Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft
File: nHPZRT--37gMRUO7Up_DMMH4wc4.mft (raw, json)
Hash identifier: ndWc/J+dpMpxqtlhij2qACm6IzwSRX9Yw9Xpp6bjugw=
Subject key identifier: 11:B3:24:6B:5C:E6:DB:8D:6A:B9:F6:F2:B7:5A:D1:5B:4B:4B:3A:7B
Authority key identifier: 9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE
Certificate issuer: /CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce
Certificate serial: 019A28C28566A685D928D17C2B329F796E44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft
Manifest number: 0CAE
Signing time: Tue 28 Oct 2025 03:00:27 +0000
Manifest this update: Tue 28 Oct 2025 03:00:27 +0000
Manifest next update: Wed 29 Oct 2025 03:00:27 +0000
Files and hashes: 1: AMTfdcOhvN2UxA7mt3gv3KECuGg.roa (hash: k51GSY+oL6d3vSnVOqR7gGcER+6PBSvBsmHDXYmEq2c=)
2: IZ4_8o0uG1RVAax56_hcAW3WTtc.roa (hash: BLF9NvSAp12xGKGCWF6fmakXoIQEimqM8wkdCYNJdbY=)
3: OfxRKdN2bPZI0fvyGrpUm_OCPQs.roa (hash: lVQukuR8pvFzQlCkS5KRF6YO+By1WT+Hs0uHk5OATm0=)
4: ieAfCh_vwbBTbF3DGBJXQYMx9Pw.roa (hash: N095uXaZbk2Jvru/0oYsrQzeZ/eKCMXo6ETE3DefpcQ=)
5: j4cd6L8tYRDjLejdv94aClKAGXU.roa (hash: WlNinENED4PfFKrXHfbYinzDLlIPfYjUPCjvbvhk+i8=)
6: nHPZRT--37gMRUO7Up_DMMH4wc4.crl (hash: gvur8jy+9K7pc8FFNFBPruHXpWsFR567XVMva44TSs8=)
7: xe-87aH9X1grSznD-2-c4OZyYHo.roa (hash: S80ekAfHbqsZOpsBTbZwj0DAL1iEaOufRZ1+nQUXDqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 03:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:c2:85:66:a6:85:d9:28:d1:7c:2b:32:9f:79:6e:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce
Validity
Not Before: Oct 28 03:00:27 2025 GMT
Not After : Oct 29 03:00:27 2025 GMT
Subject: CN=11b3246b5ce6db8d6ab9f6f2b75ad15b4b4b3a7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3b:c8:4c:aa:77:cc:b0:0a:d6:35:d7:be:4e:
cd:22:2d:32:d8:c0:fe:e1:e9:62:57:7e:d4:fa:9a:
ee:61:da:e3:5d:da:46:df:48:83:d5:8a:50:65:7e:
fa:37:2b:f8:3e:16:96:d4:75:13:35:d6:fb:b2:5c:
75:fe:ed:79:7e:57:86:f7:3b:1d:b8:3b:97:37:a1:
c4:1c:93:76:6e:ec:3d:3b:de:9e:d1:4e:24:a2:b6:
5d:7f:99:de:ee:c4:e8:e7:60:cd:03:07:6d:3e:c4:
10:d0:4e:9c:2f:ba:08:15:c2:fe:e5:19:37:a4:12:
be:2c:08:c4:6c:e1:4c:24:ea:3d:09:6e:c6:25:b0:
4e:30:f8:de:30:a0:e5:90:5d:63:9e:01:ec:f0:c4:
c4:01:80:3e:46:dd:52:45:58:bd:de:84:6a:31:e2:
87:68:56:e4:49:d5:b1:a5:18:35:d7:49:70:4e:3a:
50:55:14:3d:12:34:40:c2:90:b1:3d:b5:98:7c:69:
2d:23:04:e0:d6:8b:74:6b:ec:68:69:72:e0:b8:52:
21:93:57:f5:76:03:09:d9:e1:f4:20:e9:ad:a5:88:
df:c9:be:af:f3:59:18:9e:7a:34:ed:07:da:58:d2:
1f:d2:e3:f2:b3:3b:c7:db:7b:73:91:f4:04:14:12:
90:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B3:24:6B:5C:E6:DB:8D:6A:B9:F6:F2:B7:5A:D1:5B:4B:4B:3A:7B
X509v3 Authority Key Identifier:
keyid:9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:1f:37:94:0d:3b:bd:03:22:14:4b:ad:83:ef:82:48:9d:01:
83:58:ee:a4:21:48:8d:9d:63:21:c8:45:e8:7f:a6:7a:60:b8:
3e:9e:ec:07:ab:d3:11:58:89:a8:5c:9e:1c:f6:81:9c:ad:9b:
a9:a6:20:a9:76:72:91:fa:a4:97:04:17:b9:37:41:dd:5a:0c:
6e:91:5b:ed:40:2e:1e:1d:a6:46:1c:68:9d:05:70:52:b2:19:
e5:a5:f6:54:59:42:89:57:bf:11:7b:3d:5a:72:46:8c:6d:66:
78:2d:60:73:fb:68:a4:aa:cf:f7:53:0d:ea:5a:8c:3c:48:8c:
01:7d:35:5a:e1:6a:c0:d8:4a:aa:0c:a6:1c:04:f8:cf:fa:00:
72:9d:ef:bb:84:d0:fa:da:2e:1f:0a:30:87:e8:bc:3c:f5:a4:
d9:fd:d3:bd:37:dc:54:ae:d9:93:b3:81:90:51:26:eb:b5:58:
31:b9:19:57:20:dc:f0:f3:c2:93:17:5f:2e:7c:ed:9e:8b:f6:
9f:08:3a:c5:a9:76:3b:67:5e:4b:b5:0f:99:ee:05:9b:89:17:
ff:4b:32:0d:6b:f0:60:bf:e6:19:b7:28:4a:ab:96:57:20:92:
35:13:55:33:9d:4b:78:8c:1b:b7:fc:4a:5e:8e:3c:4e:53:ff:
80:b9:21:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 11:11:00 2025 by rpki-client