Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/fb7864-5795-4208-abe0-08542454d16b/1/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.mft
File: nlBfLmeh5gSz-WPOTDZ9GVi9S3g.mft (raw, json)
Hash identifier: uWjDsXNlFPrsMgzLoXNZzzwMXQjyNWCGbIv+MRer+pU=
Subject key identifier: 00:13:7D:A1:B8:83:F2:A6:42:57:A6:44:1F:3F:5A:8F:1A:46:38:9A
Authority key identifier: 9E:50:5F:2E:67:A1:E6:04:B3:F9:63:CE:4C:36:7D:19:58:BD:4B:78
Certificate issuer: /CN=9e505f2e67a1e604b3f963ce4c367d1958bd4b78
Certificate serial: 0198D6CE02583B88C897A9A0A5F9FA3F4779
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/fb7864-5795-4208-abe0-08542454d16b/1/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.mft
Manifest number: 164D
Signing time: Sat 23 Aug 2025 12:01:21 +0000
Manifest this update: Sat 23 Aug 2025 12:01:21 +0000
Manifest next update: Sun 24 Aug 2025 12:01:21 +0000
Files and hashes: 1: 9v5VLNQmHUC6c_AtiguXiv9VBlw.roa (hash: iNy4HwSBG8Jz28fsrZBO8bxra5HKthytWN8pQ51S61o=)
2: nlBfLmeh5gSz-WPOTDZ9GVi9S3g.crl (hash: TA8SLyR5iHeyDbuDIjQMvWe1s/6zYbGqYwKwMzaaT80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/fb7864-5795-4208-abe0-08542454d16b/1/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/fb7864-5795-4208-abe0-08542454d16b/1/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:ce:02:58:3b:88:c8:97:a9:a0:a5:f9:fa:3f:47:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e505f2e67a1e604b3f963ce4c367d1958bd4b78
Validity
Not Before: Aug 23 12:01:21 2025 GMT
Not After : Aug 24 12:01:21 2025 GMT
Subject: CN=00137da1b883f2a64257a6441f3f5a8f1a46389a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:76:64:be:7f:a2:0f:4f:14:cd:6e:3a:c0:8c:
3f:d5:2a:57:ec:fc:0a:c6:49:82:e1:bd:93:8a:61:
4f:39:dd:a5:dd:b0:29:37:75:53:f2:9b:07:a8:2a:
81:34:65:b2:da:e8:08:ac:e8:97:f0:3e:54:fc:81:
f0:db:d9:da:be:b0:44:f5:97:9d:a4:71:61:2f:75:
4f:f7:b5:70:60:c4:35:99:61:f6:c1:1f:c8:ce:da:
20:53:f8:f7:39:5c:16:5c:b2:ff:c1:1b:1d:34:41:
12:15:2c:dd:27:e2:27:01:06:84:65:26:d6:9f:36:
67:4c:c2:af:2d:8e:41:77:5f:3e:f2:86:53:76:d8:
d9:0a:13:cd:fa:bd:14:ee:62:bc:1a:ea:89:05:39:
56:57:ce:94:d3:08:4d:34:d1:fe:d5:59:d5:94:21:
fe:61:81:44:a7:6d:16:b4:4a:a7:d2:99:8f:dc:f9:
0f:02:09:29:ec:3b:ac:09:48:69:8c:8a:0a:54:e5:
6b:dd:cd:3c:4e:3c:4e:3e:31:ac:77:46:c5:3b:32:
ef:e9:b1:fe:3c:ff:97:ff:b1:ad:e8:07:79:9a:ab:
8e:15:fc:b8:71:2a:30:5f:d4:0c:7e:38:6d:a6:34:
a4:26:c3:71:cb:f3:78:28:11:ff:1d:08:83:6c:07:
20:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:13:7D:A1:B8:83:F2:A6:42:57:A6:44:1F:3F:5A:8F:1A:46:38:9A
X509v3 Authority Key Identifier:
keyid:9E:50:5F:2E:67:A1:E6:04:B3:F9:63:CE:4C:36:7D:19:58:BD:4B:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/fb7864-5795-4208-abe0-08542454d16b/1/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/fb7864-5795-4208-abe0-08542454d16b/1/nlBfLmeh5gSz-WPOTDZ9GVi9S3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:af:7e:48:97:e1:a1:af:56:fb:86:99:e4:ff:20:03:72:28:
4a:60:c9:da:39:3f:46:8d:4f:7d:0b:9b:5d:cd:b2:80:5b:6d:
69:b3:4a:08:40:c8:95:fa:cc:12:8e:40:47:d0:30:50:4e:d0:
52:e2:7b:30:d0:ed:84:19:0d:de:cb:49:73:63:2c:a6:d9:92:
a0:ad:33:79:e1:36:8b:5c:03:d3:d2:2e:fc:e8:0b:0b:57:29:
4e:46:d7:dd:db:ef:be:6f:fb:cf:49:8c:28:f5:82:6c:29:21:
7e:e0:3e:98:97:03:96:f8:4c:75:55:b0:db:9e:57:a0:e5:f3:
36:c8:bd:e0:81:54:e4:f2:ab:75:f3:1a:61:d1:51:ea:7c:7b:
75:56:c9:db:fe:9f:17:bd:21:d0:68:58:5b:48:f7:3b:e4:77:
0b:c0:67:d8:48:18:18:59:3a:ee:0e:6e:11:b5:8e:09:ba:56:
a6:f4:d4:ca:4a:c8:99:2c:68:30:7e:1b:92:1c:72:fa:a8:a9:
4c:c3:9a:24:5e:f4:34:15:f7:63:35:5d:c6:be:c8:26:d6:34:
91:0b:2d:99:de:f8:ed:54:34:d4:df:94:fe:90:de:f6:79:df:
35:dd:74:16:1f:cb:08:92:97:55:22:ca:4a:78:e1:3d:c8:5f:
78:c9:a0:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWzgJYO4jIl6mgpfn6P0d5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllNTA1ZjJlNjdhMWU2MDRiM2Y5NjNjZTRjMzY3ZDE5NThi
ZDRiNzgwHhcNMjUwODIzMTIwMTIxWhcNMjUwODI0MTIwMTIxWjAzMTEwLwYDVQQD
EygwMDEzN2RhMWI4ODNmMmE2NDI1N2E2NDQxZjNmNWE4ZjFhNDYzODlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5HZkvn+iD08UzW46wIw/1SpX7PwK
xkmC4b2TimFPOd2l3bApN3VT8psHqCqBNGWy2ugIrOiX8D5U/IHw29navrBE9Zed
pHFhL3VP97VwYMQ1mWH2wR/IztogU/j3OVwWXLL/wRsdNEESFSzdJ+InAQaEZSbW
nzZnTMKvLY5Bd18+8oZTdtjZChPN+r0U7mK8GuqJBTlWV86U0whNNNH+1VnVlCH+
YYFEp20WtEqn0pmP3PkPAgkp7DusCUhpjIoKVOVr3c08TjxOPjGsd0bFOzLv6bH+
PP+X/7Gt6Ad5mquOFfy4cSowX9QMfjhtpjSkJsNxy/N4KBH/HQiDbAcgnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAATfaG4g/KmQlemRB8/Wo8aRjiaMB8GA1UdIwQY
MBaAFJ5QXy5noeYEs/ljzkw2fRlYvUt4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmxCZkxtZWg1Z1N6LVdQT1REWjlHVmk5UzNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9mYjc4NjQtNTc5NS00MjA4LWFiZTAt
MDg1NDI0NTRkMTZiLzEvbmxCZkxtZWg1Z1N6LVdQT1REWjlHVmk5UzNnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC9mYjc4NjQtNTc5NS00MjA4LWFiZTAtMDg1NDI0NTRkMTZi
LzEvbmxCZkxtZWg1Z1N6LVdQT1REWjlHVmk5UzNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGK9+SJfh
oa9W+4aZ5P8gA3IoSmDJ2jk/Ro1PfQubXc2ygFttabNKCEDIlfrMEo5AR9AwUE7Q
UuJ7MNDthBkN3stJc2MsptmSoK0zeeE2i1wD09Iu/OgLC1cpTkbX3dvvvm/7z0mM
KPWCbCkhfuA+mJcDlvhMdVWw255XoOXzNsi94IFU5PKrdfMaYdFR6nx7dVbJ2/6f
F70h0GhYW0j3O+R3C8Bn2EgYGFk67g5uEbWOCbpWpvTUykrImSxoMH4bkhxy+qip
TMOaJF70NBX3YzVdxr7IJtY0kQstmd747VQ01N+U/pDe9nnfNd10Fh/LCJKXVSLK
SnjhPchfeMmguw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:11:53 2025 by rpki-client