Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft
File: nLt3urQ4qT002dXAqOC57zKuXaA.mft (raw, json)
Hash identifier: 8Co0CRxZLIiIT6wU2DuzekOqFKkslmeJqKdZXgf1xhE=
Subject key identifier: CF:5A:95:8A:21:A9:88:3B:D6:36:84:B7:E4:32:82:8F:46:35:21:65
Authority key identifier: 9C:BB:77:BA:B4:38:A9:3D:34:D9:D5:C0:A8:E0:B9:EF:32:AE:5D:A0
Certificate issuer: /CN=9cbb77bab438a93d34d9d5c0a8e0b9ef32ae5da0
Certificate serial: 019921B0D711FCB5677CB15AE7A45791CE93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft
Manifest number: 07F7
Signing time: Sun 07 Sep 2025 01:01:01 +0000
Manifest this update: Sun 07 Sep 2025 01:01:01 +0000
Manifest next update: Mon 08 Sep 2025 01:01:01 +0000
Files and hashes: 1: TAsOnRZq8fiVm7IgWJUxtwQKXQw.roa (hash: uvW+4Cm/xTtLLngk0h3md/Re7mjqyVC2fS5xyiOuuj4=)
2: nLt3urQ4qT002dXAqOC57zKuXaA.crl (hash: z+de91LMg+jf5W9yo5/Yn7YVNJlMc8Cu5w+vuYRuJTo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:d7:11:fc:b5:67:7c:b1:5a:e7:a4:57:91:ce:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cbb77bab438a93d34d9d5c0a8e0b9ef32ae5da0
Validity
Not Before: Sep 7 01:01:01 2025 GMT
Not After : Sep 8 01:01:01 2025 GMT
Subject: CN=cf5a958a21a9883bd63684b7e432828f46352165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:23:ba:a6:88:78:3c:f3:b3:64:96:8f:f2:73:
c1:ac:da:fa:aa:51:a9:81:4c:f2:42:70:f3:b6:a9:
1c:67:cf:4e:db:fb:ca:c8:8e:76:15:7a:66:4a:f3:
08:77:41:75:88:7d:11:d7:bd:28:65:8e:13:b2:55:
b7:61:97:ce:c7:24:3e:65:33:b5:0b:8d:ce:da:ea:
d8:71:b2:6f:9d:9b:7a:ca:33:f1:d2:6f:f4:c0:d5:
ae:8a:a7:07:53:44:34:84:22:f2:0c:6a:c7:fe:1a:
df:f2:0c:1b:36:e0:77:7d:1b:59:4e:3d:69:89:00:
45:30:17:57:4e:fc:f1:e1:8a:4a:e2:cc:7a:1b:c8:
d8:10:36:5f:38:f9:b2:3c:a1:44:1b:28:39:74:2c:
ce:f2:9b:5a:9d:f7:18:9e:63:20:c2:ae:42:9d:94:
8e:fa:22:1c:17:f8:31:10:74:da:f6:8b:6d:fc:1a:
f7:5d:11:8c:82:a8:83:02:1d:0d:0c:8d:b7:92:2c:
ab:1d:cc:cf:f4:13:02:0a:d1:91:58:e8:35:98:3a:
2d:2a:38:41:9f:ed:a3:4e:2a:dc:71:bf:61:b8:be:
92:a9:55:91:db:08:24:ff:1d:e4:b2:a2:c5:0c:b7:
33:62:32:4f:41:3a:bc:f2:7e:e6:4f:ad:64:66:8e:
6a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:5A:95:8A:21:A9:88:3B:D6:36:84:B7:E4:32:82:8F:46:35:21:65
X509v3 Authority Key Identifier:
keyid:9C:BB:77:BA:B4:38:A9:3D:34:D9:D5:C0:A8:E0:B9:EF:32:AE:5D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:f3:2e:2c:1e:ea:94:80:26:12:78:84:1b:e7:2b:02:e9:16:
79:1c:70:59:55:ac:02:f2:81:23:87:5e:a9:7e:14:d7:fb:17:
be:01:b3:d3:e2:6e:1c:75:e8:b0:c2:06:98:3a:a8:70:10:45:
0e:9e:a4:00:f9:18:18:f9:db:ea:85:90:17:5b:40:c7:86:80:
8e:af:fd:1d:d8:80:52:36:33:2d:d8:88:d7:53:a2:8d:e4:39:
37:e3:7b:8b:96:68:40:dd:b3:35:1a:fd:05:b2:57:86:3b:b3:
d7:74:7d:92:91:0b:0d:ee:f6:b8:79:13:68:51:4c:bc:7b:f5:
62:c6:cd:b5:70:75:14:64:b2:cb:be:b1:de:6e:76:f5:0c:78:
01:fd:17:09:ad:2d:76:03:88:52:d6:70:3d:f1:e3:61:55:ce:
40:d8:8e:db:39:b1:69:8e:89:04:3a:dd:88:74:bc:04:f5:1f:
9c:65:f9:99:02:81:2c:ee:d5:16:59:91:d3:be:98:c3:9f:79:
05:47:68:47:67:90:27:17:75:c7:f5:c9:47:16:3b:31:24:9f:
74:22:d9:11:d4:b6:c7:93:d8:e9:ae:07:e2:8b:37:d4:17:18:
62:86:56:33:d6:6e:79:22:5d:c0:4f:fc:99:7f:f0:00:63:b8:
66:a3:87:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:09:29 2025 by rpki-client