Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
File: nDKfMzH1ND8pDrSkHxbENjooLJA.mft (raw, json)
Hash identifier: q3N7fC7nQOsKuvYrexTZqDQV9KKiSyQbuoRjLqA2ba4=
Subject key identifier: 5E:03:DF:28:56:51:AA:BB:BF:91:00:6A:76:CA:D3:8F:73:07:1A:A9
Authority key identifier: 9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
Certificate issuer: /CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Certificate serial: 0198A0BB7C08B4078727767E9CC28C5254E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
Manifest number: 162F
Signing time: Wed 13 Aug 2025 00:01:38 +0000
Manifest this update: Wed 13 Aug 2025 00:01:38 +0000
Manifest next update: Thu 14 Aug 2025 00:01:38 +0000
Files and hashes: 1: nDKfMzH1ND8pDrSkHxbENjooLJA.crl (hash: LCRfZKstidJDA1Qq4Up6fs/4wWybRv5a2b6oAx24O2s=)
2: xXqtZaQE8p1BJ-LrGDHK3ctGl88.roa (hash: 19HlQM5dbXIMn5dc2AbBJAmDmCjDbQENEnPoWF/ZUJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:bb:7c:08:b4:07:87:27:76:7e:9c:c2:8c:52:54:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Validity
Not Before: Aug 13 00:01:38 2025 GMT
Not After : Aug 14 00:01:38 2025 GMT
Subject: CN=5e03df285651aabbbf91006a76cad38f73071aa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:11:e3:eb:68:06:65:94:55:e9:86:2d:83:3d:
93:49:00:04:84:87:7c:88:47:14:a9:e1:3a:d9:35:
1b:c8:1d:3a:fb:cc:5b:8a:b8:5b:78:0a:00:bb:89:
68:54:a0:fb:1f:18:a2:cf:7d:6e:bc:de:b1:e2:69:
97:76:76:05:b4:73:31:65:12:f3:26:d0:f4:7a:9c:
80:6e:cf:92:c9:ff:26:68:4e:cf:4a:d2:79:8e:f2:
37:98:28:56:0d:49:7b:90:06:ec:d2:7d:00:3c:7e:
8a:6b:61:63:2a:73:8e:6f:51:1b:8b:cc:50:61:31:
36:7f:66:97:9f:78:9c:20:19:c9:e7:56:2e:54:2e:
9f:ee:0e:36:20:ea:cb:bc:b3:7d:13:6b:98:b8:14:
d6:3d:f0:3b:eb:7f:95:58:57:50:af:ba:87:3c:6c:
38:f7:8f:4a:a8:90:4f:dd:63:c6:90:39:e9:6f:47:
92:e7:75:83:1a:6f:ff:ec:a8:b7:fb:bb:77:62:47:
03:75:a0:a5:d4:49:db:b0:9a:60:b0:9a:30:f0:00:
5f:e3:a4:f5:52:da:19:b4:c4:a8:2a:4c:7f:fe:19:
4b:91:ce:24:1e:3f:8d:24:2b:b3:b7:23:9a:de:9d:
73:a5:39:ff:29:7f:2b:7a:f6:83:42:c1:63:fa:7f:
36:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:03:DF:28:56:51:AA:BB:BF:91:00:6A:76:CA:D3:8F:73:07:1A:A9
X509v3 Authority Key Identifier:
keyid:9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:3a:4a:41:ea:ec:e7:16:7c:41:41:c4:e1:ee:2e:2b:0e:9b:
d6:28:48:bf:61:a7:9f:75:cf:11:28:d2:6d:17:a8:fb:07:69:
69:61:e9:cf:bb:4d:b9:28:b1:71:99:98:e8:c6:ec:87:82:b3:
e0:8d:ee:cc:c5:cc:32:94:14:79:d4:a4:b5:9c:64:0e:01:b9:
0a:15:b1:9e:4a:0e:b3:ab:9e:12:9a:e6:0b:61:25:9b:2d:02:
44:fa:1f:67:79:68:e6:5d:68:67:e3:38:aa:68:e7:2d:74:d0:
5e:30:db:d4:6b:25:6c:10:91:47:a1:3d:8e:f8:a5:8f:fa:5e:
94:05:5a:51:b6:33:1c:44:2b:80:f1:1c:d8:10:8c:f4:1e:fd:
52:fe:f6:7d:02:d1:3b:76:98:2a:d2:b4:6c:eb:02:a3:68:75:
5e:ff:ce:10:86:70:0f:a0:06:d5:2a:85:b4:46:86:b1:5f:3c:
53:10:91:be:b7:9a:9c:c2:72:b4:98:a2:ff:2b:95:59:31:a0:
16:93:81:38:2c:ed:9b:e8:e1:48:af:2d:c9:be:c5:38:12:63:
fe:42:0b:b4:8b:d3:f8:43:11:71:a1:ea:fd:d7:4a:d5:12:ea:
c9:4f:f8:b9:cd:50:f6:70:20:7b:12:6c:f4:13:ff:38:76:a3:
1d:34:32:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 05:52:44 2025 by rpki-client