Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
File: nTHCM8vSZtsCYgud65DQjkFpLmc.mft (raw, json)
Hash identifier: 0I9gVpXHsrc4yjfntqDF8P4krebgZ2TvYVpy3gEVhq4=
Subject key identifier: 7E:B5:56:ED:0F:F5:3E:B4:21:05:32:00:8C:36:B0:94:05:99:BB:78
Authority key identifier: 9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
Certificate issuer: /CN=9d31c233cbd266db02620b9deb90d08e41692e67
Certificate serial: 01988B0F204ACA5716072574324B269A8582
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
Manifest number: 0D03
Signing time: Fri 08 Aug 2025 19:01:20 +0000
Manifest this update: Fri 08 Aug 2025 19:01:20 +0000
Manifest next update: Sat 09 Aug 2025 19:01:20 +0000
Files and hashes: 1: _rMAcV1Zh6HxKo_vwEpVhjFVwy8.roa (hash: r1imevw1h8qWVS0OoTwBJnDWSm49xN9+9T+LLaWUqWk=)
2: nTHCM8vSZtsCYgud65DQjkFpLmc.crl (hash: d71NfA2baSOVyDBhML9hNA8ZDroXi7ICZNwelsV7/Og=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0f:20:4a:ca:57:16:07:25:74:32:4b:26:9a:85:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d31c233cbd266db02620b9deb90d08e41692e67
Validity
Not Before: Aug 8 19:01:20 2025 GMT
Not After : Aug 9 19:01:20 2025 GMT
Subject: CN=7eb556ed0ff53eb4210532008c36b0940599bb78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:11:96:bb:4e:12:5e:e1:a9:af:15:46:ce:01:
38:77:a1:1e:a6:f2:10:d1:d4:d6:6c:0a:47:cc:d3:
4f:11:27:12:47:25:2f:e7:07:f5:e6:96:c1:bb:0f:
56:53:38:29:76:eb:e7:ca:0c:cc:8b:a0:70:c4:20:
68:01:af:f1:df:80:56:1b:80:24:9d:aa:28:36:89:
32:6d:0d:f6:d2:6f:76:b4:fd:38:33:3c:3a:25:9b:
6f:e5:33:88:bb:c7:6b:cb:10:ef:d9:91:47:dc:28:
75:b3:0d:81:90:48:17:de:3e:a0:af:46:f4:af:99:
7b:34:fa:57:c2:af:72:20:93:c5:b6:69:e7:97:f3:
2e:74:a5:4f:e3:62:7d:bb:0c:12:0d:6f:e6:02:c4:
39:a1:fb:23:93:75:ab:0f:6e:06:fe:5e:73:05:37:
cd:9b:79:3e:75:4d:6a:94:88:5e:96:88:86:04:94:
05:63:0a:ff:c6:36:a0:5e:56:70:a3:67:53:bb:1b:
38:a0:17:de:02:74:26:94:6f:59:c5:5b:8f:fe:e1:
a0:a7:10:c0:3d:e0:27:50:76:5c:8e:93:33:b5:4b:
2b:3e:98:91:de:d5:83:9b:e7:7e:b0:99:d4:c2:98:
e5:4d:9a:0b:9a:c1:39:b2:73:b5:e9:96:d2:4e:74:
a6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:B5:56:ED:0F:F5:3E:B4:21:05:32:00:8C:36:B0:94:05:99:BB:78
X509v3 Authority Key Identifier:
keyid:9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:29:9b:7f:b2:a1:54:f8:94:91:35:f6:be:8a:e2:d2:e0:91:
25:7d:f6:c4:e6:04:f4:8b:eb:3d:8a:95:2a:0e:04:a3:84:ea:
92:73:76:6c:59:44:ce:f9:36:62:dd:f3:59:3b:0c:33:3f:3c:
c3:32:e4:da:50:fc:82:c1:f4:18:37:36:3e:8d:b1:f5:8d:71:
de:36:73:31:10:ee:52:00:9e:c0:c5:c4:79:6b:18:39:1d:22:
3c:a1:9f:fd:a3:c8:ab:e3:19:9a:80:7b:df:fb:42:4f:d0:e0:
7f:01:bf:c0:34:2d:d5:af:31:62:1e:39:7e:9b:41:fa:05:5b:
1c:47:3b:34:3f:cb:b6:0f:d1:04:54:6c:e2:bf:e2:09:98:fa:
4b:d1:60:b6:b4:47:bd:49:9c:c2:d6:78:89:b2:6a:2e:2e:a6:
cd:ef:48:f9:74:dc:b0:4e:6a:1b:40:90:58:fd:12:ef:bd:24:
55:2d:fc:1a:04:3b:1d:78:6f:b5:ed:9d:37:fb:7f:97:03:d5:
2d:a8:87:79:34:24:4b:ee:ae:7f:b0:e5:0e:c2:3b:17:d8:ca:
32:82:be:ea:cf:f1:62:e0:c0:03:90:79:b1:f5:e1:e2:1a:7f:
49:52:cf:27:80:15:52:b2:72:ab:8d:98:23:51:81:2f:84:63:
52:ef:b6:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 20:47:53 2025 by rpki-client