Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
File: nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft (raw, json)
Hash identifier: RgtVqvO4nR3PAC6Vw0Nt3mSg+890Ep91n5we2MWUw+8=
Subject key identifier: 1A:87:11:C9:1C:2E:3D:10:D7:FF:20:BD:E9:99:3F:F2:E6:A4:A3:53
Authority key identifier: 9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
Certificate issuer: /CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Certificate serial: 019963FE4D7C95F68AEBE14EC1726452FEE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
Manifest number: 1693
Signing time: Fri 19 Sep 2025 22:00:34 +0000
Manifest this update: Fri 19 Sep 2025 22:00:34 +0000
Manifest next update: Sat 20 Sep 2025 22:00:34 +0000
Files and hashes: 1: 8vJ7ABj3xVyEwXenD9W0ncMrU1A.roa (hash: 5gnWjjNTmQRrWBLMz2vS6KZph20DEPN6rQfmfIVo1TE=)
2: 95tOWT20XUkoFBLGQGdVcwDGE0s.roa (hash: Qa6N16B2kLdBJuSQoLOln9hPwf+0/JSY++MAPTIofBc=)
3: D2QorAtAGpZ4DSilBt-gZlYU1WU.roa (hash: vpJGRRZzUNjxMRhoSrLA2Ov0y70mAO/SHEjk1etazfE=)
4: nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl (hash: mE23PMN4e9DuC8e+6pnMbiVIRBjY8MkV5G0xA0M4tdM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Sep 2025 16:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:63:fe:4d:7c:95:f6:8a:eb:e1:4e:c1:72:64:52:fe:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Validity
Not Before: Sep 19 22:00:34 2025 GMT
Not After : Sep 20 22:00:34 2025 GMT
Subject: CN=1a8711c91c2e3d10d7ff20bde9993ff2e6a4a353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a8:2a:3c:2a:2e:0f:39:60:94:ea:55:86:79:
b6:bb:bb:22:c2:7e:59:d9:82:45:ea:e5:7b:39:9c:
2b:02:e8:4c:c6:4a:43:2f:d1:78:31:a1:ec:b1:79:
84:fe:34:24:15:e7:69:68:ff:7d:9d:47:67:d6:55:
72:d9:98:49:3d:40:04:c1:d2:2b:de:91:2c:f1:43:
52:34:49:a8:09:96:a1:27:45:df:d7:b1:35:a8:98:
e7:2e:b1:bd:97:e8:b7:85:f7:5e:ac:96:ee:0f:72:
0a:63:c9:91:0a:17:4e:fe:a3:79:7f:89:a6:ba:13:
68:16:1c:02:b2:1e:af:47:16:78:14:09:67:a1:b8:
02:ef:90:06:b9:fe:81:f8:49:3e:07:df:e1:b1:a8:
09:b8:f0:1e:13:b6:57:32:d1:22:ec:df:48:30:1e:
e6:14:e7:c3:12:9a:e2:5d:49:f8:65:11:c8:ef:b8:
4d:3b:ff:3c:ac:7e:97:4f:e8:58:bc:aa:48:9e:fa:
ab:e4:9a:4b:72:9f:f0:fa:2b:4c:f4:23:3b:49:01:
40:2c:7d:83:bb:5f:f8:d7:51:7a:ef:0c:c0:c7:27:
0b:a5:b7:26:33:36:8a:f2:96:ac:a9:fb:3b:ee:d1:
76:1e:65:b2:91:81:24:33:43:2d:85:4a:c3:12:97:
95:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:87:11:C9:1C:2E:3D:10:D7:FF:20:BD:E9:99:3F:F2:E6:A4:A3:53
X509v3 Authority Key Identifier:
keyid:9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:7d:6d:d8:38:e1:b4:d0:a1:80:3c:1b:0e:bf:50:e2:0d:47:
24:af:46:7d:46:25:61:3e:26:f9:9a:1f:25:7d:8d:86:a1:f8:
c1:c1:27:47:c4:82:c6:b2:39:84:13:c4:20:1d:fd:b2:ad:8e:
46:80:49:94:bf:db:4a:43:be:c1:89:3d:31:45:c2:85:55:ef:
dd:ad:40:9a:a6:1e:40:41:00:f3:55:29:47:52:db:84:7c:10:
22:32:81:a7:ba:f1:f6:79:4d:ba:54:b7:07:9a:ce:e8:3a:79:
c0:44:44:5f:38:6f:aa:1e:7c:25:88:9f:a2:c6:ae:82:70:b1:
92:16:24:b6:3d:ab:b5:62:14:37:6d:dd:cd:ba:9a:cc:9b:1b:
8f:65:e6:8f:20:3d:1c:17:73:2f:5b:75:2f:d5:e7:d5:4b:b8:
69:ee:aa:73:88:10:f0:c2:50:f7:22:ec:f5:cd:9c:a6:fe:fa:
32:46:b6:b5:dc:e6:86:c1:d1:02:9f:8b:34:61:06:c6:9f:09:
4b:5f:00:fd:b8:28:db:d7:1a:bf:6c:82:11:82:93:e0:ad:df:
2a:b8:d3:e3:89:b3:43:c9:50:5b:04:b1:e8:13:32:a9:f8:02:
23:0c:eb:18:54:af:3a:3f:f7:bb:30:2b:8d:cc:b6:f8:4c:ad:
8b:2e:52:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 20 00:56:59 2025 by rpki-client