Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
File: nTHCM8vSZtsCYgud65DQjkFpLmc.mft (raw, json)
Hash identifier: vQwYuNEiyiBRsGBfIAlk84HbIHcXp+cMoeqXQypgxl8=
Subject key identifier: CD:A6:D9:49:56:82:BB:00:B5:F4:07:EF:F7:9E:7F:6E:83:59:AB:87
Authority key identifier: 9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
Certificate issuer: /CN=9d31c233cbd266db02620b9deb90d08e41692e67
Certificate serial: 019A228A75BDCAAD48241659470D865C099D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
Manifest number: 0DD6
Signing time: Sun 26 Oct 2025 22:01:30 +0000
Manifest this update: Sun 26 Oct 2025 22:01:30 +0000
Manifest next update: Mon 27 Oct 2025 22:01:30 +0000
Files and hashes: 1: _rMAcV1Zh6HxKo_vwEpVhjFVwy8.roa (hash: r1imevw1h8qWVS0OoTwBJnDWSm49xN9+9T+LLaWUqWk=)
2: nTHCM8vSZtsCYgud65DQjkFpLmc.crl (hash: 2z/2nyIMmbznWdwC2E5gmu6qTPRWwQTwlgkdpfD12dc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:8a:75:bd:ca:ad:48:24:16:59:47:0d:86:5c:09:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d31c233cbd266db02620b9deb90d08e41692e67
Validity
Not Before: Oct 26 22:01:30 2025 GMT
Not After : Oct 27 22:01:30 2025 GMT
Subject: CN=cda6d9495682bb00b5f407eff79e7f6e8359ab87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:fa:64:43:97:e5:4e:10:fe:35:ba:f5:ac:bb:
c3:70:a8:47:18:60:f2:77:05:3c:f3:2b:a9:48:16:
b7:43:c3:01:86:01:b4:c1:29:79:d7:e8:54:b9:c9:
c2:62:3a:50:ba:dc:10:e3:e2:45:46:29:e3:08:57:
d6:cc:b5:cb:fc:82:da:db:7b:08:22:b2:aa:01:41:
95:48:9b:0f:b2:a0:38:86:b6:1c:47:1b:0a:6a:d5:
61:8b:5d:27:76:0e:b8:42:42:cc:31:de:17:42:ee:
77:99:98:36:17:c1:d0:40:41:37:24:85:f1:d8:2c:
9e:6a:6b:83:62:8b:97:bd:46:04:af:7a:fa:c3:c9:
f7:d2:58:63:ed:a2:23:5a:5c:0f:de:13:1c:fa:bb:
88:e4:93:78:04:98:af:28:fe:ad:83:a0:e9:47:c5:
97:4b:9a:12:d0:c5:17:fe:22:ee:4a:cf:0b:db:04:
ee:2f:4b:9d:eb:35:84:df:6f:1c:64:23:1c:1d:ef:
a2:d6:20:22:9b:73:cb:a3:52:56:da:7b:6b:30:86:
e6:46:80:9d:de:94:60:08:8c:1c:db:c6:28:e8:be:
2c:c7:28:63:ab:16:7a:84:36:af:40:84:24:da:c3:
a9:c8:e9:9e:2f:a5:0f:3a:c2:ec:e8:aa:93:17:cd:
b2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:A6:D9:49:56:82:BB:00:B5:F4:07:EF:F7:9E:7F:6E:83:59:AB:87
X509v3 Authority Key Identifier:
keyid:9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:e9:ae:d3:c9:64:7c:35:4e:17:ec:c9:d7:be:d8:7f:e6:bc:
47:a8:87:e8:26:d7:f7:a9:17:25:19:c8:60:cd:12:2d:c7:ce:
73:bf:c4:18:80:60:e7:5e:e3:64:cd:99:48:a4:80:2e:ee:c5:
ed:47:75:70:c7:73:dd:0c:2d:89:99:94:8b:e3:f8:55:29:55:
9f:a1:92:1b:af:ef:a0:f0:51:40:ed:7d:b8:0d:12:6c:3c:e5:
3a:35:6e:b5:d9:80:5d:f8:ee:2b:8d:91:65:d4:28:ab:28:76:
73:ea:ea:0e:8a:ca:8f:81:ce:9d:1b:04:b9:b8:c7:04:a1:d3:
d8:87:f6:41:38:80:ce:fb:62:9e:77:ea:53:98:61:1c:86:86:
63:32:9f:5b:00:94:1e:ed:b0:d2:67:d4:6a:72:c2:5c:02:a9:
61:f6:e2:80:25:2f:d2:ff:e7:6b:0c:43:7d:51:c4:f5:91:26:
41:bd:68:60:9b:75:5e:e9:cb:72:44:02:38:c1:27:8a:af:50:
b9:c8:5f:76:83:b1:de:4f:dd:ce:3c:4a:54:26:51:bb:aa:de:
ac:84:b4:aa:07:4f:d2:05:bd:4b:4f:fc:51:c9:3a:2e:19:46:
f1:be:a9:ae:93:0f:57:74:d5:36:d8:8e:bd:b9:f6:fb:86:65:
97:6b:e0:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 04:41:34 2025 by rpki-client