Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
File: nEswhmFPR4OKPoCj5uBR09imkvk.mft (raw, json)
Hash identifier: A60C1JaO0o9hMmfFjqJbvuzkcZEGXZQ+8nekqEm9FFU=
Subject key identifier: 0A:C6:20:8F:D7:00:CE:1D:CF:98:C3:7E:73:51:78:E7:F1:66:92:CB
Authority key identifier: 9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
Certificate issuer: /CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Certificate serial: 019A18E269C7D475B92C44E27AAE16B54076
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
Manifest number: 073D
Signing time: Sat 25 Oct 2025 01:01:22 +0000
Manifest this update: Sat 25 Oct 2025 01:01:22 +0000
Manifest next update: Sun 26 Oct 2025 01:01:22 +0000
Files and hashes: 1: a_Q0Oj2hhJ8gyCrgqERD5VjhULo.roa (hash: ix5ZmIac7PSSZ8cbH+U6PyHdhcxmOIX450xPjZ8S6o0=)
2: nEswhmFPR4OKPoCj5uBR09imkvk.crl (hash: sIdWh6lQadH3W3Rw3a15Cr+4u9eP2LFrKvXw1tAClZw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 17:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:18:e2:69:c7:d4:75:b9:2c:44:e2:7a:ae:16:b5:40:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Validity
Not Before: Oct 25 01:01:22 2025 GMT
Not After : Oct 26 01:01:22 2025 GMT
Subject: CN=0ac6208fd700ce1dcf98c37e735178e7f16692cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:61:48:1e:66:0d:b2:68:8b:35:84:46:10:99:
7c:c4:86:8a:37:0d:6a:b3:d3:e1:85:e1:9f:b1:c5:
67:b9:77:a2:73:5d:a3:f1:c5:0b:25:89:02:de:4f:
1e:00:12:ad:5b:7c:e9:b2:2c:b3:18:a7:da:b5:a3:
3a:f9:fb:fe:7b:01:44:06:60:1b:e5:32:1f:08:a8:
68:85:a1:44:6a:20:99:02:86:0d:cd:f6:52:3d:16:
73:81:ae:5e:a2:e2:c7:aa:ab:da:58:98:4b:8b:45:
5e:52:4e:9f:ee:6e:9f:3f:58:b5:26:9b:1b:87:6a:
9d:60:e2:e5:8b:31:1c:9d:83:e6:ee:5f:3b:c2:24:
54:15:6b:f2:9b:03:54:d4:ce:f1:c0:cc:c6:40:09:
e8:cf:1c:70:00:42:3b:47:d4:98:97:b0:d0:88:42:
28:b0:50:47:d3:f4:98:a3:46:9e:82:d5:ac:43:5c:
aa:58:79:2f:ab:ac:a7:e9:59:f4:60:61:d4:dc:b4:
1d:72:a6:ca:b7:0a:7d:f2:90:f6:41:ac:46:44:7f:
cc:1a:74:dd:01:d0:1f:c8:c5:c1:dd:fb:b0:48:7e:
7e:58:5b:58:6a:e7:26:63:cd:e4:fb:cf:1a:9c:ff:
8a:5e:5f:d0:51:93:52:6c:e0:1c:2a:ee:96:7d:0e:
3a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:C6:20:8F:D7:00:CE:1D:CF:98:C3:7E:73:51:78:E7:F1:66:92:CB
X509v3 Authority Key Identifier:
keyid:9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:3d:14:c6:a8:3f:3c:56:12:f4:95:d7:7e:f6:6e:f2:41:c3:
7f:ec:7f:75:05:22:2b:e0:49:91:ee:53:1e:92:2d:f4:82:a2:
05:35:a1:8c:20:b7:4c:dd:16:63:42:fc:67:2f:a2:0f:14:e3:
e5:14:e7:0a:3d:c4:e0:28:13:cc:79:76:6b:75:db:d5:63:96:
ac:60:7d:87:cd:25:37:3e:7f:44:d7:00:6c:d6:38:20:26:cf:
16:8b:41:29:91:fb:f6:ff:b9:70:e9:ac:a9:eb:a3:32:09:b3:
50:03:ad:6b:5a:4b:79:10:c3:b8:58:d9:c5:91:1b:04:b0:f1:
18:a2:32:cf:ee:f1:bc:70:f5:4b:b5:f2:35:ab:ca:9a:27:9f:
91:45:e2:af:cc:07:ce:be:12:7c:7d:35:50:15:62:a4:7d:d9:
f7:86:92:c9:aa:98:37:3e:11:07:d3:99:72:32:08:7d:be:17:
99:ba:b3:b8:73:1b:10:5b:1a:e7:a7:16:4a:f6:7d:c3:ab:87:
a2:a7:4a:d0:74:fc:3f:f7:18:38:9b:5b:78:18:9d:25:59:61:
e6:81:57:c6:f7:3e:53:b6:88:94:99:b6:14:3a:c4:12:fa:82:
da:0a:e3:c0:fa:f2:b8:dc:3c:df:a0:0e:96:1d:72:37:07:8d:
20:83:61:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 03:21:04 2025 by rpki-client