Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
File: nSAoCNH5FFVeG9WcFncof_mztZA.mft (raw, json)
Hash identifier: inwz/Oj0b5MpfaLnkY4OhcDiP6ZvC8AI2KSniXfaUZU=
Subject key identifier: B5:8A:FF:B6:94:16:C9:B4:5D:21:4B:70:00:6C:8A:DF:FD:B0:F3:BD
Authority key identifier: 9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
Certificate issuer: /CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Certificate serial: 019A0B937590DE9873AD9CEA145A3CD34E54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
Manifest number: 10F4
Signing time: Wed 22 Oct 2025 11:00:04 +0000
Manifest this update: Wed 22 Oct 2025 11:00:04 +0000
Manifest next update: Thu 23 Oct 2025 11:00:04 +0000
Files and hashes: 1: nSAoCNH5FFVeG9WcFncof_mztZA.crl (hash: 5OARKYsr8a1/ISkVILyT5D59PXwf8AG7ETyzFjyjdFQ=)
2: qztp8oOkrsOnZQZ-AVesJkd8gBA.roa (hash: w8j5kLnBBDJA6YAxwk7yr2iHlxdseJ2t5FGwhKWuj0I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 11:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0b:93:75:90:de:98:73:ad:9c:ea:14:5a:3c:d3:4e:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Validity
Not Before: Oct 22 11:00:04 2025 GMT
Not After : Oct 23 11:00:04 2025 GMT
Subject: CN=b58affb69416c9b45d214b70006c8adffdb0f3bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:10:60:fd:e5:ec:3d:a0:1d:0f:bd:2d:6e:44:
33:ea:a4:e0:75:14:8c:ce:0a:4d:4f:39:a6:cd:b4:
41:08:dd:9d:32:26:0b:96:57:fe:fe:58:ed:66:44:
bc:4c:cd:00:62:d4:89:a6:31:36:9a:84:ec:09:53:
c6:41:96:c2:d3:1d:48:ec:f3:b0:4a:2c:19:7d:6e:
06:85:5f:1f:c5:ec:e5:9f:a9:43:bb:16:25:ea:44:
c7:9f:da:d0:72:f9:2e:d2:c1:61:a7:f8:c6:48:16:
08:4b:4c:3d:a0:f9:a5:d1:f5:0f:c3:f3:83:73:c2:
6b:60:56:89:e8:c4:55:c5:0d:2f:6b:b4:92:6c:86:
c3:02:d4:1e:78:f2:b1:7b:c2:4e:fa:cd:af:5d:2a:
8c:75:95:b0:95:49:b8:03:c1:64:e6:ca:60:bd:0f:
ad:3b:0b:b6:7d:c2:6f:e0:82:54:f1:19:ba:04:87:
ff:f8:08:55:14:ca:af:62:39:37:08:61:f7:d5:1a:
4b:21:a5:6c:d3:92:ca:a5:ec:cb:6f:26:5e:70:1d:
7e:f8:00:2b:b4:df:36:2e:79:5b:e2:f7:99:3c:13:
ee:14:96:87:b1:f7:e3:f9:89:73:6a:79:a3:f7:9a:
52:cb:61:52:17:61:be:e6:cb:a7:3d:c7:1a:b8:0d:
3c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:8A:FF:B6:94:16:C9:B4:5D:21:4B:70:00:6C:8A:DF:FD:B0:F3:BD
X509v3 Authority Key Identifier:
keyid:9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:44:08:2a:1b:1e:2c:2a:7a:21:c9:a8:60:88:63:df:66:f9:
8e:05:3a:7a:4e:97:84:04:d2:06:f1:2f:05:c9:94:a4:64:7a:
e2:b7:31:93:63:7e:ca:c0:7b:37:b2:60:d7:87:6c:c9:a6:4e:
0e:05:0c:3b:91:68:88:1e:70:90:c2:ce:9f:a9:29:6a:7e:cd:
2a:c2:e9:59:f9:dd:ad:fc:e1:db:3f:63:4d:d0:0c:0f:aa:94:
48:5d:6c:bf:5c:9a:cb:c0:ae:1a:e0:13:96:e4:cf:b3:18:5b:
ff:d8:11:b2:23:50:88:e2:ea:b6:54:67:1d:df:c8:16:82:70:
bb:0a:23:f7:1f:6e:bc:21:30:7a:f9:3d:2d:2a:9b:de:e9:49:
f0:b5:c5:05:ed:53:bb:3e:bd:78:69:a4:7a:4f:dd:11:d9:77:
1f:d0:19:bd:66:e1:ab:5e:3d:7c:34:22:48:cd:c0:c5:7b:c1:
60:df:81:91:56:9b:98:80:e3:b6:40:b2:ed:94:f5:cf:0b:12:
fd:8e:48:4b:e1:84:e2:ba:24:76:0a:75:58:43:f9:3d:de:da:
9e:37:d1:93:af:eb:f8:c7:d1:a5:e8:94:b0:87:ac:7e:43:ee:
f1:bd:69:eb:ee:4b:73:7c:2d:76:df:9f:1b:6d:b5:43:d8:d1:
66:43:d7:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 18:46:24 2025 by rpki-client