Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
File: nGfqNKARpHc4cVg-w5VOeR2MAo0.mft (raw, json)
Hash identifier: 4FFqmFMPkm1hAE6I0447XZZcZlvSgEO/zZFdv/Bpsv8=
Subject key identifier: 6F:9D:3D:4A:57:47:E0:43:1F:BA:7C:4D:70:4E:25:96:82:93:71:AF
Authority key identifier: 9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
Certificate issuer: /CN=9c67ea34a011a4773871583ec3954e791d8c028d
Certificate serial: 0197D285DC9E24E1C8D5DE6E4B13B7CEF25F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
Manifest number: 0CA8
Signing time: Thu 03 Jul 2025 23:01:17 +0000
Manifest this update: Thu 03 Jul 2025 23:01:17 +0000
Manifest next update: Fri 04 Jul 2025 23:01:17 +0000
Files and hashes: 1: NCPzn1GpZq4vT4gRDeBcmpEUhRQ.roa (hash: Vq8Q1+OKJnlcLx/yX0O6NcYNdeQRXSpw2T1WMWL6+Zw=)
2: nGfqNKARpHc4cVg-w5VOeR2MAo0.crl (hash: 741uQ7nLATL/J7zQLIvt5khd4b/UBm1n2Ke0hkQfBhc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 17:39:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d2:85:dc:9e:24:e1:c8:d5:de:6e:4b:13:b7:ce:f2:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c67ea34a011a4773871583ec3954e791d8c028d
Validity
Not Before: Jul 3 23:01:17 2025 GMT
Not After : Jul 4 23:01:17 2025 GMT
Subject: CN=6f9d3d4a5747e0431fba7c4d704e2596829371af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8d:48:bc:b2:91:41:73:60:b3:2b:22:98:72:
c4:56:4e:b5:77:c0:e1:4d:e9:61:ab:29:22:61:f4:
7e:5f:ef:e4:90:fa:52:96:f0:95:58:5a:6c:24:22:
c2:70:7b:a1:51:78:73:f3:ff:29:3a:7e:1f:30:d2:
4e:5b:c5:57:d0:7a:7e:5e:d9:c2:68:17:c8:d5:68:
de:43:a3:d5:a7:61:eb:da:be:75:09:fb:ee:b2:2e:
35:6b:74:36:50:60:c1:ba:8b:8a:af:e0:b4:eb:41:
3b:92:ad:aa:8b:13:af:a6:11:03:f4:20:91:43:b3:
ff:7f:ac:d4:64:74:d0:c8:2f:ec:5e:ef:fd:bb:0d:
af:23:46:11:30:50:1b:ee:a3:4e:2a:96:ef:ae:85:
91:83:68:25:12:3d:b0:64:3a:0e:f2:8c:73:b5:ba:
07:e4:8f:d2:4e:a2:95:4b:89:0e:e1:f7:90:a3:67:
6f:38:dc:16:7a:5f:cc:7d:70:42:37:3c:35:d1:01:
93:54:45:0f:f3:0d:a5:a6:c7:cd:6a:de:2a:06:31:
94:39:51:0c:fb:62:25:19:88:b6:a6:dc:ee:16:fe:
e4:d2:b3:73:11:ec:21:23:3b:8a:5b:05:67:f3:45:
dd:f0:61:60:e4:f2:25:f5:8b:0c:66:d9:9a:f1:fb:
f4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:9D:3D:4A:57:47:E0:43:1F:BA:7C:4D:70:4E:25:96:82:93:71:AF
X509v3 Authority Key Identifier:
keyid:9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:f9:c1:4d:1a:57:6a:d1:6f:4d:17:6e:3c:2e:1e:46:f2:8c:
fa:d1:10:39:41:0a:28:77:60:d4:5a:96:ca:31:2d:8a:25:8f:
6c:c4:f6:3c:3c:4f:87:9a:e5:09:1b:38:d0:27:c0:37:c0:8e:
09:eb:fb:ff:db:37:20:b1:66:72:a7:00:45:d2:d2:80:39:0a:
30:49:bd:45:27:3a:8d:b3:7b:2f:e8:97:d1:9e:79:0e:4e:3e:
c9:3f:81:cb:4f:d2:3c:32:d5:c3:69:ee:69:b5:c4:d3:fa:98:
f5:e2:4d:e6:60:fb:01:74:21:8f:89:e2:40:40:8e:be:15:db:
69:81:80:bb:ff:e5:dc:de:ac:41:79:03:74:74:e4:ab:d1:ce:
59:aa:2d:d6:a0:5d:24:ea:10:e0:46:cb:0f:67:11:07:4b:b1:
28:97:6f:4a:38:26:f3:06:64:7a:c8:09:ab:aa:71:19:41:b9:
92:20:cc:31:e6:81:5b:32:57:8a:92:26:3f:43:b0:95:46:55:
ba:37:82:a6:08:2d:96:6f:53:5d:b8:f4:6b:d1:d6:02:01:90:
2a:1c:66:ae:52:26:30:b7:90:9e:fb:08:9e:fc:98:e6:4e:2f:
16:42:5f:0e:a5:0c:70:62:87:af:93:14:b3:a9:bc:99:28:2c:
a6:19:c5:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfShdyeJOHI1d5uSxO3zvJfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljNjdlYTM0YTAxMWE0NzczODcxNTgzZWMzOTU0ZTc5MWQ4
YzAyOGQwHhcNMjUwNzAzMjMwMTE3WhcNMjUwNzA0MjMwMTE3WjAzMTEwLwYDVQQD
Eyg2ZjlkM2Q0YTU3NDdlMDQzMWZiYTdjNGQ3MDRlMjU5NjgyOTM3MWFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyI1IvLKRQXNgsysimHLEVk61d8Dh
TelhqykiYfR+X+/kkPpSlvCVWFpsJCLCcHuhUXhz8/8pOn4fMNJOW8VX0Hp+XtnC
aBfI1WjeQ6PVp2Hr2r51Cfvusi41a3Q2UGDBuouKr+C060E7kq2qixOvphED9CCR
Q7P/f6zUZHTQyC/sXu/9uw2vI0YRMFAb7qNOKpbvroWRg2glEj2wZDoO8oxztboH
5I/STqKVS4kO4feQo2dvONwWel/MfXBCNzw10QGTVEUP8w2lpsfNat4qBjGUOVEM
+2IlGYi2ptzuFv7k0rNzEewhIzuKWwVn80Xd8GFg5PIl9YsMZtma8fv0twIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG+dPUpXR+BDH7p8TXBOJZaCk3GvMB8GA1UdIwQY
MBaAFJxn6jSgEaR3OHFYPsOVTnkdjAKNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkdmcU5LQVJwSGM0Y1ZnLXc1Vk9lUjJNQW8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS84NjY5ZDMtNzZjZC00Y2IwLTgyNzgt
ODJjNjdjNjllOTIzLzEvbkdmcU5LQVJwSGM0Y1ZnLXc1Vk9lUjJNQW8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS84NjY5ZDMtNzZjZC00Y2IwLTgyNzgtODJjNjdjNjllOTIz
LzEvbkdmcU5LQVJwSGM0Y1ZnLXc1Vk9lUjJNQW8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL/nBTRpX
atFvTRduPC4eRvKM+tEQOUEKKHdg1FqWyjEtiiWPbMT2PDxPh5rlCRs40CfAN8CO
Cev7/9s3ILFmcqcARdLSgDkKMEm9RSc6jbN7L+iX0Z55Dk4+yT+By0/SPDLVw2nu
abXE0/qY9eJN5mD7AXQhj4niQECOvhXbaYGAu//l3N6sQXkDdHTkq9HOWaot1qBd
JOoQ4EbLD2cRB0uxKJdvSjgm8wZkesgJq6pxGUG5kiDMMeaBWzJXipImP0OwlUZV
ujeCpggtlm9TXbj0a9HWAgGQKhxmrlImMLeQnvsInvyY5k4vFkJfDqUMcGKHr5MU
s6m8mSgsphnFSA==
-----END CERTIFICATE-----
Generated at Fri Jul 4 02:17:20 2025 by rpki-client