Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
File: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft (raw, json)
Hash identifier: ZZodW4wuka4Ti/gklDH7GnSCdU/aE/Zrdybv3TwveRs=
Subject key identifier: 6D:C1:01:DC:B1:80:A2:6D:50:7B:0E:38:53:4E:89:2A:18:A0:8B:8B
Authority key identifier: 9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
Certificate issuer: /CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Certificate serial: 019848C0E24EC59C6215CC9F0C99AA750078
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
Manifest number: 0CD3
Signing time: Sat 26 Jul 2025 22:00:57 +0000
Manifest this update: Sat 26 Jul 2025 22:00:57 +0000
Manifest next update: Sun 27 Jul 2025 22:00:57 +0000
Files and hashes: 1: aRmXLbWgvqCrB_ieixDwg5bWHH4.roa (hash: NkuU0nUuwUULqqtGwJsRiK14f6VjdQm0HvAAtBo3GJQ=)
2: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl (hash: 7vl40dqMm6BIYx3Rg7Q91sJFDhkxU/DK7+14HCUK3Rk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 22:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:c0:e2:4e:c5:9c:62:15:cc:9f:0c:99:aa:75:00:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Validity
Not Before: Jul 26 22:00:57 2025 GMT
Not After : Jul 27 22:00:57 2025 GMT
Subject: CN=6dc101dcb180a26d507b0e38534e892a18a08b8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8e:91:f1:10:a4:c4:e6:8b:d5:33:e0:5d:3f:
99:f7:65:0e:83:7b:0b:23:24:fe:c5:73:12:70:9e:
c2:93:6a:67:cb:fc:e8:80:f5:43:fb:02:24:e3:24:
3f:17:3b:f3:0f:c7:6d:70:52:ff:37:12:af:e1:bb:
5c:03:4f:2e:a6:aa:5c:4d:50:93:89:41:12:50:3a:
1c:42:62:5a:b9:40:d0:42:5c:e7:c9:4a:ab:fe:ab:
55:c5:b0:05:2e:9f:34:a9:b4:2a:ae:5b:fe:97:f6:
6d:c6:d2:38:ce:d8:ef:0b:20:4a:c4:a9:a2:08:15:
a9:b5:a8:31:0c:fd:f5:9f:18:50:08:2c:02:f6:94:
2a:f7:a0:a7:58:c3:56:83:f3:0a:55:64:94:c1:06:
06:71:75:95:55:bc:f5:40:47:2f:b5:15:b1:12:76:
80:c0:00:09:d5:49:29:ff:85:b7:63:14:92:e8:ce:
4e:be:05:a2:89:04:62:ad:4c:96:7b:60:ac:f1:60:
71:7d:c5:ad:0b:d4:ec:fd:b1:9b:34:cd:b3:0c:2d:
87:68:d6:69:bc:29:02:a5:48:0b:ed:3b:63:e5:7b:
bc:77:c8:23:22:d1:07:d1:1a:62:d6:d0:31:36:cc:
0a:9a:74:a8:d7:c9:ad:e4:af:e3:e0:00:1c:d8:d0:
f8:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:C1:01:DC:B1:80:A2:6D:50:7B:0E:38:53:4E:89:2A:18:A0:8B:8B
X509v3 Authority Key Identifier:
keyid:9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:00:d8:91:f1:03:30:39:dd:e5:ad:d6:2d:4a:0c:9d:10:ae:
03:9b:10:4e:4d:82:00:4f:45:01:3f:78:d0:f0:47:ed:84:e0:
af:15:c8:be:b7:38:bc:3e:9a:23:bf:f8:82:ad:ff:79:10:d6:
5b:1f:15:e6:55:c8:27:cb:a9:4e:23:64:52:ea:a8:be:73:d8:
6a:51:53:80:4a:eb:74:8d:71:09:22:7a:3a:cf:53:b3:0f:ff:
10:21:2a:36:5f:8a:65:ee:4b:ab:8d:06:a4:bd:f1:da:ea:fb:
2d:af:b0:99:ad:bf:0e:9d:fe:7e:dd:f7:e1:d4:b6:fb:41:34:
26:7d:55:78:46:8e:84:63:49:fb:58:11:40:a2:35:f0:93:eb:
a7:1b:60:68:9d:65:71:f2:5d:c4:7c:d9:79:cd:16:18:18:e1:
c9:cc:df:74:85:ae:59:bf:c1:9e:fb:1c:48:9f:9c:21:0e:e8:
b6:f2:7a:15:a4:82:01:8e:77:8f:e8:5b:b5:23:e8:cc:87:cd:
70:06:c9:41:a3:97:db:08:72:94:b6:25:15:36:5e:d4:f8:b7:
ac:88:21:06:54:e5:b4:48:3a:5c:a2:70:e4:c5:fd:ee:c4:80:
c2:4c:a3:a5:6e:e3:ff:48:72:39:51:8e:83:26:28:6e:f9:99:
54:90:e3:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhIwOJOxZxiFcyfDJmqdQB4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMGUyYjllNjlmNTYyZGYxNGNmNzcyYmRlMDVmN2RhY2Rl
MjU5NjEwHhcNMjUwNzI2MjIwMDU3WhcNMjUwNzI3MjIwMDU3WjAzMTEwLwYDVQQD
Eyg2ZGMxMDFkY2IxODBhMjZkNTA3YjBlMzg1MzRlODkyYTE4YTA4YjhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA046R8RCkxOaL1TPgXT+Z92UOg3sL
IyT+xXMScJ7Ck2pny/zogPVD+wIk4yQ/FzvzD8dtcFL/NxKv4btcA08upqpcTVCT
iUESUDocQmJauUDQQlznyUqr/qtVxbAFLp80qbQqrlv+l/ZtxtI4ztjvCyBKxKmi
CBWptagxDP31nxhQCCwC9pQq96CnWMNWg/MKVWSUwQYGcXWVVbz1QEcvtRWxEnaA
wAAJ1Ukp/4W3YxSS6M5OvgWiiQRirUyWe2Cs8WBxfcWtC9Ts/bGbNM2zDC2HaNZp
vCkCpUgL7Ttj5Xu8d8gjItEH0Rpi1tAxNswKmnSo18mt5K/j4AAc2ND4RQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG3BAdyxgKJtUHsOOFNOiSoYoIuLMB8GA1UdIwQY
MBaAFJ0OK55p9WLfFM93K94F99rN4llhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblE0cm5tbjFZdDhVejNjcjNnWDMyczNpV1dFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8yNWJlMmYtOTJlYi00Y2RlLWEyNDct
ZDhkYzM0MDM2Y2U3LzEvblE0cm5tbjFZdDhVejNjcjNnWDMyczNpV1dFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8yNWJlMmYtOTJlYi00Y2RlLWEyNDctZDhkYzM0MDM2Y2U3
LzEvblE0cm5tbjFZdDhVejNjcjNnWDMyczNpV1dFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARgDYkfED
MDnd5a3WLUoMnRCuA5sQTk2CAE9FAT940PBH7YTgrxXIvrc4vD6aI7/4gq3/eRDW
Wx8V5lXIJ8upTiNkUuqovnPYalFTgErrdI1xCSJ6Os9Tsw//ECEqNl+KZe5Lq40G
pL3x2ur7La+wma2/Dp3+ft334dS2+0E0Jn1VeEaOhGNJ+1gRQKI18JPrpxtgaJ1l
cfJdxHzZec0WGBjhyczfdIWuWb/BnvscSJ+cIQ7otvJ6FaSCAY53j+hbtSPozIfN
cAbJQaOX2whylLYlFTZe1Pi3rIghBlTltEg6XKJw5MX97sSAwkyjpW7j/0hyOVGO
gyYobvmZVJDjqw==
-----END CERTIFICATE-----
Generated at Sun Jul 27 07:53:01 2025 by rpki-client