f8:5f:8e:27:27:0a:fa:ca:ba:14:a5:da:b5:
98:32:13:c5:47:e5:f6:86:1f:d8:b3:77:4e:7b:88:7c:c2:9d:
00:0e:28:04:5e:bc:92:2c:54:b7:ed:30:2f:b1:5a:7d:e8:63:
58:d4:5b:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoCIwuYkZPbU8g8IJ5BDTKxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMTE2OGI4NTcxN2ExNDY2NjAwMWI1YjJmNmM5MDgwMTk5
N2RlMDYwHhcNMjUxMDIwMTUwMDQyWhcNMjUxMDIxMTUwMDQyWjAzMTEwLwYDVQQD
EyhlYjY1NmFlMTY3ZGU5NGQyZTc2YTMxNTI4MDMwOTZhMmEyY2Q4MDJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA12WMNV9Sh3REsLa6deioPvrPkb07
okvmzRPH9BIF4W/zEDV4nBQuynXw49qDhFucmvmAT9JutttHkczB3+EEHVw5wZc6
uKOyrK4ZYMt8CzxuHCANg7LmW/NqMx0GIU6yTnGze2UD0tSN7of2t5kYxOI/VcwI
yJOSK/TBgmJ5LaJFxGihvP8lUO50ioxdF9C2l+Z8mrojQWvx1wdd/zp8QCd3XpCa
oaN+Qpi3A8tJGI89OiwDHWDYFAxHPoVPSRzxHzcP8nYUoO5aGcTPtLNwSdvZ12sZ
EKsywxJdrL7BFnj0R3AJE2Tfxp9ezluI8NlHLkoKAQapqOc01ViM04J5UQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOtlauFn3pTS52oxUoAwlqKizYAtMB8GA1UdIwQY
MBaAFJ8RaLhXF6FGZgAbWy9skIAZl94GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnhGb3VGY1hvVVptQUJ0YkwyeVFnQm1YM2dZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC84ZjY1OGMtM2ZhYy00OThkLWI5NWUt
ZjQyMTliZWRkYjM3LzEvbnhGb3VGY1hvVVptQUJ0YkwyeVFnQm1YM2dZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC84ZjY1OGMtM2ZhYy00OThkLWI5NWUtZjQyMTliZWRkYjM3
LzEvbnhGb3VGY1hvVVptQUJ0YkwyeVFnQm1YM2dZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPzi6peBI
FeqD8m22W/X4wu3xO3+lbz2uDseo8vOwsrOs0guwpVQvJWOrGm5vSIv/tme8HfB2
m4HF8NdVvs0DNDw5bbXdwcLKsbXb0oyxx/C18h/gqSBOJIa3nPpPEhQGyEphM2lc
CQeiTaIxrleltZvv4jZTvn9mwWJjyWZPsByHnIlIejMhwcx1lhkP+fLy6Shl0wo1
FwI0v9txLBKeodkjgH1Cy3o3+i1g/3SVvb5Ew2RuAZEJPtL0XoANfE8G3F1e9RrP
TqfSkyf4X44nJwr6yroUpdq1mDITxUfl9oYf2LN3TnuIfMKdAA4oBF68kixUt+0w
L7FafehjWNRbeQ==
-----END CERTIFICATE-----
Generated at Mon Oct 20 21:31:12 2025 by rpki-client