Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
File: nSAoCNH5FFVeG9WcFncof_mztZA.mft (raw, json)
Hash identifier: ly/AmAsID9R+M6OSVv0e140Jp+QsAY9IuKg4SQ/yXzM=
Subject key identifier: 64:18:76:08:24:68:2A:D6:9A:48:28:C1:B9:BC:53:49:E6:DA:29:D6
Authority key identifier: 9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
Certificate issuer: /CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Certificate serial: 019A53080D0095C4474E44333E5E6C112920
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
Manifest number: 1119
Signing time: Wed 05 Nov 2025 08:00:27 +0000
Manifest this update: Wed 05 Nov 2025 08:00:27 +0000
Manifest next update: Thu 06 Nov 2025 08:00:27 +0000
Files and hashes: 1: nSAoCNH5FFVeG9WcFncof_mztZA.crl (hash: la0Go8g3L4qZpPLF/aSQNX2N1DLG+0CduvH0keR9yKY=)
2: qztp8oOkrsOnZQZ-AVesJkd8gBA.roa (hash: w8j5kLnBBDJA6YAxwk7yr2iHlxdseJ2t5FGwhKWuj0I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 08:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:08:0d:00:95:c4:47:4e:44:33:3e:5e:6c:11:29:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Validity
Not Before: Nov 5 08:00:27 2025 GMT
Not After : Nov 6 08:00:27 2025 GMT
Subject: CN=6418760824682ad69a4828c1b9bc5349e6da29d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0f:d9:03:24:65:49:64:d6:32:fd:20:d6:3e:
fd:fe:a4:55:2d:69:36:bf:57:0e:a7:d6:34:91:dc:
23:4b:3a:95:63:09:bb:5b:69:90:8a:78:2b:e3:f2:
ed:14:8f:ba:65:a8:28:05:ea:35:c7:57:1e:29:03:
28:08:2c:90:8d:75:dc:04:09:84:b3:07:53:db:b7:
d8:9b:12:e5:0c:40:dd:58:6d:e6:a6:2d:c7:9e:15:
d9:42:3b:bf:c7:d5:3a:11:03:1e:b1:a3:4f:13:61:
75:e3:df:bd:33:de:aa:85:fd:0e:f5:ae:6e:43:25:
9c:e1:c4:20:85:3a:75:59:93:e7:97:8d:11:80:71:
ee:c6:be:45:a6:14:f5:17:e9:16:8c:f9:79:dd:5c:
1a:f6:52:80:dd:ce:f1:ac:d7:f8:3f:d5:62:c4:22:
ef:98:da:43:7c:66:5d:f0:d4:50:24:ad:e4:0e:be:
09:79:49:a2:14:5f:0b:16:5d:77:a9:ea:e8:0a:be:
b2:69:ad:26:8e:a2:24:de:4e:81:56:62:eb:ee:42:
37:fd:cb:61:85:1d:e9:0d:8d:6f:f1:5a:13:4f:5f:
c2:18:02:1d:cc:a5:66:17:46:72:66:26:68:70:ec:
0c:fb:a5:c4:59:36:2b:99:55:67:32:e9:30:6e:d7:
93:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:18:76:08:24:68:2A:D6:9A:48:28:C1:B9:BC:53:49:E6:DA:29:D6
X509v3 Authority Key Identifier:
keyid:9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:9a:a9:4c:3c:b0:52:6f:98:d5:83:67:54:38:b6:5d:8f:b3:
bd:53:e4:7a:50:60:04:37:dc:e0:56:01:3a:5f:f3:5f:05:fb:
cd:11:45:c4:c0:ea:b8:fa:97:cf:58:07:e8:03:80:27:3e:8c:
d1:64:6b:a0:73:e7:56:12:f3:fb:f2:f2:2a:f0:db:b8:2a:59:
9a:a9:30:aa:4d:e8:7e:00:a7:de:12:1c:84:cf:43:08:99:b8:
d9:dd:15:52:05:84:a4:2a:bb:49:c3:98:d2:67:5a:65:5d:e3:
b1:64:7b:c8:77:51:b0:02:b5:61:0f:b2:fe:7e:c6:f8:d5:e5:
cf:86:c5:36:a5:ed:e0:74:b3:43:ec:b7:cd:0d:91:85:8a:44:
84:c3:d0:75:77:d1:4b:21:43:c9:ec:7d:57:b1:ba:28:13:32:
9a:5e:c6:66:6b:e9:8d:93:37:a2:07:71:62:ed:6c:0d:ce:a8:
b2:d4:5b:0e:10:66:1f:6a:4d:d8:a7:dc:75:63:4c:ca:06:9b:
04:6b:f3:ae:e2:b0:0f:29:dc:16:14:c9:fc:98:eb:19:0b:bb:
20:e5:f8:b7:3a:bb:c1:0f:07:34:c5:9b:af:8b:ae:14:f7:21:
5b:88:d8:65:35:8f:91:9d:de:9f:9b:e1:0e:91:2f:88:b7:e7:
f0:b3:88:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 14:23:40 2025 by rpki-client