Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
File: NutRbqkC2WStsqptytmh3A9bfv4.mft (raw, json)
Hash identifier: X7tXfYFmzgnfzDXsmtMS7KBuSt5hHYPWsnVW9UaVq9Q=
Subject key identifier: 05:29:33:F0:6F:4B:C6:A6:02:02:1D:5F:63:31:83:0F:7F:41:6C:01
Authority key identifier: 36:EB:51:6E:A9:02:D9:64:AD:B2:AA:6D:CA:D9:A1:DC:0F:5B:7E:FE
Certificate issuer: /CN=36eb516ea902d964adb2aa6dcad9a1dc0f5b7efe
Certificate serial: 019A0CA61F9A7C2FFE52B6B7F3ECA229FA60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
Manifest number: 167C
Signing time: Wed 22 Oct 2025 16:00:04 +0000
Manifest this update: Wed 22 Oct 2025 16:00:04 +0000
Manifest next update: Thu 23 Oct 2025 16:00:04 +0000
Files and hashes: 1: NutRbqkC2WStsqptytmh3A9bfv4.crl (hash: OrG0fm0skxzaQml4gJykrkiTYtSSfmXzvIRfTrZvgcc=)
2: XdAh2iIkdXAUuE10m0pcdADM_3Q.roa (hash: lEtjV/lSmPRly69ux6s/y/s94dr1ooRNJ7kAyfLCuys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0c:a6:1f:9a:7c:2f:fe:52:b6:b7:f3:ec:a2:29:fa:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36eb516ea902d964adb2aa6dcad9a1dc0f5b7efe
Validity
Not Before: Oct 22 16:00:04 2025 GMT
Not After : Oct 23 16:00:04 2025 GMT
Subject: CN=052933f06f4bc6a602021d5f6331830f7f416c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a4:33:99:64:df:16:cc:2d:b3:77:2c:51:47:
d9:2b:a4:c2:72:1f:a4:f1:41:01:22:3f:e9:04:ff:
c2:c7:94:18:9a:ed:02:65:51:e6:63:19:63:14:ad:
e1:0d:41:59:ef:e3:78:ba:ed:e2:ae:7d:9a:dc:0c:
d0:5c:c1:1a:c8:68:6a:2e:a7:66:f3:a1:f9:7a:e4:
ea:b6:98:40:92:4d:90:da:55:33:3f:6f:ca:71:9c:
d6:4e:fe:29:47:de:e0:1b:43:d5:18:21:19:a5:7c:
90:7a:6f:b1:7c:21:02:86:c9:61:a3:ef:27:21:9c:
09:81:c5:22:5e:bf:99:c7:76:1e:ca:70:c2:f9:fa:
f7:b7:bd:28:9d:7b:5a:07:a7:b0:42:ac:04:76:6b:
4b:a5:bb:07:c6:df:95:33:18:f9:91:a7:c2:b2:93:
eb:2d:d5:55:96:f2:86:a1:f3:4d:46:3b:61:3d:5f:
1c:6d:44:f0:6f:0a:a9:fd:58:ed:46:6c:35:3c:8d:
0f:07:d5:aa:4f:7e:20:ce:36:18:68:ba:0a:e1:34:
e0:95:00:e6:18:d9:74:d6:25:cb:be:70:15:ff:39:
5f:d8:52:b3:93:81:fa:a2:8c:d5:d0:51:44:39:27:
76:5f:e5:35:a3:0e:6c:0b:57:86:db:dd:6a:98:c7:
65:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:29:33:F0:6F:4B:C6:A6:02:02:1D:5F:63:31:83:0F:7F:41:6C:01
X509v3 Authority Key Identifier:
keyid:36:EB:51:6E:A9:02:D9:64:AD:B2:AA:6D:CA:D9:A1:DC:0F:5B:7E:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:de:ea:fc:c3:6c:69:66:7f:a6:85:36:16:a4:e7:ad:6e:2e:
79:cd:7a:70:22:3f:fe:ad:6f:9c:9d:07:f0:31:1b:ad:33:c5:
64:67:f1:1b:6b:22:8a:56:39:51:01:ef:ab:ae:ba:a0:e7:a2:
fc:1a:30:07:cb:d2:6a:28:15:5b:67:b9:51:54:7b:2a:04:75:
15:74:67:e1:b3:ed:d4:37:bc:da:3f:3e:3c:fd:da:1b:c9:fc:
1c:a1:fa:e8:c5:61:06:a1:7b:41:20:c1:09:c4:1f:f5:59:f9:
ea:ae:58:43:ee:56:ee:b2:d6:8a:73:f7:64:3d:3b:30:6f:0c:
2d:c8:63:88:1a:bf:23:b3:2c:d7:36:b7:11:0d:33:27:ba:d3:
02:89:f6:1f:39:b2:c7:46:74:28:d2:5e:b5:62:66:2c:0b:27:
90:91:2e:39:89:07:ab:0a:e6:97:e2:c6:5f:e8:49:02:0b:c4:
92:e3:b3:40:bd:ce:54:f6:21:c4:1f:23:c9:20:f3:6a:cd:9c:
1c:b2:36:2a:9d:13:ef:86:ef:a1:73:e9:c8:48:32:fd:c0:8d:
e3:79:d5:2d:a3:04:af:e1:39:c6:88:e7:c4:73:02:80:fa:3f:
9a:a9:ca:4b:13:c1:2e:90:17:0e:a0:07:2e:49:c3:a0:16:a3:
c8:34:7a:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 21:43:58 2025 by rpki-client