Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
File: nY85NIPUicQp_Biwk0LXbQr-QkQ.mft (raw, json)
Hash identifier: qMnijuW6F71U5nbtR2GbXDFZETHIg6yruVolF+LGVbI=
Subject key identifier: 1D:00:93:E4:D8:FE:D0:47:F6:50:36:58:49:73:C4:FC:B0:52:B3:50
Authority key identifier: 9D:8F:39:34:83:D4:89:C4:29:FC:18:B0:93:42:D7:6D:0A:FE:42:44
Certificate issuer: /CN=9d8f393483d489c429fc18b09342d76d0afe4244
Certificate serial: 0198D5BC00CBAF8CD6B92A63E52D313DE706
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
Manifest number: 1233
Signing time: Sat 23 Aug 2025 07:02:04 +0000
Manifest this update: Sat 23 Aug 2025 07:02:04 +0000
Manifest next update: Sun 24 Aug 2025 07:02:04 +0000
Files and hashes: 1: fCKBgjNaPgCYlEAaSC02t2TX-HQ.roa (hash: z50OwHqPJLgmTj1OD+z+QDtPxp5JJkD8lN3khIG3bwQ=)
2: nY85NIPUicQp_Biwk0LXbQr-QkQ.crl (hash: 8m76k3XZ52EtvUYB8NB/ZD5RENHq3WA2TWXTn/wrkUI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:00:cb:af:8c:d6:b9:2a:63:e5:2d:31:3d:e7:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d8f393483d489c429fc18b09342d76d0afe4244
Validity
Not Before: Aug 23 07:02:04 2025 GMT
Not After : Aug 24 07:02:04 2025 GMT
Subject: CN=1d0093e4d8fed047f65036584973c4fcb052b350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:90:4f:9f:56:bb:d4:e4:60:ff:97:0c:7f:81:
e4:66:64:61:b8:ba:f5:f2:d3:c2:6e:da:eb:ef:3b:
24:11:53:8f:d8:da:ea:da:af:52:db:53:67:50:eb:
b2:0a:db:20:fa:c7:a6:19:8c:c1:b4:03:e5:9a:a7:
bc:e7:90:47:a1:f3:04:af:3c:78:8e:ba:84:59:9b:
40:8d:17:26:2f:15:dd:07:dd:9c:cd:2f:03:e8:1a:
b3:06:5d:30:1c:a3:cd:9c:ce:63:10:ee:23:55:63:
b7:b7:9c:34:87:4e:98:59:f2:90:8c:88:b5:e7:18:
be:80:fd:5e:88:e8:30:f5:a7:fe:b3:67:a1:25:9c:
7c:f3:40:11:51:22:ed:f5:58:80:73:bc:c8:57:97:
f6:d9:0a:e6:73:65:44:26:5b:e5:05:ad:40:62:34:
85:1f:05:a3:8c:43:2b:49:a4:6c:7d:36:9a:8e:a0:
00:35:30:08:60:fb:cd:e6:40:0f:61:35:2f:a2:52:
06:69:0f:66:94:aa:9d:51:86:8c:ff:d8:89:1b:80:
5f:4b:a6:39:e8:6f:43:78:e6:79:e9:5d:42:64:d1:
55:51:79:03:b9:69:39:af:ef:75:ac:66:6a:8d:78:
9f:47:78:d7:45:14:09:6e:24:fd:e9:61:0b:00:e9:
b6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:00:93:E4:D8:FE:D0:47:F6:50:36:58:49:73:C4:FC:B0:52:B3:50
X509v3 Authority Key Identifier:
keyid:9D:8F:39:34:83:D4:89:C4:29:FC:18:B0:93:42:D7:6D:0A:FE:42:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:6b:1b:9d:31:33:2d:22:8d:ea:c2:8c:36:09:43:2b:64:4a:
d7:9b:8f:0c:cf:82:0e:24:0a:a5:df:52:6a:39:ca:7a:44:d2:
4f:7e:b1:86:4f:86:d6:e8:3d:01:6c:a8:4a:a5:08:53:eb:b3:
41:26:51:99:ff:45:46:d2:46:bc:e3:f2:31:93:54:57:a4:20:
13:f3:95:8b:11:85:73:93:93:7b:9b:5d:ef:67:5e:57:5d:ed:
fd:e3:8b:0a:55:63:52:31:9b:de:69:2b:5d:ad:62:49:80:b2:
32:50:4c:39:c7:c9:8e:f7:53:74:97:03:1c:7e:48:f0:81:33:
08:c4:4c:f3:56:b3:25:e2:df:c5:8a:96:4d:e9:f7:47:85:21:
ed:e7:4d:09:4e:de:1f:77:73:cc:7e:88:84:72:d2:df:51:f3:
eb:c8:f5:67:d7:f1:b6:a4:a4:37:2a:c3:02:de:0d:3f:83:f5:
67:c1:67:18:1f:a8:77:e6:3f:70:8e:6a:df:b3:9e:34:f1:6f:
34:09:72:38:25:e8:60:88:0f:6c:34:0c:fb:c4:31:04:54:a5:
8a:48:d4:d2:5d:da:f6:fa:8d:73:cb:80:59:8d:9d:7d:b0:3b:
a5:f7:63:5e:c2:f4:e0:9d:65:32:db:38:d3:a1:68:d4:3d:fc:
a1:eb:1a:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVvADLr4zWuSpj5S0xPecGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkOGYzOTM0ODNkNDg5YzQyOWZjMThiMDkzNDJkNzZkMGFm
ZTQyNDQwHhcNMjUwODIzMDcwMjA0WhcNMjUwODI0MDcwMjA0WjAzMTEwLwYDVQQD
EygxZDAwOTNlNGQ4ZmVkMDQ3ZjY1MDM2NTg0OTczYzRmY2IwNTJiMzUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1JBPn1a71ORg/5cMf4HkZmRhuLr1
8tPCbtrr7zskEVOP2Nrq2q9S21NnUOuyCtsg+semGYzBtAPlmqe855BHofMErzx4
jrqEWZtAjRcmLxXdB92czS8D6BqzBl0wHKPNnM5jEO4jVWO3t5w0h06YWfKQjIi1
5xi+gP1eiOgw9af+s2ehJZx880ARUSLt9ViAc7zIV5f22Qrmc2VEJlvlBa1AYjSF
HwWjjEMrSaRsfTaajqAANTAIYPvN5kAPYTUvolIGaQ9mlKqdUYaM/9iJG4BfS6Y5
6G9DeOZ56V1CZNFVUXkDuWk5r+91rGZqjXifR3jXRRQJbiT96WELAOm2fQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB0Ak+TY/tBH9lA2WElzxPywUrNQMB8GA1UdIwQY
MBaAFJ2POTSD1InEKfwYsJNC120K/kJEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC85ZTgxNjYtMTYwZi00Y2UyLTkwMTct
MWUxNTFhYTFhZmRjLzEvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC85ZTgxNjYtMTYwZi00Y2UyLTkwMTctMWUxNTFhYTFhZmRj
LzEvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQWsbnTEz
LSKN6sKMNglDK2RK15uPDM+CDiQKpd9SajnKekTST36xhk+G1ug9AWyoSqUIU+uz
QSZRmf9FRtJGvOPyMZNUV6QgE/OVixGFc5OTe5td72deV13t/eOLClVjUjGb3mkr
Xa1iSYCyMlBMOcfJjvdTdJcDHH5I8IEzCMRM81azJeLfxYqWTen3R4Uh7edNCU7e
H3dzzH6IhHLS31Hz68j1Z9fxtqSkNyrDAt4NP4P1Z8FnGB+od+Y/cI5q37OeNPFv
NAlyOCXoYIgPbDQM+8QxBFSlikjU0l3a9vqNc8uAWY2dfbA7pfdjXsL04J1lMts4
06Fo1D38oesagQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:16:29 2025 by rpki-client