Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
File: Nia55ERl8L1xPAoeBQED05EdzWc.mft (raw, json)
Hash identifier: 286/HB8MOC9sbtk0jYGPLCS5y/n/O+9YixU05UrrlIs=
Subject key identifier: F8:D9:B3:4E:7A:C2:8D:2C:EC:F9:0B:D5:8E:78:62:45:F5:5B:4E:C4
Authority key identifier: 36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
Certificate issuer: /CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Certificate serial: 019A24780606626E916673CFC89B97FC27A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
Manifest number: 0CDC
Signing time: Mon 27 Oct 2025 07:00:36 +0000
Manifest this update: Mon 27 Oct 2025 07:00:36 +0000
Manifest next update: Tue 28 Oct 2025 07:00:36 +0000
Files and hashes: 1: Nia55ERl8L1xPAoeBQED05EdzWc.crl (hash: 2yh7vuL7rrSEmdwh1CTyBzt34sliIOCozjNNfrRf87Y=)
2: ijM-M3pW5i9OPaVJ9z7pdR0nkfo.roa (hash: BaCHQlpNW/709AUvEnmAV++DQu/RFZCpGAAySqc5kGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 07:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:78:06:06:62:6e:91:66:73:cf:c8:9b:97:fc:27:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Validity
Not Before: Oct 27 07:00:36 2025 GMT
Not After : Oct 28 07:00:36 2025 GMT
Subject: CN=f8d9b34e7ac28d2cecf90bd58e786245f55b4ec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:fd:3d:65:7d:8d:57:e6:fc:00:09:14:80:5f:
37:d2:3b:d9:cc:7f:19:d3:ea:58:62:b1:d0:78:3f:
db:be:01:b8:06:5b:04:34:f8:0b:a4:3a:41:f9:50:
ad:3a:e4:e5:70:cf:6b:16:f7:a7:52:9b:8b:b3:1c:
4f:f2:63:c0:f8:29:1a:48:56:6e:53:91:f6:4d:cf:
0b:55:ce:0b:3d:75:a8:4a:25:ee:0a:e5:4a:eb:76:
a5:53:ad:4b:57:17:31:62:77:4a:1e:63:e0:4c:52:
2d:8c:a5:96:41:38:2c:83:43:4f:17:eb:c1:c3:bc:
48:ea:a6:58:77:93:3f:d2:57:54:e9:ad:28:8b:ec:
7d:28:1e:8b:5e:00:37:5b:15:59:8c:f6:1d:56:36:
a9:de:bc:4e:88:67:60:1e:2a:8b:48:1f:a1:19:ff:
0e:14:d7:ea:81:06:7f:dc:af:bd:8a:43:12:72:87:
f4:63:4c:0b:60:b6:27:84:13:7d:c3:0a:cc:11:58:
33:e5:70:dc:8c:89:79:86:27:34:9a:e4:52:a0:af:
f6:32:73:bd:ae:cf:20:16:b4:a7:c2:32:a2:97:ac:
24:17:a6:45:37:b2:8e:5e:f7:40:10:86:15:3a:b7:
b7:c5:2e:2b:09:2f:65:d4:b4:4c:bf:c6:26:1a:4b:
85:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:D9:B3:4E:7A:C2:8D:2C:EC:F9:0B:D5:8E:78:62:45:F5:5B:4E:C4
X509v3 Authority Key Identifier:
keyid:36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:b0:7a:cd:1d:ff:34:66:f9:91:b9:e7:ae:e2:fe:74:b9:2e:
dc:1a:e1:62:15:70:bd:65:2d:f4:83:f5:f8:2e:93:79:52:25:
79:e8:1b:79:ca:9a:3a:26:c6:85:05:70:2d:52:49:59:e6:c2:
a2:00:a5:13:f6:59:65:fa:16:42:3f:d9:91:09:6d:ee:be:15:
6e:6e:29:6e:01:0b:26:60:9e:fd:19:89:8d:c8:59:d0:7a:d1:
e8:42:ca:3f:d0:ca:81:f6:4d:74:aa:9a:0e:71:93:43:a1:ed:
3b:fa:28:6f:bb:4d:75:bf:e9:d9:35:95:aa:05:e1:af:28:da:
f3:30:a7:07:29:5e:6a:28:98:75:e9:07:c5:8a:09:81:53:46:
2f:db:e4:43:0a:5e:2f:47:38:5c:85:7a:d1:00:aa:6d:f4:10:
54:cf:da:c4:39:b7:f6:74:9a:56:f4:9c:cd:1f:3f:40:50:59:
05:c7:f6:9a:12:da:6e:5e:d2:5d:36:74:8a:19:7e:0b:26:95:
0b:8f:5b:f0:b5:7a:bb:36:4c:34:37:17:93:be:32:d8:13:15:
29:a6:6b:11:ac:be:bc:2b:4f:b6:b0:49:0b:2a:08:07:a1:d6:
5d:c3:b1:54:9f:e9:c5:9f:78:28:a2:f0:f9:55:ed:0d:44:5a:
55:c3:99:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 12:08:18 2025 by rpki-client