Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
File: nhuhZT_KfIAXI8pG_0Qua6wekaA.mft (raw, json)
Hash identifier: 5sIemIPWfpj0z78T+loZkVqQ7TIU5IpBnhDKHiDvVS0=
Subject key identifier: 83:49:E9:3C:85:3D:FE:FF:C5:52:40:25:02:98:70:97:B2:C9:DE:17
Authority key identifier: 9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
Certificate issuer: /CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Certificate serial: 019921B095ABE7DE0136A9916B0BD44A3853
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
Manifest number: 08E9
Signing time: Sun 07 Sep 2025 01:00:44 +0000
Manifest this update: Sun 07 Sep 2025 01:00:44 +0000
Manifest next update: Mon 08 Sep 2025 01:00:44 +0000
Files and hashes: 1: cb8dWgekdgTmGEn_puzoSrtajs0.roa (hash: klMt7aeT4NJnkoShXspgSHaq5Jk7n53EuU54bLRTaLc=)
2: nhuhZT_KfIAXI8pG_0Qua6wekaA.crl (hash: AXunjrtgb4Mo1oDIlzruXXHixSGBoMFop+EAe6qKcsA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:95:ab:e7:de:01:36:a9:91:6b:0b:d4:4a:38:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Validity
Not Before: Sep 7 01:00:44 2025 GMT
Not After : Sep 8 01:00:44 2025 GMT
Subject: CN=8349e93c853dfeffc552402502987097b2c9de17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8a:6c:7f:81:9b:88:aa:d2:b1:4e:d6:9d:18:
97:38:c7:c7:5f:07:9a:d7:e5:b3:f3:c2:9d:ed:bf:
b1:26:40:9a:7f:b6:42:cc:c4:16:e7:64:07:2c:34:
4c:dd:44:38:aa:15:00:f6:e0:a6:4f:a6:e9:52:9d:
5e:d9:0d:5a:9d:ec:56:ca:cc:b8:f5:d4:fd:cd:40:
a5:8f:4b:bc:9a:67:0e:24:03:b6:f5:c4:27:f2:82:
0e:f1:6a:06:23:73:13:fd:1a:4a:57:f4:92:75:9e:
2d:44:1c:a3:cd:41:6c:2b:d3:cf:9e:0b:13:57:a2:
c8:40:c9:6a:e5:be:e7:07:f2:c2:0c:1e:4f:d8:af:
a7:86:be:aa:77:eb:53:23:bf:27:99:87:33:ba:9b:
d9:3c:b9:f6:fc:fd:1c:96:43:fd:db:84:15:67:a3:
f8:99:9f:51:5b:d3:11:71:0d:7e:a8:28:da:e3:1c:
29:57:50:c3:98:aa:66:98:7c:f0:c0:ce:3d:ce:eb:
9f:92:1b:4c:20:10:3a:52:f4:11:a2:9b:ff:22:69:
2d:81:a5:53:45:0a:80:62:b3:c6:82:71:32:52:16:
90:3e:7b:de:51:04:96:f0:8f:bb:2c:96:f2:3d:8c:
e1:e1:69:27:14:32:6a:ac:78:18:10:eb:97:61:38:
73:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:49:E9:3C:85:3D:FE:FF:C5:52:40:25:02:98:70:97:B2:C9:DE:17
X509v3 Authority Key Identifier:
keyid:9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:ca:0f:26:8d:96:27:76:50:9e:38:fb:46:6a:22:7f:4a:d4:
23:9a:c3:d0:3b:b5:d7:f9:b9:63:63:1a:e5:37:9f:96:54:97:
c4:8e:40:c3:34:01:3b:a6:b6:18:c3:68:5f:3f:54:f4:35:04:
4d:08:d0:f4:ff:a1:87:9c:50:b8:23:36:7a:14:a5:44:e1:2f:
00:79:51:11:9e:e4:e8:f3:6b:e7:8c:13:5b:2d:ac:3b:eb:cd:
2d:f3:21:25:29:13:41:6f:e1:78:d7:69:e0:30:ae:42:9c:80:
3a:40:ce:2b:a2:a7:06:3e:0f:cb:3d:e5:c3:98:72:23:68:dc:
e5:e3:3f:d0:53:76:58:22:38:9f:2e:2b:35:35:00:ca:a8:18:
15:32:95:ae:33:a2:f7:a9:9f:ae:e0:a3:5b:ce:87:4d:d1:9a:
ee:37:36:e0:32:f6:e3:1a:e9:88:e1:24:fd:b5:6a:53:34:e8:
4d:d9:6d:36:98:fe:ee:4e:cb:6c:49:c7:9d:a8:9d:c5:6b:51:
a6:37:5f:98:b6:45:33:d8:2e:97:ad:c3:ac:54:da:57:e8:b8:
37:a1:02:8c:a5:e1:8c:cc:e9:21:90:b7:3f:66:44:0c:91:63:
c1:5b:ef:48:bc:85:ac:56:50:ac:42:20:7f:74:64:c2:e8:ce:
37:29:12:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhsJWr594BNqmRawvUSjhTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllMWJhMTY1M2ZjYTdjODAxNzIzY2E0NmZmNDQyZTZiYWMx
ZTkxYTAwHhcNMjUwOTA3MDEwMDQ0WhcNMjUwOTA4MDEwMDQ0WjAzMTEwLwYDVQQD
Eyg4MzQ5ZTkzYzg1M2RmZWZmYzU1MjQwMjUwMjk4NzA5N2IyYzlkZTE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyYpsf4GbiKrSsU7WnRiXOMfHXwea
1+Wz88Kd7b+xJkCaf7ZCzMQW52QHLDRM3UQ4qhUA9uCmT6bpUp1e2Q1anexWysy4
9dT9zUClj0u8mmcOJAO29cQn8oIO8WoGI3MT/RpKV/SSdZ4tRByjzUFsK9PPngsT
V6LIQMlq5b7nB/LCDB5P2K+nhr6qd+tTI78nmYczupvZPLn2/P0clkP924QVZ6P4
mZ9RW9MRcQ1+qCja4xwpV1DDmKpmmHzwwM49zuufkhtMIBA6UvQRopv/ImktgaVT
RQqAYrPGgnEyUhaQPnveUQSW8I+7LJbyPYzh4WknFDJqrHgYEOuXYThzNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFINJ6TyFPf7/xVJAJQKYcJeyyd4XMB8GA1UdIwQY
MBaAFJ4boWU/ynyAFyPKRv9ELmusHpGgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8zODk0MjQtYWFiYS00NDkxLTlmYmEt
ZmNiNDNkNGY2NzE0LzEvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy8zODk0MjQtYWFiYS00NDkxLTlmYmEtZmNiNDNkNGY2NzE0
LzEvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl8oPJo2W
J3ZQnjj7Rmoif0rUI5rD0Du11/m5Y2Ma5TefllSXxI5AwzQBO6a2GMNoXz9U9DUE
TQjQ9P+hh5xQuCM2ehSlROEvAHlREZ7k6PNr54wTWy2sO+vNLfMhJSkTQW/heNdp
4DCuQpyAOkDOK6KnBj4Pyz3lw5hyI2jc5eM/0FN2WCI4ny4rNTUAyqgYFTKVrjOi
96mfruCjW86HTdGa7jc24DL24xrpiOEk/bVqUzToTdltNpj+7k7LbEnHnaidxWtR
pjdfmLZFM9gul63DrFTaV+i4N6ECjKXhjMzpIZC3P2ZEDJFjwVvvSLyFrFZQrEIg
f3RkwujONykSbQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:12:12 2025 by rpki-client