Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
File: nxFouFcXoUZmABtbL2yQgBmX3gY.mft (raw, json)
Hash identifier: 9o8MTK7ZN9SBQy1DiqV448hhz9Mo2k4iyBx9NgIr+hE=
Subject key identifier: F8:77:8E:1C:BF:42:B1:7E:78:09:56:79:A0:84:24:07:09:95:B6:9D
Authority key identifier: 9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06
Certificate issuer: /CN=9f1168b85717a14666001b5b2f6c90801997de06
Certificate serial: 019A4D73CDC334762DAD1679A5F393EB5D3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
Manifest number: 04BE
Signing time: Tue 04 Nov 2025 06:00:26 +0000
Manifest this update: Tue 04 Nov 2025 06:00:26 +0000
Manifest next update: Wed 05 Nov 2025 06:00:26 +0000
Files and hashes: 1: 3aRtdaLoPOZF10CX_CZEh4-VCqI.roa (hash: OscvtFvqL/u9a9yzvKDIzZQyXS+BuqyG+0F0KwScDL8=)
2: nxFouFcXoUZmABtbL2yQgBmX3gY.crl (hash: /P7E4VxSAI8WDZTdHs+c9Dmx+2/CCE5EP/iNXUKXqBg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:73:cd:c3:34:76:2d:ad:16:79:a5:f3:93:eb:5d:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f1168b85717a14666001b5b2f6c90801997de06
Validity
Not Before: Nov 4 06:00:26 2025 GMT
Not After : Nov 5 06:00:26 2025 GMT
Subject: CN=f8778e1cbf42b17e78095679a08424070995b69d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ad:09:c1:95:2c:fd:c8:96:a5:0b:3d:d8:5b:
62:e3:e9:98:70:f8:99:f9:ae:f0:18:23:a5:31:58:
86:f3:93:bf:cd:28:70:c2:3a:53:20:2f:dd:3c:aa:
33:f8:42:bd:d7:b3:29:e3:c7:89:56:4d:51:5a:62:
2c:84:3c:10:ce:45:5e:44:ac:aa:ff:45:62:8a:4d:
08:a1:3a:bd:e5:80:b0:d2:4f:28:98:80:9f:92:18:
17:52:12:69:25:1b:b7:20:0e:36:92:5a:53:fe:e9:
71:90:0a:c0:ff:15:95:23:a8:0e:16:f3:9f:d0:3a:
16:03:b6:a6:14:3d:4e:ef:69:6a:5a:ba:1e:8a:9f:
d8:78:93:e4:d5:c2:b3:81:43:a6:a6:ae:54:11:a1:
48:6c:60:ec:11:f5:db:09:83:91:fe:87:cf:07:40:
b3:16:1c:af:b7:e2:96:51:80:88:10:ce:1c:11:29:
06:c4:61:fd:53:35:42:82:fe:aa:cf:cf:59:05:df:
04:e0:58:7c:0a:28:48:29:5c:e3:a1:57:ab:3a:bd:
f0:9d:c7:ec:3a:6d:01:0c:f7:33:71:31:0a:6b:0c:
f1:00:1d:42:66:6c:68:52:17:57:bf:30:0a:2b:c7:
2e:57:70:c2:74:23:f2:61:34:c6:8e:5e:f1:3b:83:
64:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:77:8E:1C:BF:42:B1:7E:78:09:56:79:A0:84:24:07:09:95:B6:9D
X509v3 Authority Key Identifier:
keyid:9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:05:80:58:4b:07:40:01:e5:e3:32:1b:25:ef:1e:bd:4a:36:
a2:2b:42:00:08:96:d0:22:f4:20:9e:ac:ef:5f:6a:17:b5:da:
17:e4:33:07:b8:49:b2:97:c2:ed:6c:7d:af:12:c5:c9:7e:18:
c9:ab:ca:76:a4:d4:34:ea:a6:4a:23:59:2b:24:72:2a:ca:63:
dc:f5:b2:19:e8:0a:b5:bc:77:47:b4:67:1e:f0:e6:15:b0:5e:
10:0d:5d:01:83:a9:f4:5b:ba:0c:f6:9a:ca:1d:74:9a:ac:bf:
d7:af:8b:1f:b0:8c:a4:56:0f:61:27:6e:ea:2b:05:3a:f0:7e:
c2:33:90:bc:30:54:9c:d5:87:4e:e5:89:35:bf:25:08:80:1b:
25:ad:49:02:35:cd:3a:31:21:12:14:ab:40:ab:62:27:89:0c:
7d:1d:83:07:28:88:c0:19:66:67:90:8f:33:cb:f4:d6:91:cf:
1a:f7:74:a9:e5:df:e7:73:2c:10:83:a3:93:76:97:5d:51:77:
46:62:86:57:6b:c5:17:71:d9:ff:14:76:e4:18:3c:19:40:31:
b4:b5:65:e3:75:05:79:15:d5:23:0b:52:d8:75:c3:bc:75:03:
6f:94:da:6a:9f:77:58:0c:ce:1b:24:f3:12:f7:81:85:f4:fe:
de:5b:4c:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:47:02 2025 by rpki-client