Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
File: nSAoCNH5FFVeG9WcFncof_mztZA.mft (raw, json)
Hash identifier: jKo5hb2vxZQUCKAirBsTTS3bh6Erb0mSv/3RZ6RdN2w=
Subject key identifier: A5:AD:E9:FD:08:23:AD:D9:A7:85:FE:90:3F:7A:5D:1E:D0:33:6B:84
Authority key identifier: 9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
Certificate issuer: /CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Certificate serial: 019921E75E1136CD78DDE89EC919868389DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
Manifest number: 107B
Signing time: Sun 07 Sep 2025 02:00:34 +0000
Manifest this update: Sun 07 Sep 2025 02:00:34 +0000
Manifest next update: Mon 08 Sep 2025 02:00:34 +0000
Files and hashes: 1: nSAoCNH5FFVeG9WcFncof_mztZA.crl (hash: RVQVlOtKbaCEuElrjfbIPhtaNAbFyoI3CwjGigyXr2U=)
2: qztp8oOkrsOnZQZ-AVesJkd8gBA.roa (hash: w8j5kLnBBDJA6YAxwk7yr2iHlxdseJ2t5FGwhKWuj0I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:5e:11:36:cd:78:dd:e8:9e:c9:19:86:83:89:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Validity
Not Before: Sep 7 02:00:34 2025 GMT
Not After : Sep 8 02:00:34 2025 GMT
Subject: CN=a5ade9fd0823add9a785fe903f7a5d1ed0336b84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:da:24:f4:70:fc:7d:63:c0:82:0b:7e:a5:a5:
57:cc:c5:b9:e1:62:cd:6e:98:1a:3c:28:9d:67:26:
37:5c:8a:64:23:57:97:0f:cb:79:ee:7b:61:8b:47:
ef:34:12:43:fc:0c:03:72:16:05:9b:0b:a9:54:b3:
f7:5a:c3:10:78:ee:8d:ab:24:9f:45:d6:b6:07:c7:
68:94:45:3c:75:67:25:0f:1b:a9:66:f1:fe:f4:09:
ab:c5:c9:3c:a0:d1:ae:6f:a9:27:1b:0d:8f:89:07:
30:75:de:fa:eb:a2:26:a6:d2:dc:8f:ed:0a:6b:e9:
e4:ec:49:57:c6:f2:18:0a:4d:d4:72:3b:a7:ee:06:
20:81:6c:6b:1e:68:8d:e7:80:43:d5:d4:d4:1e:2d:
58:4d:bc:f6:d2:d0:a2:8d:9c:79:83:ac:70:f5:f9:
7b:cc:ca:9b:bc:78:75:26:cf:79:03:0f:73:a2:2a:
eb:fc:7c:30:b7:8b:9b:c0:87:03:a3:2e:4b:7d:e4:
26:22:9b:da:5e:f1:e4:79:35:11:6c:24:ac:a0:86:
7d:62:81:3e:7b:a4:5e:c5:d8:0a:06:07:45:1e:ba:
3d:ff:b3:6b:c8:2c:f4:de:5d:68:fc:3a:95:5f:88:
1b:58:90:11:5f:7d:b7:99:13:79:7c:c2:a5:f7:b3:
a9:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:AD:E9:FD:08:23:AD:D9:A7:85:FE:90:3F:7A:5D:1E:D0:33:6B:84
X509v3 Authority Key Identifier:
keyid:9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:4b:f2:36:66:d6:a1:81:94:df:0f:13:56:17:6d:da:82:48:
45:6b:45:19:45:a9:41:14:30:7e:bd:67:03:ba:f0:45:aa:eb:
33:c4:bb:77:c3:53:6d:1e:bd:4c:40:6a:bc:45:4e:7f:ec:97:
ac:a4:0e:a8:d4:02:07:3e:4f:33:95:c2:f3:48:45:87:28:01:
72:46:02:01:b6:12:4b:5f:24:f9:af:ff:e1:fe:58:4f:79:19:
d3:58:11:0c:d1:82:10:bc:47:a4:df:59:09:04:c5:c9:dc:35:
87:a0:79:1f:fc:b2:80:3d:f7:7a:74:06:1e:68:29:97:e1:15:
e0:e0:dc:dc:a7:a0:d6:b7:e0:9f:cf:f2:28:a0:39:2f:6d:c2:
a8:b1:c1:bf:f0:8a:81:11:72:80:37:a5:34:48:2c:c3:51:c4:
f0:59:00:a1:6c:f8:64:21:d0:4e:bf:b6:0a:1d:24:b2:e1:1d:
9b:68:ee:7b:85:b3:a9:4b:81:12:5a:f2:5b:00:ab:96:3f:99:
4f:ae:07:58:ab:41:8c:e7:9e:0a:5f:f7:92:85:da:c7:ec:fe:
23:72:8d:6a:01:e4:57:43:4a:88:75:21:96:99:9a:83:a7:87:
a4:7c:33:c3:d2:b1:31:f2:51:67:69:45:54:6b:03:e8:4c:02:
8f:bb:a3:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:42:31 2025 by rpki-client