Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
File: nTHCM8vSZtsCYgud65DQjkFpLmc.mft (raw, json)
Hash identifier: DUVYhjSC8ySy5842E6qbmAd9sgfk6gjd6Cgg54t1Jfw=
Subject key identifier: AD:3D:2B:18:E5:34:CA:28:86:8C:A2:AF:70:D5:04:4D:88:F8:C1:32
Authority key identifier: 9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
Certificate issuer: /CN=9d31c233cbd266db02620b9deb90d08e41692e67
Certificate serial: 0199180A9FD4145BB096162B7441DFE44E4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
Manifest number: 0D4C
Signing time: Fri 05 Sep 2025 04:02:53 +0000
Manifest this update: Fri 05 Sep 2025 04:02:53 +0000
Manifest next update: Sat 06 Sep 2025 04:02:53 +0000
Files and hashes: 1: _rMAcV1Zh6HxKo_vwEpVhjFVwy8.roa (hash: r1imevw1h8qWVS0OoTwBJnDWSm49xN9+9T+LLaWUqWk=)
2: nTHCM8vSZtsCYgud65DQjkFpLmc.crl (hash: 08nqr3LSvn+dhlSrcw5IAeac7MBUcGeoc6dOP+PDuRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:0a:9f:d4:14:5b:b0:96:16:2b:74:41:df:e4:4e:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d31c233cbd266db02620b9deb90d08e41692e67
Validity
Not Before: Sep 5 04:02:53 2025 GMT
Not After : Sep 6 04:02:53 2025 GMT
Subject: CN=ad3d2b18e534ca28868ca2af70d5044d88f8c132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:9d:5a:bf:05:92:e5:d8:4c:32:8d:a3:fc:75:
51:20:0f:31:31:a4:d9:a0:ef:e9:d3:ca:f2:1c:84:
bb:3c:a3:17:31:56:78:a1:3f:90:9c:84:8c:b9:df:
5e:20:e3:1b:b2:4c:06:ef:ae:c4:b4:f3:c3:bd:42:
3c:99:05:b7:bc:7c:05:c0:21:46:16:06:82:72:1e:
85:4c:c0:bd:99:12:48:67:82:49:1a:11:74:e7:3a:
9e:f7:99:55:c5:b6:4c:b5:63:fb:8e:ee:4b:e0:f2:
3d:53:11:1f:89:c9:fc:f2:6e:1e:7a:35:6d:61:3a:
35:60:16:e7:01:f7:46:64:d1:17:78:87:f4:21:17:
5f:44:6f:d7:0d:c6:52:64:3c:62:8c:70:e5:ff:5c:
cd:5c:23:51:67:95:0e:38:2e:56:6d:32:64:d2:b6:
05:e2:e7:f4:2b:19:98:91:6c:fb:1c:d8:f8:50:82:
7b:9f:d1:a0:14:0c:39:70:4f:ce:6b:d3:5b:d8:36:
27:d9:bd:f3:f5:31:e5:53:ed:3d:da:d3:c2:7a:a7:
93:5f:bf:c4:c1:60:09:4a:c7:f9:10:d7:68:70:e0:
56:9c:5d:7a:af:4f:ac:7a:6b:e7:1a:56:af:d1:79:
bd:68:43:4d:c0:2e:db:4a:22:80:94:4e:6f:1a:ff:
f7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:3D:2B:18:E5:34:CA:28:86:8C:A2:AF:70:D5:04:4D:88:F8:C1:32
X509v3 Authority Key Identifier:
keyid:9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:8c:f5:44:17:ba:46:93:f7:8c:ca:18:7e:0d:86:ac:5e:a2:
cf:e8:87:8d:22:31:92:a5:f3:d4:4a:36:3b:be:d0:e9:be:aa:
15:fb:9e:6b:60:e0:6f:29:2f:44:92:bf:9e:a9:4a:a3:e4:20:
db:9d:ca:97:98:74:76:fe:af:1d:3f:33:46:f9:c5:76:16:58:
8c:b0:e2:b5:53:6a:76:9b:b7:81:eb:f6:eb:c0:c0:19:1e:a7:
47:14:ef:40:16:79:24:7b:b2:e9:19:26:b6:fa:9c:17:2e:df:
65:c9:2a:89:2d:69:ca:6c:15:1e:10:b7:2c:98:e1:b2:f5:78:
23:b5:96:a5:4d:03:87:20:4c:16:2e:d3:ed:87:64:31:ad:24:
8f:f9:a0:76:59:54:b8:2b:1f:51:a6:23:88:41:f5:ac:5d:63:
e8:fc:cc:b2:28:dc:2b:cd:90:e6:17:f6:46:b9:2c:40:f5:e9:
b5:25:01:60:46:d7:36:86:f6:72:7b:5f:27:b2:ec:37:9b:2d:
2c:54:fb:32:07:1d:0f:72:8f:92:82:79:68:1a:e9:84:bb:ae:
e4:81:b3:10:63:dc:cd:22:73:0f:94:45:85:00:4b:c1:8a:65:
b8:cf:3a:28:4f:4c:77:b9:ec:d5:63:c8:f4:f3:f0:93:f0:48:
dc:f0:2d:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:06:41 2025 by rpki-client