
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
File: nUkl6XatC_tz4JfaaRfoD1vObIw.mft (raw, json)
Hash identifier: M58w7VJedJ82gRWJukPu+/0aon6yr9Z3wDjqRN2PZq0=
Subject key identifier: 41:97:B8:ED:15:74:09:92:0C:B2:8D:DC:0D:F1:DD:4A:15:80:2A:C8
Authority key identifier: 9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
Certificate issuer: /CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Certificate serial: 019873E3C31907F78AAD6E1808207683511B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
Manifest number: 1075
Signing time: Mon 04 Aug 2025 07:02:43 +0000
Manifest this update: Mon 04 Aug 2025 07:02:43 +0000
Manifest next update: Tue 05 Aug 2025 07:02:43 +0000
Files and hashes: 1: 7Wfm8N_BNNM1ZIAzk65u_y1CoxQ.roa (hash: vGKhwTsZ6bUD5wem1afZhHCNpuoU8y3whIP7i2K9fc8=)
2: nUkl6XatC_tz4JfaaRfoD1vObIw.crl (hash: ODyz1HE2PA+UST+TUXPtUysXs4ifOaPn4sum8r9L/gE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:c3:19:07:f7:8a:ad:6e:18:08:20:76:83:51:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Validity
Not Before: Aug 4 07:02:43 2025 GMT
Not After : Aug 5 07:02:43 2025 GMT
Subject: CN=4197b8ed157409920cb28ddc0df1dd4a15802ac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:05:9a:14:68:1d:cb:61:1a:9f:dc:93:a7:ef:
32:d9:3b:68:76:78:5e:0a:2e:77:1f:ed:4b:0f:b2:
1f:52:6b:13:e1:f1:de:ad:dd:b6:9d:36:e7:bc:e7:
ce:ea:5d:97:84:b0:ac:01:10:1b:fb:58:51:12:1b:
f8:7e:e9:48:ff:09:b2:72:49:e6:be:93:e8:04:c6:
0c:9f:23:1d:e6:0a:48:c4:f1:0e:6a:06:42:dd:cf:
f5:dd:af:08:3b:b0:13:10:96:42:c8:db:b0:0e:98:
54:af:73:11:78:9d:af:0b:dd:fc:c9:32:a1:a9:78:
a2:21:85:d9:e1:d3:fb:bd:0f:5d:3e:17:2e:06:80:
51:da:82:18:25:99:25:3a:9c:fd:9c:cf:9b:5c:c0:
da:7e:32:0f:f3:cf:5d:87:eb:50:e0:15:b5:5a:12:
28:d4:05:60:2b:11:57:8d:73:2a:9a:15:40:0d:be:
0c:3e:e9:14:24:2c:e0:a3:06:0a:3b:33:e7:04:fa:
96:fd:b6:63:03:d7:69:95:e0:1a:ac:22:e8:cd:e9:
85:a6:b8:80:6c:b6:c7:c3:2b:ea:39:5e:96:da:a0:
5f:a5:37:1d:e5:54:fb:05:0c:8a:a7:3e:4c:b4:34:
6f:90:7c:ef:0d:03:2d:92:93:6c:68:03:2d:2a:11:
fc:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:97:B8:ED:15:74:09:92:0C:B2:8D:DC:0D:F1:DD:4A:15:80:2A:C8
X509v3 Authority Key Identifier:
keyid:9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:97:cb:3c:e0:45:e8:fc:bb:41:fe:f2:20:8a:cb:39:ae:ad:
94:cd:89:b9:f9:12:4c:db:8d:75:58:6d:eb:4a:50:39:80:e6:
39:7f:58:c0:78:32:9e:86:21:f9:51:c6:ca:ba:19:72:f8:d8:
a0:5d:16:1a:f7:64:a4:67:15:e3:9a:91:1e:db:53:c7:dc:1f:
e3:27:47:7e:d9:33:e5:43:6e:6e:3b:65:ee:ff:50:af:d5:37:
02:05:72:b8:02:68:ca:a6:01:24:8a:b1:1b:75:93:fc:a5:2a:
31:ce:95:10:38:41:4c:5f:57:60:45:6c:06:b2:4c:42:5d:a7:
59:69:36:e3:80:1d:8e:1d:0c:25:93:36:81:e2:12:23:4f:14:
5d:f7:e0:c3:2c:88:cd:e9:f1:a1:19:bd:d0:fa:35:2c:b0:f3:
8c:04:04:8e:17:a5:58:82:c7:5d:b4:88:7c:f6:97:04:35:b3:
7f:3d:9c:42:89:a1:94:43:2d:fe:68:0f:61:3d:b1:46:13:0f:
85:d5:fb:83:46:eb:79:89:0a:a8:0c:02:bd:66:c2:78:64:e7:
16:ac:45:09:58:31:00:a8:42:72:28:d8:7a:ba:a9:c0:f0:c3:
8f:b2:53:8a:a4:be:fe:60:66:09:4c:6f:81:31:5d:b5:a3:67:
50:73:5a:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:05:14 2025 by rpki-client