Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
File: Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft (raw, json)
Hash identifier: C4Fo0UClbO1mUcmNjhBMsXfMEZ4urqbdVxH00gy5tGE=
Subject key identifier: 8F:AB:38:9C:E7:37:F3:69:BD:F3:1E:83:5F:E7:93:B7:CC:1C:2C:97
Authority key identifier: 36:4D:48:8B:8C:73:1B:91:D4:A5:A2:B9:0A:66:6C:EE:BC:0E:18:C9
Certificate issuer: /CN=364d488b8c731b91d4a5a2b90a666ceebc0e18c9
Certificate serial: 0199FBEB1C1EB7124C2A545CC7A82BBC0EBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
Manifest number: 01F4
Signing time: Sun 19 Oct 2025 10:01:53 +0000
Manifest this update: Sun 19 Oct 2025 10:01:53 +0000
Manifest next update: Mon 20 Oct 2025 10:01:53 +0000
Files and hashes: 1: Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl (hash: m12sT9szWueTevLcGFb+MFnMhCjYcKVvo/0846WeH0M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:1c:1e:b7:12:4c:2a:54:5c:c7:a8:2b:bc:0e:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=364d488b8c731b91d4a5a2b90a666ceebc0e18c9
Validity
Not Before: Oct 19 10:01:53 2025 GMT
Not After : Oct 20 10:01:53 2025 GMT
Subject: CN=8fab389ce737f369bdf31e835fe793b7cc1c2c97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:aa:0b:b2:b9:58:18:2f:4b:c0:8c:06:c8:32:
47:7b:ba:1c:54:71:7c:47:c2:41:b9:0d:44:34:35:
13:72:79:86:86:00:38:fe:b4:94:a7:aa:ee:8b:1c:
b7:4b:9c:27:37:39:88:30:86:84:97:02:31:d4:01:
b6:88:32:7b:04:de:d9:13:04:88:aa:8c:b1:9d:d4:
7e:c8:ed:9d:5a:ec:f0:0c:93:d3:94:ea:9b:3a:80:
8c:3f:d3:4f:46:f3:1c:1d:f1:4d:ef:7c:3a:3a:2a:
f2:c2:d1:e5:1b:da:ee:4a:52:f6:6e:56:1c:77:1a:
73:00:71:2a:8f:28:26:19:32:ba:38:5c:d2:e4:f4:
9c:d9:8a:21:b0:2f:bb:9f:b1:d6:e0:21:4a:3b:4c:
08:75:94:ef:ba:8c:ff:bc:fd:49:9d:cf:00:05:c7:
97:05:52:14:95:3a:de:3f:90:11:30:ae:b0:d6:06:
75:a1:d6:5c:f3:62:fb:da:38:0a:c2:05:a1:db:0b:
bc:1b:ea:93:38:33:f0:09:47:77:64:18:80:fe:fa:
e9:a6:ea:91:fc:58:0d:9b:68:c1:3e:99:7b:ad:e5:
d0:8f:2e:d9:09:2e:78:d1:4e:ce:13:b9:17:56:11:
c1:de:8b:bd:06:89:a6:09:5a:12:da:b8:5b:4b:cc:
f3:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:AB:38:9C:E7:37:F3:69:BD:F3:1E:83:5F:E7:93:B7:CC:1C:2C:97
X509v3 Authority Key Identifier:
keyid:36:4D:48:8B:8C:73:1B:91:D4:A5:A2:B9:0A:66:6C:EE:BC:0E:18:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:82:ec:b6:e4:13:7c:ee:fb:1d:b1:70:f2:a9:aa:45:d9:ad:
82:41:95:da:67:8c:78:49:af:4d:fc:e1:91:38:48:44:76:ab:
4c:75:92:24:22:ee:08:71:66:9b:b7:08:2f:7d:93:06:0f:f4:
26:be:57:8a:c7:24:65:46:ce:d4:11:e2:96:f7:2c:3a:d2:e9:
a3:9d:08:d9:73:4d:7d:88:ab:55:f3:56:d9:ab:fa:1c:e9:d8:
d6:98:96:28:df:b7:8d:9a:2c:1d:fb:34:ba:b3:33:91:dd:64:
b6:20:1b:a8:77:74:25:37:c0:2f:00:ae:a5:4f:52:43:db:ed:
d4:24:ee:51:57:6e:30:d1:8b:5b:4f:06:23:9c:5d:69:13:51:
25:59:f7:ba:1f:30:69:1b:d3:63:0d:50:00:4b:1d:0b:61:86:
8d:33:0d:37:fe:94:5f:08:cb:aa:64:a1:8b:97:d0:99:2b:db:
c7:21:90:d3:3a:a3:1c:93:cd:e5:d7:05:6c:b8:8c:07:01:00:
99:88:19:b3:17:5d:89:c6:1a:27:1b:d8:b0:45:19:b8:c7:e0:
76:14:d0:a1:52:1b:38:d7:f1:22:3b:87:eb:2e:64:86:e1:96:
1b:90:13:b2:ed:b4:3f:0b:11:05:ed:37:1f:5d:e5:73:2d:30:
32:5f:bf:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76xwetxJMKlRcx6grvA67MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2NGQ0ODhiOGM3MzFiOTFkNGE1YTJiOTBhNjY2Y2VlYmMw
ZTE4YzkwHhcNMjUxMDE5MTAwMTUzWhcNMjUxMDIwMTAwMTUzWjAzMTEwLwYDVQQD
Eyg4ZmFiMzg5Y2U3MzdmMzY5YmRmMzFlODM1ZmU3OTNiN2NjMWMyYzk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu6oLsrlYGC9LwIwGyDJHe7ocVHF8
R8JBuQ1ENDUTcnmGhgA4/rSUp6ruixy3S5wnNzmIMIaElwIx1AG2iDJ7BN7ZEwSI
qoyxndR+yO2dWuzwDJPTlOqbOoCMP9NPRvMcHfFN73w6OirywtHlG9ruSlL2blYc
dxpzAHEqjygmGTK6OFzS5PSc2YohsC+7n7HW4CFKO0wIdZTvuoz/vP1Jnc8ABceX
BVIUlTreP5ARMK6w1gZ1odZc82L72jgKwgWh2wu8G+qTODPwCUd3ZBiA/vrppuqR
/FgNm2jBPpl7reXQjy7ZCS540U7OE7kXVhHB3ou9BommCVoS2rhbS8zziQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI+rOJznN/NpvfMeg1/nk7fMHCyXMB8GA1UdIwQY
MBaAFDZNSIuMcxuR1KWiuQpmbO68DhjJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmsxSWk0eHpHNUhVcGFLNUNtWnM3cndPR01rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS84N2YyYTAtZTA3Zi00ZDEwLWFhOWIt
MmQwNmViN2YyOTlmLzEvTmsxSWk0eHpHNUhVcGFLNUNtWnM3cndPR01rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS84N2YyYTAtZTA3Zi00ZDEwLWFhOWItMmQwNmViN2YyOTlm
LzEvTmsxSWk0eHpHNUhVcGFLNUNtWnM3cndPR01rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl4LstuQT
fO77HbFw8qmqRdmtgkGV2meMeEmvTfzhkThIRHarTHWSJCLuCHFmm7cIL32TBg/0
Jr5XisckZUbO1BHilvcsOtLpo50I2XNNfYirVfNW2av6HOnY1piWKN+3jZosHfs0
urMzkd1ktiAbqHd0JTfALwCupU9SQ9vt1CTuUVduMNGLW08GI5xdaRNRJVn3uh8w
aRvTYw1QAEsdC2GGjTMNN/6UXwjLqmShi5fQmSvbxyGQ0zqjHJPN5dcFbLiMBwEA
mYgZsxddicYaJxvYsEUZuMfgdhTQoVIbONfxIjuH6y5khuGWG5ATsu20PwsRBe03
H13lcy0wMl+/eA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:07:39 2025 by rpki-client