Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
File: nEswhmFPR4OKPoCj5uBR09imkvk.mft (raw, json)
Hash identifier: 8DWrcJPgf+LBJNz2nE+KVRH25H0atFufPQ5K29wNPQw=
Subject key identifier: 45:73:A6:35:1A:21:31:E2:6D:05:24:DC:8E:ED:6C:0C:86:C4:5C:C5
Authority key identifier: 9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
Certificate issuer: /CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Certificate serial: 0199239EC83D79F33B2B252462E09FA8137B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
Manifest number: 06BE
Signing time: Sun 07 Sep 2025 10:00:32 +0000
Manifest this update: Sun 07 Sep 2025 10:00:32 +0000
Manifest next update: Mon 08 Sep 2025 10:00:32 +0000
Files and hashes: 1: a_Q0Oj2hhJ8gyCrgqERD5VjhULo.roa (hash: ix5ZmIac7PSSZ8cbH+U6PyHdhcxmOIX450xPjZ8S6o0=)
2: nEswhmFPR4OKPoCj5uBR09imkvk.crl (hash: a0KB2rWQruGTKhDDVbwZXrIzidCzi6qWcKuxi5vHNIM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9e:c8:3d:79:f3:3b:2b:25:24:62:e0:9f:a8:13:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Validity
Not Before: Sep 7 10:00:32 2025 GMT
Not After : Sep 8 10:00:32 2025 GMT
Subject: CN=4573a6351a2131e26d0524dc8eed6c0c86c45cc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1d:38:bb:24:da:e2:fd:8e:20:9d:6d:7d:80:
18:56:15:18:f5:38:db:96:eb:bd:6e:1d:67:a6:66:
80:c5:3e:b0:57:8d:7c:9c:a7:22:77:eb:57:55:7f:
f6:5d:02:80:fe:14:a9:65:00:e4:e0:ff:50:dc:88:
17:9d:38:cb:50:c0:51:e2:e2:64:28:c2:e0:4d:0d:
e8:6a:b5:05:25:1f:14:5a:31:4e:c5:21:0e:2c:98:
9e:0e:74:22:92:18:35:67:b3:84:61:54:66:1a:33:
ff:2c:7c:9e:a1:8f:68:12:7c:c7:07:f9:b1:cb:c3:
3b:4a:e0:e2:08:e7:29:05:fb:30:95:02:c0:be:c0:
7c:26:ab:80:7a:dc:c0:a4:b0:43:c2:fe:6e:57:69:
fe:93:a5:84:b2:59:69:27:2c:42:b3:ac:14:b3:8d:
6c:5a:62:04:e3:58:54:22:8a:95:45:fa:45:7c:8f:
23:aa:83:6c:28:f2:72:75:b2:3b:a9:ca:15:fa:1b:
7c:5d:ad:6e:fd:9f:2a:4e:93:9d:10:69:08:c9:33:
38:84:2a:6f:a2:74:8e:e9:b5:28:84:91:3b:4a:c7:
fd:5c:ff:fb:1a:99:e0:a3:5b:35:0f:df:eb:00:0b:
57:a9:ce:b1:d2:45:c0:d9:40:2b:10:c6:6b:5d:5f:
ea:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:73:A6:35:1A:21:31:E2:6D:05:24:DC:8E:ED:6C:0C:86:C4:5C:C5
X509v3 Authority Key Identifier:
keyid:9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:34:df:c7:b0:8d:59:63:3b:a1:aa:4f:12:14:25:ca:86:fc:
9b:d7:28:ed:2b:7e:69:26:12:5f:b2:bd:c0:46:8d:ef:a7:c1:
8f:6e:17:a7:1f:d2:0a:a8:28:19:61:ab:33:29:3a:9c:4f:c0:
22:4d:1e:26:61:1b:94:09:e1:c2:4c:04:39:cf:c8:43:18:1f:
8f:09:a2:6c:84:c4:47:24:50:3f:d1:1d:df:3a:cb:56:0b:90:
8c:1c:79:b3:54:d4:4b:ad:84:74:8b:92:a1:b0:1c:44:63:b9:
8c:1c:a3:40:39:f8:25:b9:bf:1c:39:59:9f:31:f6:50:2e:83:
3a:93:61:a7:e5:0e:be:58:de:64:a2:db:7f:57:fe:5f:ca:25:
b3:54:8b:1a:19:37:fb:fd:c4:1e:22:b2:49:67:5e:41:da:5c:
8c:be:34:02:49:52:7a:f3:43:61:27:18:42:9c:1f:1b:14:18:
4d:94:98:e2:6a:18:18:39:5e:4d:93:5e:a0:cb:e4:81:bc:3c:
de:5a:70:79:fc:f3:d9:01:a9:88:a9:b3:35:db:1e:bc:81:34:
50:c1:4e:c5:5b:5d:cb:b7:a3:3f:79:ee:e0:78:a5:3a:ed:81:
f2:6f:aa:2c:df:29:65:e3:a2:0d:0d:8c:84:ec:d0:25:5c:ce:
4b:02:77:f7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjnsg9efM7KyUkYuCfqBN7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljNGIzMDg2NjE0ZjQ3ODM4YTNlODBhM2U2ZTA1MWQzZDhh
NjkyZjkwHhcNMjUwOTA3MTAwMDMyWhcNMjUwOTA4MTAwMDMyWjAzMTEwLwYDVQQD
Eyg0NTczYTYzNTFhMjEzMWUyNmQwNTI0ZGM4ZWVkNmMwYzg2YzQ1Y2M1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0B04uyTa4v2OIJ1tfYAYVhUY9Tjb
luu9bh1npmaAxT6wV418nKcid+tXVX/2XQKA/hSpZQDk4P9Q3IgXnTjLUMBR4uJk
KMLgTQ3oarUFJR8UWjFOxSEOLJieDnQikhg1Z7OEYVRmGjP/LHyeoY9oEnzHB/mx
y8M7SuDiCOcpBfswlQLAvsB8JquAetzApLBDwv5uV2n+k6WEsllpJyxCs6wUs41s
WmIE41hUIoqVRfpFfI8jqoNsKPJydbI7qcoV+ht8Xa1u/Z8qTpOdEGkIyTM4hCpv
onSO6bUohJE7Ssf9XP/7Gpngo1s1D9/rAAtXqc6x0kXA2UArEMZrXV/qVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEVzpjUaITHibQUk3I7tbAyGxFzFMB8GA1UdIwQY
MBaAFJxLMIZhT0eDij6Ao+bgUdPYppL5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkVzd2htRlBSNE9LUG9DajV1QlIwOWlta3ZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82Mjk2ZDctYzAwOC00YzMxLWFlN2Et
ODRlZjljYWJiOWI2LzEvbkVzd2htRlBSNE9LUG9DajV1QlIwOWlta3ZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82Mjk2ZDctYzAwOC00YzMxLWFlN2EtODRlZjljYWJiOWI2
LzEvbkVzd2htRlBSNE9LUG9DajV1QlIwOWlta3ZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIDTfx7CN
WWM7oapPEhQlyob8m9co7St+aSYSX7K9wEaN76fBj24Xpx/SCqgoGWGrMyk6nE/A
Ik0eJmEblAnhwkwEOc/IQxgfjwmibITERyRQP9Ed3zrLVguQjBx5s1TUS62EdIuS
obAcRGO5jByjQDn4Jbm/HDlZnzH2UC6DOpNhp+UOvljeZKLbf1f+X8ols1SLGhk3
+/3EHiKySWdeQdpcjL40AklSevNDYScYQpwfGxQYTZSY4moYGDleTZNeoMvkgbw8
3lpwefzz2QGpiKmzNdsevIE0UMFOxVtdy7ejP3nu4HilOu2B8m+qLN8pZeOiDQ2M
hOzQJVzOSwJ39w==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:24:28 2025 by rpki-client