Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
File: nGfqNKARpHc4cVg-w5VOeR2MAo0.mft (raw, json)
Hash identifier: mDdL7kjT5TZiREQhIu6zGNiBdRmUNbd/JbaoUCjrplw=
Subject key identifier: 01:EA:4E:A0:54:5B:62:A0:38:8C:7F:13:F6:66:B4:52:2D:B7:A9:72
Authority key identifier: 9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
Certificate issuer: /CN=9c67ea34a011a4773871583ec3954e791d8c028d
Certificate serial: 01989592EA316C7B853DD6CCA392F776F1E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
Manifest number: 0D0D
Signing time: Sun 10 Aug 2025 20:01:30 +0000
Manifest this update: Sun 10 Aug 2025 20:01:30 +0000
Manifest next update: Mon 11 Aug 2025 20:01:30 +0000
Files and hashes: 1: NCPzn1GpZq4vT4gRDeBcmpEUhRQ.roa (hash: Vq8Q1+OKJnlcLx/yX0O6NcYNdeQRXSpw2T1WMWL6+Zw=)
2: nGfqNKARpHc4cVg-w5VOeR2MAo0.crl (hash: ylPbl+bJDs7ciBoOP3PJcIMaOWLsd1Ul6W6TiEvem3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 20:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:95:92:ea:31:6c:7b:85:3d:d6:cc:a3:92:f7:76:f1:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c67ea34a011a4773871583ec3954e791d8c028d
Validity
Not Before: Aug 10 20:01:30 2025 GMT
Not After : Aug 11 20:01:30 2025 GMT
Subject: CN=01ea4ea0545b62a0388c7f13f666b4522db7a972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:dc:7c:b8:02:a9:15:f4:9d:4a:95:fb:9f:d7:
d0:5b:fc:8a:1e:71:fa:36:bf:24:98:0b:f7:4c:be:
1b:35:82:12:af:db:ae:fe:86:ba:c8:ee:0c:8f:f9:
b1:3b:23:24:51:2e:19:87:ac:9a:98:5d:ac:7c:e7:
be:bb:93:69:5a:14:76:bf:3b:c9:53:7e:93:78:88:
d4:bb:8c:f6:9f:8c:a7:e1:52:ee:90:35:8c:cd:39:
3b:4f:c8:ad:3a:17:42:97:17:a3:7f:7e:95:bb:05:
cb:12:0a:79:9a:31:68:8e:6f:2c:23:83:e1:0c:9d:
a2:cb:13:0b:da:1d:47:88:4f:f8:00:23:86:cf:1b:
15:c5:f3:e8:13:e0:ee:d4:fa:eb:ae:e3:0b:ba:0c:
34:b9:a1:ff:e3:b1:08:e6:0d:cb:4a:26:90:8f:04:
a8:09:df:d6:0f:34:0f:55:0f:c5:7f:a6:60:4b:27:
6d:22:29:d9:7c:ef:ac:4e:eb:57:15:db:23:61:1f:
03:d4:80:82:2f:99:d3:12:ed:26:20:71:29:45:c5:
a0:46:ce:08:1f:db:78:a4:a0:ac:83:fe:9a:c8:23:
49:04:f5:48:19:cd:f4:da:31:af:97:33:6e:f8:c7:
1d:a3:d7:ea:6c:72:ab:21:f7:46:90:08:94:94:a3:
fb:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:EA:4E:A0:54:5B:62:A0:38:8C:7F:13:F6:66:B4:52:2D:B7:A9:72
X509v3 Authority Key Identifier:
keyid:9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:15:cd:b8:67:dd:85:25:72:fa:a8:e0:9f:47:34:93:32:cc:
53:4c:ff:79:b1:b8:dc:a5:b8:b9:77:83:36:48:2b:c6:77:5a:
f4:4d:a7:2e:2e:94:1a:65:97:84:c8:e7:43:bb:76:2c:91:38:
4f:38:61:f4:8c:26:f5:42:53:21:66:f7:14:02:3d:6e:2c:9b:
46:b0:2a:ea:38:2b:b1:03:5b:d8:d6:17:09:11:46:23:6c:27:
db:51:70:8c:4d:5b:61:01:c8:11:03:43:96:8c:96:f1:71:95:
14:69:e2:81:5e:0b:ea:ff:d8:4a:6f:f0:3d:41:de:e7:cf:0c:
d5:c4:d8:ce:28:b3:56:40:84:bd:64:32:4e:55:51:43:d4:a2:
eb:df:2e:96:f6:5f:ed:65:f3:8f:a6:84:37:e5:65:28:ca:71:
90:f4:f2:24:07:3d:e3:94:35:f6:18:bd:5d:7e:51:2b:2c:6d:
31:5e:4a:c1:4d:91:ff:28:5a:73:eb:4d:b8:6c:59:33:46:d9:
d7:00:7c:51:33:75:c0:56:f8:b6:21:8d:fa:ce:cc:3b:99:13:
72:90:3b:fd:4b:e4:8d:dd:56:9a:87:c2:d7:be:2b:22:4d:9b:
ce:7e:7a:67:08:5a:af:39:50:0c:18:ff:66:1a:72:7d:1f:3c:
11:ab:e4:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiVkuoxbHuFPdbMo5L3dvHjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljNjdlYTM0YTAxMWE0NzczODcxNTgzZWMzOTU0ZTc5MWQ4
YzAyOGQwHhcNMjUwODEwMjAwMTMwWhcNMjUwODExMjAwMTMwWjAzMTEwLwYDVQQD
EygwMWVhNGVhMDU0NWI2MmEwMzg4YzdmMTNmNjY2YjQ1MjJkYjdhOTcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2tx8uAKpFfSdSpX7n9fQW/yKHnH6
Nr8kmAv3TL4bNYISr9uu/oa6yO4Mj/mxOyMkUS4Zh6yamF2sfOe+u5NpWhR2vzvJ
U36TeIjUu4z2n4yn4VLukDWMzTk7T8itOhdClxejf36VuwXLEgp5mjFojm8sI4Ph
DJ2iyxML2h1HiE/4ACOGzxsVxfPoE+Du1PrrruMLugw0uaH/47EI5g3LSiaQjwSo
Cd/WDzQPVQ/Ff6ZgSydtIinZfO+sTutXFdsjYR8D1ICCL5nTEu0mIHEpRcWgRs4I
H9t4pKCsg/6ayCNJBPVIGc302jGvlzNu+Mcdo9fqbHKrIfdGkAiUlKP7QwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAHqTqBUW2KgOIx/E/ZmtFItt6lyMB8GA1UdIwQY
MBaAFJxn6jSgEaR3OHFYPsOVTnkdjAKNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkdmcU5LQVJwSGM0Y1ZnLXc1Vk9lUjJNQW8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS84NjY5ZDMtNzZjZC00Y2IwLTgyNzgt
ODJjNjdjNjllOTIzLzEvbkdmcU5LQVJwSGM0Y1ZnLXc1Vk9lUjJNQW8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS84NjY5ZDMtNzZjZC00Y2IwLTgyNzgtODJjNjdjNjllOTIz
LzEvbkdmcU5LQVJwSGM0Y1ZnLXc1Vk9lUjJNQW8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdxXNuGfd
hSVy+qjgn0c0kzLMU0z/ebG43KW4uXeDNkgrxnda9E2nLi6UGmWXhMjnQ7t2LJE4
Tzhh9Iwm9UJTIWb3FAI9biybRrAq6jgrsQNb2NYXCRFGI2wn21FwjE1bYQHIEQND
loyW8XGVFGnigV4L6v/YSm/wPUHe588M1cTYziizVkCEvWQyTlVRQ9Si698ulvZf
7WXzj6aEN+VlKMpxkPTyJAc945Q19hi9XX5RKyxtMV5KwU2R/yhac+tNuGxZM0bZ
1wB8UTN1wFb4tiGN+s7MO5kTcpA7/Uvkjd1WmofC174rIk2bzn56ZwharzlQDBj/
ZhpyfR88Eavk3g==
-----END CERTIFICATE-----
Generated at Mon Aug 11 04:10:11 2025 by rpki-client