Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
File: nhuhZT_KfIAXI8pG_0Qua6wekaA.mft (raw, json)
Hash identifier: PXYKJilWbBhllZAFDgKUgMxwe9PZ48ubB4tu1O8YGTk=
Subject key identifier: E7:A5:5E:4E:6D:E1:60:92:64:6C:D6:D8:C2:EC:C1:ED:B3:03:1A:6D
Authority key identifier: 9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
Certificate issuer: /CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Certificate serial: 019890D9C51D3A92A5CFBB7CE4B6A199F5C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
Manifest number: 089E
Signing time: Sat 09 Aug 2025 22:00:47 +0000
Manifest this update: Sat 09 Aug 2025 22:00:47 +0000
Manifest next update: Sun 10 Aug 2025 22:00:47 +0000
Files and hashes: 1: cb8dWgekdgTmGEn_puzoSrtajs0.roa (hash: klMt7aeT4NJnkoShXspgSHaq5Jk7n53EuU54bLRTaLc=)
2: nhuhZT_KfIAXI8pG_0Qua6wekaA.crl (hash: Zoao9qKQqqUwdHatkSgwnOPCTtsK6Ll7SWBJoo6JPRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:90:d9:c5:1d:3a:92:a5:cf:bb:7c:e4:b6:a1:99:f5:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Validity
Not Before: Aug 9 22:00:47 2025 GMT
Not After : Aug 10 22:00:47 2025 GMT
Subject: CN=e7a55e4e6de16092646cd6d8c2ecc1edb3031a6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:79:cf:db:a1:1d:78:c5:91:f5:08:c0:c7:55:
b5:5c:f1:38:2f:14:28:9b:96:96:a5:16:c9:b4:d3:
81:ab:5c:20:8a:bc:ac:9a:f8:43:58:cc:94:69:e4:
6f:62:df:b7:61:9a:b7:fe:b9:a9:0c:ef:e2:e0:27:
1f:75:16:eb:eb:32:c1:21:85:14:66:a3:04:07:fa:
54:d1:a7:20:89:f6:97:d0:ac:b9:61:da:02:b7:53:
ce:f3:05:2b:ba:0d:a8:74:e3:0c:ae:fa:26:a8:42:
77:59:60:14:5c:66:8e:36:b1:64:82:f8:61:5e:d0:
8e:14:d9:d8:66:a5:ef:a2:ad:7d:b6:ce:ea:bd:32:
f6:87:bc:21:8e:85:5a:f6:4c:a0:f8:b3:9a:bc:25:
f5:c9:1a:7d:a7:06:11:45:ca:73:a5:b9:e8:a3:1a:
71:6d:60:0c:86:ef:d2:bf:e0:c1:de:22:81:0d:57:
94:3a:67:97:83:9b:26:4d:4c:e3:57:98:7d:8f:23:
e4:bf:a0:24:54:ca:b2:b0:8b:25:e9:2c:7b:9f:52:
84:5c:99:76:e9:9c:0c:2c:fa:61:59:0e:34:e1:f4:
cc:ef:90:94:52:a4:3c:a4:98:80:1a:6d:38:88:26:
d6:79:f5:18:1b:99:fb:37:88:e1:62:d1:25:61:bf:
23:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:A5:5E:4E:6D:E1:60:92:64:6C:D6:D8:C2:EC:C1:ED:B3:03:1A:6D
X509v3 Authority Key Identifier:
keyid:9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:0d:ce:fb:72:4d:b9:21:96:3d:ec:2b:d8:c0:59:5a:74:98:
ac:40:6d:0f:96:6c:d1:3b:71:92:16:62:0c:c5:3f:35:ee:f1:
f0:61:b8:b0:35:c2:57:b1:19:13:a2:a2:2d:4e:9c:36:41:21:
7b:90:95:d6:f8:39:d2:76:d7:ea:63:ae:e7:90:3c:d5:85:6c:
7f:50:ba:9b:64:2e:1d:92:56:b3:bd:67:02:62:ce:86:d4:76:
dc:98:36:75:18:43:4c:00:c7:19:77:f1:0c:bb:5d:89:96:20:
28:58:fe:d9:39:0c:6f:64:f1:f6:21:23:82:91:96:d1:27:bc:
ac:37:29:57:38:25:4b:be:1d:0e:c8:07:b4:2b:0d:da:4d:96:
bc:0a:cd:5b:19:64:aa:82:97:c0:7c:3a:34:8c:0c:36:07:de:
4c:7f:07:3c:4a:c3:a9:23:40:55:d0:84:e3:56:18:62:42:21:
c9:5b:bb:1e:2f:25:23:da:ab:3a:9d:50:9c:70:b2:f0:f1:e6:
26:54:d2:8e:f7:2f:37:9f:04:44:9e:06:90:71:3b:c4:7e:c5:
40:12:ed:7e:78:bd:8b:24:74:16:5d:99:cb:20:ea:20:d0:50:
66:29:90:d0:b2:6a:da:01:7e:e4:af:81:90:a7:1d:61:9d:40:
a5:87:18:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 03:55:52 2025 by rpki-client