Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
File: nlY8Qm0ark7R5_WVNnSQIgiehHk.mft (raw, json)
Hash identifier: JyF/2KC+fsnpN62i3e7l7xlxSTAiGpUUF/C22bU82NI=
Subject key identifier: B3:30:0B:90:DA:56:A8:8C:D4:C6:44:DB:0B:C5:A8:3B:54:40:C7:0F
Authority key identifier: 9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
Certificate issuer: /CN=9e563c426d1aae4ed1e7f59536749022089e8479
Certificate serial: 01988E7DB8521D2743E993241EF6D3AFF8F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
Manifest number: 0AE6
Signing time: Sat 09 Aug 2025 11:01:00 +0000
Manifest this update: Sat 09 Aug 2025 11:01:00 +0000
Manifest next update: Sun 10 Aug 2025 11:01:00 +0000
Files and hashes: 1: DLPCyIKM7jz79PsqVnrxNoMgYXE.roa (hash: +QgaTeTZpZ2fDtls8hcOtAF0lYWHQbDmqjy56TBm3AY=)
2: nlY8Qm0ark7R5_WVNnSQIgiehHk.crl (hash: DO7JoD+FP0mHlSwAzFR7PsxfsTtGXtSG4Kfp4LZZe4E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 11:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8e:7d:b8:52:1d:27:43:e9:93:24:1e:f6:d3:af:f8:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e563c426d1aae4ed1e7f59536749022089e8479
Validity
Not Before: Aug 9 11:01:00 2025 GMT
Not After : Aug 10 11:01:00 2025 GMT
Subject: CN=b3300b90da56a88cd4c644db0bc5a83b5440c70f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:70:1b:5a:b3:e6:b9:8e:7c:16:b9:3d:e7:da:
8f:dc:49:1d:e5:3b:02:51:99:43:6c:86:16:1c:f0:
3e:39:8e:75:6a:a6:3f:f0:2c:e8:c7:58:1e:6b:00:
49:18:4c:84:c9:c3:e8:39:29:b3:91:94:7f:a2:e2:
a7:8c:dd:ef:78:31:99:98:93:40:51:69:f6:64:3f:
7d:b8:23:21:42:87:f9:24:3a:e0:9e:83:c3:1e:8e:
c1:c1:4c:1a:bf:4b:ab:76:05:7a:64:fe:47:aa:2c:
4e:36:70:87:10:75:85:fc:23:63:3c:b0:99:89:cb:
19:0f:2b:47:67:29:56:58:b2:4e:65:d6:c1:60:3f:
7f:87:b7:85:cc:55:7e:7f:54:d7:6a:b4:cd:9b:fa:
b0:a5:f4:cc:60:6b:20:fa:9d:6c:c0:c7:c8:87:03:
be:15:84:ac:d9:65:71:84:bc:e2:59:80:2d:fb:a0:
e3:8e:7b:03:30:66:c2:45:25:08:20:6a:e7:12:4c:
3f:bd:03:05:a5:30:4f:36:8f:12:d1:e8:a6:bd:48:
29:fd:7a:66:98:68:65:44:e5:cd:9b:be:55:24:2d:
40:14:a1:14:35:57:ac:6f:10:1d:17:2e:7d:da:3e:
3e:bf:8d:ee:b2:38:dc:55:26:76:30:f0:1e:fa:74:
64:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:30:0B:90:DA:56:A8:8C:D4:C6:44:DB:0B:C5:A8:3B:54:40:C7:0F
X509v3 Authority Key Identifier:
keyid:9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:1d:5d:64:8e:ae:cd:ab:c3:c7:99:f4:d6:92:28:6a:28:28:
81:21:86:39:cc:7c:dc:6d:fb:5d:d5:81:19:04:e2:84:14:27:
f1:b3:80:ad:26:93:2b:d1:15:37:de:1a:45:90:cb:d3:5f:d2:
88:0c:13:aa:1c:f6:67:82:d1:09:1f:04:a5:0e:71:47:0f:77:
44:74:af:c2:2f:b6:ef:37:6e:de:00:d4:09:40:9d:44:55:45:
f3:0c:2f:05:01:b8:fa:19:98:c2:d9:d0:17:f6:cf:da:02:e2:
70:b6:56:f1:c8:40:46:0f:5a:54:b6:fc:bf:ca:fe:70:6a:57:
93:51:be:90:c7:e2:82:96:b1:53:1f:14:05:0a:9d:84:37:f0:
88:b5:5c:5f:41:36:48:da:7d:d5:8c:4e:e0:cb:0a:e3:5b:af:
f4:75:e8:0b:da:e5:f7:e4:c9:39:a8:9c:43:94:31:c6:48:6c:
01:0d:3c:ab:08:75:61:99:e0:32:73:0e:6d:62:cc:4a:ae:06:
77:93:c9:be:d8:d0:1a:cf:02:b1:36:36:6d:5d:8a:0e:b8:a3:
61:1a:75:09:33:4a:88:90:dd:ba:42:6d:0a:00:d1:2f:da:28:
e6:d7:d5:03:22:6b:2c:71:bb:3b:75:75:ed:2a:74:ab:a0:41:
73:b3:f9:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 20:44:23 2025 by rpki-client