Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
File: nFVnZyAcUPayqVXbah5uAR36XUQ.mft (raw, json)
Hash identifier: iXZq5GWbA3dSeQIGyNuZfyZSGf1/NAHcxYicPrEZqpI=
Subject key identifier: A9:FF:1A:DF:40:95:D1:21:6B:C4:76:98:78:BA:2C:22:99:EA:2D:3D
Authority key identifier: 9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44
Certificate issuer: /CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44
Certificate serial: 019A71B8457D857C7477C51E2D37E5BC6F4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
Manifest number: 0C47
Signing time: Tue 11 Nov 2025 07:01:33 +0000
Manifest this update: Tue 11 Nov 2025 07:01:33 +0000
Manifest next update: Wed 12 Nov 2025 07:01:33 +0000
Files and hashes: 1: cmsoMlIRCcbLziNipTUjZc3lrew.roa (hash: a1CFCcY0jADOuS6DTKGkRSmsv5gzH4GzUcir7HG6pUE=)
2: nFVnZyAcUPayqVXbah5uAR36XUQ.crl (hash: JSS0tKIjbJ22Ofx9vzSnGbj/D7lLttAjXl5XtiLLOus=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:45:7d:85:7c:74:77:c5:1e:2d:37:e5:bc:6f:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44
Validity
Not Before: Nov 11 07:01:33 2025 GMT
Not After : Nov 12 07:01:33 2025 GMT
Subject: CN=a9ff1adf4095d1216bc4769878ba2c2299ea2d3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:a3:77:63:34:00:f7:60:23:58:d6:c1:bb:ef:
c1:3c:c9:0f:48:09:b9:89:9d:d1:89:9f:1e:b9:04:
d6:5c:54:3b:2a:3d:5e:8c:41:bd:8a:b0:4a:29:4d:
92:e4:27:12:10:bc:19:d7:4b:03:64:9b:de:5e:71:
b0:6c:88:dd:9f:ad:3b:0e:0f:a3:02:b4:a1:f5:1e:
b9:b6:a6:58:46:06:1b:19:40:d8:e8:f4:c7:2c:2e:
d5:29:20:b6:b0:8d:a6:0e:6b:09:bf:1a:84:f0:65:
4c:4e:f8:f8:3b:f6:43:f6:df:77:b3:80:2e:69:da:
2a:02:82:69:88:aa:1e:e9:76:6a:10:05:bf:fc:b8:
80:b5:cd:5a:21:56:95:81:8b:be:47:70:bc:3e:07:
e9:8c:22:62:43:4f:af:ec:38:64:f6:85:f8:e8:d8:
10:99:80:f0:d2:84:9f:b7:69:5d:51:50:c3:da:08:
3d:48:a7:ba:15:1b:96:bd:4a:89:a9:aa:97:9f:aa:
8f:ce:0b:76:ab:b9:ed:94:df:c0:e9:a3:57:e1:30:
06:a4:67:e2:7b:04:86:47:4f:d8:5d:3a:3a:59:66:
f5:8e:4e:11:a5:1f:34:d6:a2:fb:d7:c2:9f:b2:9f:
08:13:89:44:c9:0e:63:98:d8:b1:64:8d:40:15:68:
2e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:FF:1A:DF:40:95:D1:21:6B:C4:76:98:78:BA:2C:22:99:EA:2D:3D
X509v3 Authority Key Identifier:
keyid:9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:26:16:62:34:b7:9f:e3:c1:56:2e:9b:a9:07:a4:67:48:f6:
07:86:57:93:03:a5:ce:3d:f8:a6:f6:1e:31:d3:12:e8:c1:e3:
a0:8b:fb:36:d6:10:50:f1:cf:58:55:a1:b1:a0:1e:e3:fb:36:
d1:da:32:ef:e2:63:97:81:64:a4:b3:94:1e:d1:7e:12:1c:8f:
d8:ff:4c:c5:82:21:bf:87:17:37:fd:54:8e:8c:63:2b:64:f5:
0f:a5:d2:a0:0c:2f:01:2e:ab:b8:55:b4:34:6e:fa:37:a2:5f:
a2:b3:cb:f8:4e:7a:f0:c9:de:39:d7:ba:44:4a:97:0e:bf:39:
63:cd:1b:96:1a:d5:2a:73:51:b0:b1:b9:60:a7:2d:dc:9a:2c:
60:16:27:4c:57:29:f2:eb:95:14:cf:47:c3:f9:8d:d8:b8:5f:
99:14:01:22:2c:92:6d:f3:93:df:00:66:9d:5a:f6:9d:e0:a1:
e9:5c:4b:8b:c7:b8:6a:3d:fb:35:be:c1:c4:df:44:b4:83:88:
b1:bf:e2:75:ec:98:b9:af:fe:8c:9b:55:e6:e0:fc:1d:df:99:
8b:62:6c:fe:6a:0f:66:05:d7:1d:30:7c:68:f3:c4:6f:95:33:
34:b8:9b:7e:36:ac:b2:6d:78:cb:cf:a0:5d:05:ca:73:24:85:
00:7d:3c:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:47:16 2025 by rpki-client