Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft
File: nHPZRT--37gMRUO7Up_DMMH4wc4.mft (raw, json)
Hash identifier: mb83/5FSP/8nTnQGfPO87HW+MlCMDva6qunRt7oQpbo=
Subject key identifier: 78:07:3A:47:6D:11:A7:0B:69:12:16:EF:A6:23:A3:9E:BB:5A:38:36
Authority key identifier: 9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE
Certificate issuer: /CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce
Certificate serial: 019933804CE7FBF796D26370B0280CE70DE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft
Manifest number: 0C2F
Signing time: Wed 10 Sep 2025 12:01:10 +0000
Manifest this update: Wed 10 Sep 2025 12:01:10 +0000
Manifest next update: Thu 11 Sep 2025 12:01:10 +0000
Files and hashes: 1: AMTfdcOhvN2UxA7mt3gv3KECuGg.roa (hash: k51GSY+oL6d3vSnVOqR7gGcER+6PBSvBsmHDXYmEq2c=)
2: IZ4_8o0uG1RVAax56_hcAW3WTtc.roa (hash: BLF9NvSAp12xGKGCWF6fmakXoIQEimqM8wkdCYNJdbY=)
3: OfxRKdN2bPZI0fvyGrpUm_OCPQs.roa (hash: lVQukuR8pvFzQlCkS5KRF6YO+By1WT+Hs0uHk5OATm0=)
4: ieAfCh_vwbBTbF3DGBJXQYMx9Pw.roa (hash: N095uXaZbk2Jvru/0oYsrQzeZ/eKCMXo6ETE3DefpcQ=)
5: j4cd6L8tYRDjLejdv94aClKAGXU.roa (hash: WlNinENED4PfFKrXHfbYinzDLlIPfYjUPCjvbvhk+i8=)
6: nHPZRT--37gMRUO7Up_DMMH4wc4.crl (hash: iy/EFK0XAt8OdN+hthFFi/Nod74qQd57yctkE2g18Z8=)
7: xe-87aH9X1grSznD-2-c4OZyYHo.roa (hash: S80ekAfHbqsZOpsBTbZwj0DAL1iEaOufRZ1+nQUXDqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:80:4c:e7:fb:f7:96:d2:63:70:b0:28:0c:e7:0d:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce
Validity
Not Before: Sep 10 12:01:10 2025 GMT
Not After : Sep 11 12:01:10 2025 GMT
Subject: CN=78073a476d11a70b691216efa623a39ebb5a3836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:91:da:11:70:63:a4:87:58:65:3a:b2:d0:99:
2c:23:e3:97:de:d6:9c:d0:81:d9:70:6c:89:56:5c:
3e:fc:33:c8:08:6b:87:38:e7:bd:f2:80:e3:f6:2b:
ec:26:11:8e:9b:5f:4c:5d:f5:de:4c:a0:70:2c:b2:
ce:4c:32:d7:df:b6:5f:c7:4d:68:71:14:d6:09:59:
78:2d:50:71:a4:d1:bf:17:e8:2e:72:11:93:c2:00:
a5:f5:b4:b8:e6:3f:4e:bc:f4:e2:e9:64:78:55:a2:
aa:2e:3f:fd:ec:ef:96:dc:d2:1b:be:43:12:0b:8d:
ab:93:ed:87:6b:d0:75:5c:b7:1e:45:a4:a1:00:02:
08:28:a7:ad:08:8b:30:a2:9c:9d:b4:4c:7a:13:5b:
a9:9e:8a:28:16:38:4b:aa:a0:6c:47:43:bc:bd:36:
5e:ae:ea:b7:5c:66:56:1d:e6:89:65:6d:7b:77:a1:
86:29:f9:bd:ef:58:8d:09:66:d7:fd:6a:4a:62:88:
d2:f9:92:14:7e:29:f6:c4:3a:c2:91:8b:45:c5:cd:
7b:e3:be:ce:68:30:4f:90:59:4f:85:cc:8d:06:7d:
2d:8d:a2:9b:63:c0:9d:5b:fe:70:7b:0b:fa:b7:fd:
82:bd:a6:81:77:0f:33:76:2d:85:86:3a:cc:e9:c5:
a7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:07:3A:47:6D:11:A7:0B:69:12:16:EF:A6:23:A3:9E:BB:5A:38:36
X509v3 Authority Key Identifier:
keyid:9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:1c:ad:ef:d4:68:ca:6d:72:42:3a:62:0d:20:bf:29:8f:40:
97:6d:63:fa:9c:00:db:c7:0a:a2:0e:7c:03:04:d9:67:35:c3:
1f:3d:22:6c:85:03:34:36:fa:66:97:df:1b:e0:50:7d:e8:ef:
2c:7a:f3:17:2c:57:ca:67:15:2c:83:65:c4:ab:65:79:52:00:
71:2d:6c:c4:fe:73:f4:b5:3f:22:37:4b:18:cb:cd:94:2a:16:
5e:3b:4b:48:ce:34:d9:f4:de:61:cd:2a:2a:9e:2d:4b:5a:7b:
88:d8:26:14:c1:40:88:de:dc:0a:e3:b9:02:8f:86:55:53:3f:
bb:91:f7:c0:e7:a4:97:2f:66:3f:59:be:3e:2b:4c:01:a5:30:
25:20:b4:fc:96:b4:f6:1e:a1:8f:96:2a:cb:20:ef:2c:53:cc:
9a:b9:47:b8:a4:15:f5:1d:67:33:8c:ca:01:2a:94:32:26:7a:
29:fd:c8:35:84:79:d5:b5:fd:4c:c2:95:61:7e:b0:75:49:2c:
11:a9:01:4d:ac:b7:ef:7d:de:16:ad:44:88:aa:f8:a2:10:d5:
48:26:b0:5f:3a:25:ba:05:6b:0f:bd:58:8b:20:47:33:31:d5:
58:ab:b4:75:bd:a4:4a:eb:64:4d:84:f8:df:e2:dd:7d:b1:66:
c3:7f:61:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 17:18:02 2025 by rpki-client