Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
File: nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft (raw, json)
Hash identifier: /JVrUZB7lZHWt4+O2dtIyQw0SYOXHP//dScpOu/OB2w=
Subject key identifier: 22:84:66:C2:A9:43:D1:74:A4:82:43:6B:C6:E5:7A:0B:D6:20:A3:05
Authority key identifier: 9D:8A:DA:35:29:82:A3:19:B5:4D:5E:48:3D:34:42:63:46:73:3E:A4
Certificate issuer: /CN=9d8ada352982a319b54d5e483d34426346733ea4
Certificate serial: 019A714A2CA8858DC8940805B6BDB49E4ED0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
Manifest number: 160F
Signing time: Tue 11 Nov 2025 05:01:17 +0000
Manifest this update: Tue 11 Nov 2025 05:01:17 +0000
Manifest next update: Wed 12 Nov 2025 05:01:17 +0000
Files and hashes: 1: KpbjIIUZw0-XxCl1KqQDZ_EUKkY.roa (hash: KJWoFU4L0w8L8ZUG5csCrTHWK3udD7xALiAnkocVeD0=)
2: nYraNSmCoxm1TV5IPTRCY0ZzPqQ.crl (hash: 2fv9mjyjnFs2rYnNHuV9+KY/MdfGMafBTR4mgjSOQEg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:4a:2c:a8:85:8d:c8:94:08:05:b6:bd:b4:9e:4e:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d8ada352982a319b54d5e483d34426346733ea4
Validity
Not Before: Nov 11 05:01:17 2025 GMT
Not After : Nov 12 05:01:17 2025 GMT
Subject: CN=228466c2a943d174a482436bc6e57a0bd620a305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:51:c0:54:68:0d:c8:46:f8:23:09:76:d4:0b:
f0:9e:64:23:d3:a0:25:cc:1e:f2:cb:49:03:c1:31:
6e:e0:08:83:29:64:d0:80:2e:d2:30:9c:fa:5f:f4:
ff:7e:6c:e4:bc:f0:69:7c:2c:82:59:94:53:d6:53:
91:c6:b2:2c:c5:98:98:2b:34:1c:e6:2f:5d:45:cc:
29:8a:a0:ac:8e:92:e7:8f:26:d6:da:3b:7e:19:3a:
98:55:cb:ee:27:14:67:a7:d7:fd:4d:53:32:cf:8f:
b7:ef:41:c4:fb:f2:1e:c2:fa:2c:60:b7:7e:0b:64:
a3:9c:97:44:fb:7d:ca:24:21:1b:45:3e:b3:16:3c:
e5:a0:9b:a0:bd:28:5a:14:c7:6c:cf:ab:34:2b:61:
1f:a8:63:73:93:45:62:a2:34:76:53:2c:56:14:a5:
e0:b2:4e:c5:55:ff:c1:66:79:fa:b8:55:f5:8e:fb:
e6:5e:b4:c7:af:b7:ee:6d:12:4e:21:8c:98:09:30:
e5:52:ef:7f:7e:ac:5b:36:d9:6e:b8:75:6b:1e:f7:
17:9b:03:64:3b:8c:de:e8:b4:bc:92:a3:5e:0a:69:
c6:27:ef:76:04:67:c3:ba:6d:45:29:a4:d0:e1:9e:
6b:7a:c9:98:bf:1d:bc:26:5a:5f:32:c1:64:93:29:
d2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:84:66:C2:A9:43:D1:74:A4:82:43:6B:C6:E5:7A:0B:D6:20:A3:05
X509v3 Authority Key Identifier:
keyid:9D:8A:DA:35:29:82:A3:19:B5:4D:5E:48:3D:34:42:63:46:73:3E:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:b9:fa:f1:4f:89:1a:0b:7d:b5:f9:8e:e9:73:dc:82:45:74:
cc:f8:34:5f:72:af:cb:03:0b:2b:38:7e:60:47:63:02:b6:3a:
dc:45:fa:fc:35:b0:f2:5e:2b:3b:89:9a:48:2b:b3:56:f2:1a:
45:70:50:f9:69:03:cf:8d:1e:60:c7:06:51:a2:0b:87:e0:f7:
52:87:1e:48:4a:28:b6:56:4a:d3:fa:76:86:a8:7d:3a:78:a8:
96:cb:48:32:b6:54:ac:b3:38:13:7f:ab:38:97:2f:6c:ba:de:
64:f2:4f:ae:b3:24:fa:e0:50:9a:62:62:a9:f4:49:0e:5f:f8:
22:e6:09:3c:7a:12:91:1f:73:04:74:25:b6:02:18:cb:96:22:
0a:da:d7:50:62:db:c0:f0:9d:39:b0:23:27:b5:25:47:ae:50:
79:c2:e4:0a:cc:fd:5a:74:24:aa:cd:61:c0:13:94:b2:74:fb:
cb:f2:b6:5b:1c:0b:13:0c:d7:cb:7e:64:20:79:0d:b3:82:17:
47:ce:61:6b:cc:ff:f4:8f:5a:44:90:4d:64:d4:f0:b4:19:14:
61:57:10:f6:d6:0f:30:8f:de:d6:b4:58:be:ec:0b:d6:9c:5a:
b4:73:0e:1e:36:90:2f:68:78:b7:67:b1:41:7d:9a:13:c0:7b:
8c:b6:f7:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:14:04 2025 by rpki-client