Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
File: nGfqNKARpHc4cVg-w5VOeR2MAo0.mft (raw, json)
Hash identifier: wm09Xfqi/SItX0tzScUYWgynCFzGp3W7o3pyZ0vAgig=
Subject key identifier: 91:06:CC:E1:5D:98:79:83:77:8E:1F:6E:67:27:56:72:F0:97:15:4B
Authority key identifier: 9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
Certificate issuer: /CN=9c67ea34a011a4773871583ec3954e791d8c028d
Certificate serial: 0198D92B8913CB94DC1506720D68E10AFB28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
Manifest number: 0D30
Signing time: Sat 23 Aug 2025 23:02:45 +0000
Manifest this update: Sat 23 Aug 2025 23:02:45 +0000
Manifest next update: Sun 24 Aug 2025 23:02:45 +0000
Files and hashes: 1: NCPzn1GpZq4vT4gRDeBcmpEUhRQ.roa (hash: Vq8Q1+OKJnlcLx/yX0O6NcYNdeQRXSpw2T1WMWL6+Zw=)
2: nGfqNKARpHc4cVg-w5VOeR2MAo0.crl (hash: H0eUQBl3y8zrzWJJEDZ0pGCf4/U7Os35G2TmiTIspok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 23:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d9:2b:89:13:cb:94:dc:15:06:72:0d:68:e1:0a:fb:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c67ea34a011a4773871583ec3954e791d8c028d
Validity
Not Before: Aug 23 23:02:45 2025 GMT
Not After : Aug 24 23:02:45 2025 GMT
Subject: CN=9106cce15d987983778e1f6e67275672f097154b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:25:7a:9e:89:fe:75:ac:35:2c:3a:63:75:c2:
bc:29:59:9b:a0:bf:98:b5:9b:20:cc:ec:3d:60:f5:
ae:1a:5f:22:d3:b9:0d:0f:9b:c2:fc:72:d5:44:2f:
00:ff:42:c5:5c:54:62:22:5b:24:2c:4c:38:52:9b:
92:0f:dc:9f:19:97:a7:09:6e:31:05:22:3e:e1:09:
07:c9:71:06:73:ec:1a:63:83:7c:4d:07:85:b0:8b:
46:d8:ca:eb:9a:4e:db:87:df:0f:88:de:76:20:8d:
d2:b8:3c:f8:bb:0d:37:cd:34:07:a4:31:4c:48:54:
7a:b6:6e:a2:97:19:e8:dd:f0:7a:b5:ea:68:25:71:
75:62:ab:e4:83:c4:fb:52:c8:a5:a8:1c:43:e5:8b:
5e:e7:80:37:36:97:66:c6:bf:e5:98:d6:35:12:ef:
a4:42:0f:b8:96:d3:b6:20:f9:a0:ec:76:24:49:e0:
85:a4:9c:e8:4e:fd:b3:f5:d4:7f:9f:76:f0:5f:b4:
c9:45:c0:0b:b3:df:ac:a9:1e:8a:e2:a1:c9:ea:73:
47:76:fb:8c:78:08:f9:64:a1:25:d2:18:77:e1:31:
6e:36:54:b9:1f:72:bb:6d:65:f5:7a:e4:7b:17:00:
23:99:88:94:0b:5f:d6:e3:6e:d0:d5:20:76:5f:a6:
38:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:06:CC:E1:5D:98:79:83:77:8E:1F:6E:67:27:56:72:F0:97:15:4B
X509v3 Authority Key Identifier:
keyid:9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:71:b6:18:8a:50:0e:ba:f9:15:e7:a0:71:b9:d7:bf:fa:94:
ed:01:df:16:6a:22:28:4a:d1:48:9e:0b:c1:7c:d8:5d:b2:4e:
df:b3:af:8d:25:61:97:39:79:af:da:ed:c0:0f:7c:46:5a:bd:
a6:97:eb:ef:cd:57:24:fa:07:bd:a5:22:3b:e4:29:5d:72:f5:
eb:6b:88:9c:5d:48:60:ca:93:37:52:10:4f:81:e6:91:ed:ca:
12:33:87:0f:1a:bd:03:5c:d0:13:5b:2a:a3:8f:2e:ad:01:c7:
a4:64:65:32:b4:81:1c:df:a5:b4:7f:2e:28:17:f2:27:01:31:
7d:69:8c:44:16:a2:b7:49:27:2a:98:b5:59:97:75:68:b8:2a:
1b:fa:da:26:00:49:61:2a:b1:42:de:f8:e2:ef:c1:36:f1:53:
2f:f0:6d:f6:a2:95:8e:01:13:d6:86:f3:d4:cb:16:8a:5e:a7:
27:3d:75:7c:26:e6:05:04:f5:79:b8:52:b5:ff:83:d9:6d:26:
4c:f4:53:ac:26:e8:79:37:3f:d6:c1:47:34:a6:b3:76:1d:c6:
41:10:b7:55:d7:a6:78:ec:4c:69:a9:30:59:3e:0d:c7:c1:41:
e9:0c:f1:6d:48:f2:50:0a:a8:2e:01:10:72:65:1d:2e:9a:8e:
b9:98:ec:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 06:39:27 2025 by rpki-client