Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
File: nGfqNKARpHc4cVg-w5VOeR2MAo0.mft (raw, json)
Hash identifier: RFd+BMnR04T+ok/tA48G0nxJ8rPNJ1sx043vNmpkWQI=
Subject key identifier: 39:69:23:3D:85:16:65:5E:46:4C:B9:F6:78:E4:47:86:0A:32:10:B4
Authority key identifier: 9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
Certificate issuer: /CN=9c67ea34a011a4773871583ec3954e791d8c028d
Certificate serial: 0199FCC6280A032A753205C29945644CFD9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
Manifest number: 0DC7
Signing time: Sun 19 Oct 2025 14:01:08 +0000
Manifest this update: Sun 19 Oct 2025 14:01:08 +0000
Manifest next update: Mon 20 Oct 2025 14:01:08 +0000
Files and hashes: 1: NCPzn1GpZq4vT4gRDeBcmpEUhRQ.roa (hash: Vq8Q1+OKJnlcLx/yX0O6NcYNdeQRXSpw2T1WMWL6+Zw=)
2: nGfqNKARpHc4cVg-w5VOeR2MAo0.crl (hash: M+++Ie5MS0Py/nnShxROIR5o0MQL1H8eUZcd6/X/Ml8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:28:0a:03:2a:75:32:05:c2:99:45:64:4c:fd:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c67ea34a011a4773871583ec3954e791d8c028d
Validity
Not Before: Oct 19 14:01:08 2025 GMT
Not After : Oct 20 14:01:08 2025 GMT
Subject: CN=3969233d8516655e464cb9f678e447860a3210b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:34:ae:0b:5d:40:27:02:1a:3b:63:61:70:6b:
d6:60:48:f3:66:69:db:27:ab:e4:40:0f:e3:e9:3c:
ed:47:4c:29:79:ac:77:eb:34:77:46:8a:eb:7a:1a:
3d:79:7d:88:b7:a0:1c:3c:f4:cd:99:37:e9:33:4a:
87:81:5d:ff:75:0d:5c:ca:0c:7c:e1:7f:b0:c0:0a:
c0:a6:b1:c1:c6:39:2a:ef:f5:c1:08:ca:85:f7:df:
e0:d3:a5:c5:ee:28:bd:b1:e5:46:84:55:11:3d:af:
4b:bf:1d:d6:a2:4a:00:33:98:93:54:a6:82:63:61:
55:fd:7a:2f:0d:52:28:5f:27:33:de:b9:a2:31:6d:
93:3c:4b:87:88:6e:4a:c4:8b:84:0e:12:57:3e:12:
11:aa:b9:5c:a6:06:35:21:bf:10:56:1d:fc:e8:0b:
96:a0:dc:66:1e:06:f1:a4:f9:95:89:e3:98:89:8d:
b4:63:38:38:65:e9:d2:69:f2:59:25:32:8b:23:a8:
9c:04:15:c8:9b:b0:a1:41:34:04:92:9e:3c:0a:a1:
20:a9:a3:52:2e:7a:dd:8d:18:a6:38:94:9c:93:e7:
4d:cb:12:a7:b4:d9:de:57:7d:43:a5:37:a7:f9:c8:
70:86:22:1b:00:f2:fe:ff:e3:dd:83:f4:5e:f3:e7:
06:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:69:23:3D:85:16:65:5E:46:4C:B9:F6:78:E4:47:86:0A:32:10:B4
X509v3 Authority Key Identifier:
keyid:9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:16:45:69:3e:ce:d4:05:cc:dd:22:7e:2d:97:f6:fe:20:59:
09:f8:61:27:77:98:5b:f9:be:62:2b:ca:4f:00:5c:92:a7:1d:
27:e6:ea:1b:61:a2:67:83:8b:b8:95:92:73:6d:6b:9f:ac:26:
5e:62:c7:f9:cc:e3:9c:5b:c5:f6:b3:3c:0b:5e:ce:cc:46:11:
3b:30:00:55:ae:0a:92:04:a6:6e:9c:10:c1:5f:22:83:2e:e3:
c1:05:19:63:c3:bc:69:19:0c:54:a0:c2:2a:b4:c4:22:c7:f4:
bc:0c:38:79:18:db:f7:ab:40:e8:22:e7:9d:fb:59:10:6f:7f:
b4:d1:fc:eb:69:6e:b4:76:1c:c0:52:0f:89:97:7a:d5:8c:70:
2b:40:4e:97:4a:74:4b:eb:12:f4:c4:52:af:1a:c8:3f:a1:d7:
8c:f3:6d:23:29:60:87:8b:bf:03:7e:56:bf:24:35:c2:35:c7:
c3:44:1e:4c:d9:eb:00:4a:ed:f1:c5:8b:76:9f:f7:e2:58:49:
fc:e1:d0:a8:e1:4c:2c:54:8f:c0:26:25:67:46:df:72:1e:d4:
12:54:fc:47:84:04:a4:15:cf:11:09:69:09:1e:99:de:0f:b9:
fa:e0:bb:c9:2e:61:06:89:bd:15:6e:c3:c0:78:89:1c:bc:51:
95:f6:9c:2b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xigKAyp1MgXCmUVkTP2dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljNjdlYTM0YTAxMWE0NzczODcxNTgzZWMzOTU0ZTc5MWQ4
YzAyOGQwHhcNMjUxMDE5MTQwMTA4WhcNMjUxMDIwMTQwMTA4WjAzMTEwLwYDVQQD
EygzOTY5MjMzZDg1MTY2NTVlNDY0Y2I5ZjY3OGU0NDc4NjBhMzIxMGI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoDSuC11AJwIaO2NhcGvWYEjzZmnb
J6vkQA/j6TztR0wpeax36zR3Rorreho9eX2It6AcPPTNmTfpM0qHgV3/dQ1cygx8
4X+wwArAprHBxjkq7/XBCMqF99/g06XF7ii9seVGhFURPa9Lvx3WokoAM5iTVKaC
Y2FV/XovDVIoXycz3rmiMW2TPEuHiG5KxIuEDhJXPhIRqrlcpgY1Ib8QVh386AuW
oNxmHgbxpPmVieOYiY20Yzg4ZenSafJZJTKLI6icBBXIm7ChQTQEkp48CqEgqaNS
LnrdjRimOJSck+dNyxKntNneV31DpTen+chwhiIbAPL+/+Pdg/Re8+cGGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDlpIz2FFmVeRky59njkR4YKMhC0MB8GA1UdIwQY
MBaAFJxn6jSgEaR3OHFYPsOVTnkdjAKNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkdmcU5LQVJwSGM0Y1ZnLXc1Vk9lUjJNQW8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS84NjY5ZDMtNzZjZC00Y2IwLTgyNzgt
ODJjNjdjNjllOTIzLzEvbkdmcU5LQVJwSGM0Y1ZnLXc1Vk9lUjJNQW8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS84NjY5ZDMtNzZjZC00Y2IwLTgyNzgtODJjNjdjNjllOTIz
LzEvbkdmcU5LQVJwSGM0Y1ZnLXc1Vk9lUjJNQW8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFBZFaT7O
1AXM3SJ+LZf2/iBZCfhhJ3eYW/m+YivKTwBckqcdJ+bqG2GiZ4OLuJWSc21rn6wm
XmLH+czjnFvF9rM8C17OzEYROzAAVa4KkgSmbpwQwV8igy7jwQUZY8O8aRkMVKDC
KrTEIsf0vAw4eRjb96tA6CLnnftZEG9/tNH862lutHYcwFIPiZd61YxwK0BOl0p0
S+sS9MRSrxrIP6HXjPNtIylgh4u/A35WvyQ1wjXHw0QeTNnrAErt8cWLdp/34lhJ
/OHQqOFMLFSPwCYlZ0bfch7UElT8R4QEpBXPEQlpCR6Z3g+5+uC7yS5hBom9FW7D
wHiJHLxRlfacKw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:59:33 2025 by rpki-client