Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
File: nlf4Q7F__OqpuGNlgf5NVONG3cw.mft (raw, json)
Hash identifier: jpbE2q/NGX//uKGwR1TxjynIOFHY+jsYGvPebFf9uuc=
Subject key identifier: 07:AE:92:59:7A:81:92:B9:41:70:30:8A:7A:2C:01:02:76:64:2C:AA
Authority key identifier: 9E:57:F8:43:B1:7F:FC:EA:A9:B8:63:65:81:FE:4D:54:E3:46:DD:CC
Certificate issuer: /CN=9e57f843b17ffceaa9b8636581fe4d54e346ddcc
Certificate serial: 0198D5BC24278F6A0F6E0383846A26B2E3F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
Manifest number: 0C9E
Signing time: Sat 23 Aug 2025 07:02:13 +0000
Manifest this update: Sat 23 Aug 2025 07:02:13 +0000
Manifest next update: Sun 24 Aug 2025 07:02:13 +0000
Files and hashes: 1: IFXNgHuEN8ycsfhuA4dEpX7GYeY.roa (hash: 0NAgcHKOW4VLEuD8zIQn9OzSwjmjjTPr1tkjSBELdjk=)
2: nlf4Q7F__OqpuGNlgf5NVONG3cw.crl (hash: S/KsNizKJackhWIUZ/luZrZY2VA/xQIuWRIn84AtxKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 07:02:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:24:27:8f:6a:0f:6e:03:83:84:6a:26:b2:e3:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e57f843b17ffceaa9b8636581fe4d54e346ddcc
Validity
Not Before: Aug 23 07:02:13 2025 GMT
Not After : Aug 24 07:02:13 2025 GMT
Subject: CN=07ae92597a8192b94170308a7a2c010276642caa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:83:0b:4f:87:ef:8e:a4:6a:0f:d4:fe:d2:2c:
e0:68:86:a6:44:c0:e3:0b:d8:47:a3:1a:8d:3b:5a:
c7:cf:5d:d9:85:e7:e2:04:79:a0:bb:a3:6d:70:c3:
a9:f4:8f:c5:a2:33:81:b6:35:d3:99:a8:bb:23:25:
f6:60:db:3a:c7:6d:7d:ce:f0:58:c4:96:07:a3:3b:
f8:c2:e2:a3:1b:93:c4:d2:45:fb:58:82:ad:b5:90:
b0:6e:1c:11:60:38:6e:f1:ca:5d:08:91:8a:a0:14:
68:62:c7:1e:ec:ec:6d:0b:ce:c5:7c:62:d8:0e:35:
c7:c5:bb:39:14:9c:12:d7:97:69:2a:67:65:3d:86:
ae:03:ab:25:40:fd:f0:4a:68:05:a9:9b:ff:9e:49:
f8:14:3b:f1:eb:c1:0e:e5:c9:92:e8:d5:41:90:b7:
a0:16:b0:db:f2:b0:dd:a3:fd:47:75:33:43:75:da:
f5:c3:c0:8b:72:92:cd:f4:2f:50:16:8c:71:a7:2f:
a7:23:4d:2a:57:60:27:c9:cf:16:ce:23:1f:d0:3a:
12:c9:31:bf:1b:8b:0f:71:da:ac:5d:a9:d6:35:41:
ed:45:b5:bb:e3:52:c9:72:27:f3:49:c1:84:66:38:
60:de:a7:0e:ef:0a:d9:bb:a9:71:a1:c3:80:f4:b5:
53:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:AE:92:59:7A:81:92:B9:41:70:30:8A:7A:2C:01:02:76:64:2C:AA
X509v3 Authority Key Identifier:
keyid:9E:57:F8:43:B1:7F:FC:EA:A9:B8:63:65:81:FE:4D:54:E3:46:DD:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:25:9a:a4:e3:15:35:ab:b7:f3:2f:63:58:16:ab:41:d6:48:
dc:8a:8a:44:c3:c4:19:d0:89:dc:db:e2:34:b3:ee:e9:92:d9:
7e:9e:19:19:86:34:0f:a0:92:fd:69:c0:70:c3:52:11:24:b3:
cf:ad:c1:42:d2:f0:03:b2:bd:25:f7:87:d6:09:fb:95:52:33:
01:22:21:6c:6a:a2:94:49:58:2d:63:22:ff:ab:f1:2c:f3:4b:
f6:ec:0d:bf:7c:1c:97:07:1f:86:e0:62:cd:9e:7a:4e:ff:b0:
01:69:3c:3d:3a:96:93:38:b9:6b:22:de:be:c7:e6:07:fd:48:
f5:3d:74:0c:ab:cd:ea:f8:b5:38:68:e1:05:aa:b0:20:71:77:
3d:2f:67:6f:ac:5e:11:2a:2a:82:f3:42:22:5a:92:0f:8c:8f:
cc:6d:52:f3:af:29:e7:b9:84:c6:48:25:b4:bb:43:d1:3b:75:
d1:a4:0b:9e:46:65:1e:a9:81:18:69:16:61:b5:c5:a5:70:1c:
b2:7c:15:f2:12:7e:f2:48:9c:72:7e:95:ac:56:d7:6a:cb:03:
4c:0f:44:69:1b:ae:ea:89:0d:14:06:52:b0:30:eb:c4:7f:8c:
11:e1:21:e2:a3:2d:8e:a5:9b:36:14:05:10:ba:60:01:15:7b:
70:31:25:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVvCQnj2oPbgODhGomsuP0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllNTdmODQzYjE3ZmZjZWFhOWI4NjM2NTgxZmU0ZDU0ZTM0
NmRkY2MwHhcNMjUwODIzMDcwMjEzWhcNMjUwODI0MDcwMjEzWjAzMTEwLwYDVQQD
EygwN2FlOTI1OTdhODE5MmI5NDE3MDMwOGE3YTJjMDEwMjc2NjQyY2FhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw4MLT4fvjqRqD9T+0izgaIamRMDj
C9hHoxqNO1rHz13ZhefiBHmgu6NtcMOp9I/FojOBtjXTmai7IyX2YNs6x219zvBY
xJYHozv4wuKjG5PE0kX7WIKttZCwbhwRYDhu8cpdCJGKoBRoYsce7OxtC87FfGLY
DjXHxbs5FJwS15dpKmdlPYauA6slQP3wSmgFqZv/nkn4FDvx68EO5cmS6NVBkLeg
FrDb8rDdo/1HdTNDddr1w8CLcpLN9C9QFoxxpy+nI00qV2Anyc8WziMf0DoSyTG/
G4sPcdqsXanWNUHtRbW741LJcifzScGEZjhg3qcO7wrZu6lxocOA9LVTIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAeukll6gZK5QXAwinosAQJ2ZCyqMB8GA1UdIwQY
MBaAFJ5X+EOxf/zqqbhjZYH+TVTjRt3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmxmNFE3Rl9fT3FwdUdObGdmNU5WT05HM2N3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC83ZDBlZmUtNzA5ZC00ZDExLWI2OTIt
MGUyMzA4MDZiNTc5LzEvbmxmNFE3Rl9fT3FwdUdObGdmNU5WT05HM2N3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC83ZDBlZmUtNzA5ZC00ZDExLWI2OTItMGUyMzA4MDZiNTc5
LzEvbmxmNFE3Rl9fT3FwdUdObGdmNU5WT05HM2N3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAliWapOMV
Nau38y9jWBarQdZI3IqKRMPEGdCJ3NviNLPu6ZLZfp4ZGYY0D6CS/WnAcMNSESSz
z63BQtLwA7K9JfeH1gn7lVIzASIhbGqilElYLWMi/6vxLPNL9uwNv3wclwcfhuBi
zZ56Tv+wAWk8PTqWkzi5ayLevsfmB/1I9T10DKvN6vi1OGjhBaqwIHF3PS9nb6xe
ESoqgvNCIlqSD4yPzG1S868p57mExkgltLtD0Tt10aQLnkZlHqmBGGkWYbXFpXAc
snwV8hJ+8kiccn6VrFbXassDTA9EaRuu6okNFAZSsDDrxH+MEeEh4qMtjqWbNhQF
ELpgARV7cDElxw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:20:49 2025 by rpki-client