Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
File: nUkl6XatC_tz4JfaaRfoD1vObIw.mft (raw, json)
Hash identifier: xy/Ac+0rUr0N3Zq1ah7z5y55Gz0Xno3zfxVvmTQ74Wc=
Subject key identifier: 95:CE:06:44:3B:1F:1F:80:35:6B:C6:06:FB:A9:67:46:04:9E:82:CA
Authority key identifier: 9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
Certificate issuer: /CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Certificate serial: 019A50E34983114267EEBE37ED443D2859EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
Manifest number: 116C
Signing time: Tue 04 Nov 2025 22:01:04 +0000
Manifest this update: Tue 04 Nov 2025 22:01:04 +0000
Manifest next update: Wed 05 Nov 2025 22:01:04 +0000
Files and hashes: 1: 7Wfm8N_BNNM1ZIAzk65u_y1CoxQ.roa (hash: vGKhwTsZ6bUD5wem1afZhHCNpuoU8y3whIP7i2K9fc8=)
2: nUkl6XatC_tz4JfaaRfoD1vObIw.crl (hash: SOZySeeIG0kHGXT0qIkHZojTgZSeMJWW0oqdMOzWrOQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e3:49:83:11:42:67:ee:be:37:ed:44:3d:28:59:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Validity
Not Before: Nov 4 22:01:04 2025 GMT
Not After : Nov 5 22:01:04 2025 GMT
Subject: CN=95ce06443b1f1f80356bc606fba96746049e82ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c2:01:33:67:e4:cf:5b:da:c2:10:3d:43:43:
55:fe:b8:e2:85:d8:1c:82:ef:e0:4f:b3:43:ca:4c:
84:cc:c4:43:a3:84:bb:b3:bd:af:55:d9:fc:9d:4f:
bf:ea:04:8d:64:db:09:6e:6b:cc:31:a5:52:47:3d:
66:c2:72:04:5b:96:f0:7e:d8:6b:b3:d7:63:7c:6b:
ab:cc:75:ee:69:0a:c9:15:ec:f0:83:47:8d:cb:27:
ea:b5:ec:10:ed:b5:f8:42:05:c2:d1:81:45:44:3e:
26:6e:ec:d3:6c:d5:8e:e4:b1:44:27:0a:57:4f:08:
4b:93:15:76:a9:99:01:67:48:b0:7d:55:69:21:52:
88:3f:43:78:c8:df:50:49:12:3c:1b:a6:40:07:16:
c8:7f:20:ad:bd:35:a5:14:79:64:ee:5b:98:95:82:
bd:4d:b0:f0:b7:d0:dd:08:4d:dc:49:03:64:d5:c4:
2c:7f:79:2a:c8:be:66:2e:8a:f4:ca:a0:19:2b:eb:
b8:4e:1e:0e:a7:67:da:26:82:3a:05:fc:60:ca:4f:
ab:c7:5c:53:1a:3d:d9:71:06:97:6f:4b:8d:99:84:
5a:ae:e1:75:6c:77:36:db:3f:5e:e7:0a:90:36:ea:
f5:a8:4a:d5:36:b7:cf:6b:d1:75:79:c2:15:51:d9:
ed:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:CE:06:44:3B:1F:1F:80:35:6B:C6:06:FB:A9:67:46:04:9E:82:CA
X509v3 Authority Key Identifier:
keyid:9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:00:dd:74:0c:24:58:41:0e:6c:dc:35:02:f0:24:d6:e2:4b:
71:52:4a:dc:0c:a3:1a:41:7c:6c:3b:1a:25:97:30:90:eb:1f:
6c:50:63:99:fd:b3:93:04:c4:79:81:12:7f:f6:06:e4:25:f6:
ea:fb:7b:67:d7:54:70:18:e9:a0:62:b3:aa:77:38:34:3c:96:
93:50:b3:9c:12:41:9a:20:52:22:d6:76:02:a7:80:e6:a4:76:
c5:22:c3:4d:82:0f:f5:ad:ea:e5:22:c1:4c:7a:92:e8:d5:e4:
54:cf:1c:0a:e6:88:50:59:2a:b2:5d:0c:fc:c1:bf:d9:94:40:
18:c8:86:1c:b6:48:57:88:db:bd:08:71:a1:e5:8e:29:f9:78:
db:ae:44:29:98:60:b8:e0:58:a0:fa:2e:7e:db:1c:3a:9f:67:
7f:9a:97:3f:d2:6e:bb:2b:42:8f:45:28:0b:23:08:19:d8:cb:
89:63:39:17:4a:b3:d3:61:e0:ac:fb:5f:7a:e7:62:c7:87:35:
c2:75:96:34:0b:9e:07:b4:d6:ff:16:16:46:68:d8:b8:c8:23:
d8:20:9e:4b:49:cd:4e:5c:22:44:90:84:bf:00:14:c7:32:9f:
d8:17:ef:29:6c:11:8c:f0:fc:fe:96:0e:60:e0:58:38:2b:52:
ac:8d:86:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:21:13 2025 by rpki-client