Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
File: sCnHJ8biLu2PvNHot2k5V40Nygo.mft (raw, json)
Hash identifier: a9NXYUVjlkuYV+5gJymmSXKRvv7JxdOKb0lf92alMgE=
Subject key identifier: BC:EA:11:B6:52:6F:54:92:80:7F:F6:8D:15:48:F2:1E:1A:81:92:29
Authority key identifier: B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A
Certificate issuer: /CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
Certificate serial: 0199FDD8BF31D6E4BA6F443E464BB68B8B2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
Manifest number: 16DE
Signing time: Sun 19 Oct 2025 19:01:04 +0000
Manifest this update: Sun 19 Oct 2025 19:01:04 +0000
Manifest next update: Mon 20 Oct 2025 19:01:04 +0000
Files and hashes: 1: sCnHJ8biLu2PvNHot2k5V40Nygo.crl (hash: NGMqtM89LmsccX7nQn0e7QRZsS2sAfLh1V8jAfP7Jyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d8:bf:31:d6:e4:ba:6f:44:3e:46:4b:b6:8b:8b:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
Validity
Not Before: Oct 19 19:01:04 2025 GMT
Not After : Oct 20 19:01:04 2025 GMT
Subject: CN=bcea11b6526f5492807ff68d1548f21e1a819229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:99:43:8a:d9:77:67:4f:95:22:aa:e5:63:f3:
f5:d8:dd:4e:c2:be:53:dd:f4:9a:a9:f6:bf:fb:6c:
f4:d9:98:e3:a4:b7:eb:59:a5:d9:48:d3:f7:f7:6e:
27:6a:bb:a7:f9:d3:a1:63:b8:8a:d6:ce:cc:a7:06:
59:6a:2a:6d:53:d2:1d:3f:8c:f5:80:66:aa:5c:7e:
43:37:d3:12:bb:6e:5f:08:f7:13:51:83:6d:0b:21:
f2:99:af:d1:dc:6e:e9:d7:93:4d:c1:3c:bc:53:05:
f3:a9:60:52:2c:d6:7e:2f:72:ec:fb:d0:3c:6f:b3:
89:04:fc:99:41:bb:3d:c6:92:9a:ab:f4:5c:a8:3a:
1a:d1:f1:17:64:15:35:dc:45:bf:f5:9f:30:f4:37:
c7:67:60:b0:09:34:ec:26:35:a2:31:55:b7:97:3e:
77:33:aa:e9:ff:0e:2a:c2:8c:a1:1f:ec:40:e0:c0:
3e:cd:c5:a3:53:9f:40:6c:f4:e3:3e:1f:73:87:85:
ef:4a:8a:5d:ff:6a:0b:42:d0:74:f2:c6:8b:5d:9d:
ac:6c:9f:5a:9f:26:4f:65:05:45:9c:75:fc:2f:af:
8a:c4:a2:29:82:56:65:10:f1:d1:1f:ea:14:83:30:
09:7a:38:09:72:26:e9:8a:59:8a:a5:96:48:3c:bc:
e9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:EA:11:B6:52:6F:54:92:80:7F:F6:8D:15:48:F2:1E:1A:81:92:29
X509v3 Authority Key Identifier:
keyid:B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:50:06:e1:45:b0:95:0f:79:f4:75:41:5b:f9:d3:cd:78:66:
8f:d4:e6:91:1f:2b:15:0f:30:d5:a1:ee:df:b1:f0:fc:e1:55:
7d:72:73:bd:91:b1:f6:99:f3:8b:f4:36:bf:4d:df:17:7e:70:
d5:51:4d:08:01:c7:82:25:47:06:5b:62:51:6a:22:fe:9a:73:
dc:b2:87:12:4f:46:66:b0:63:15:86:c6:3c:f7:21:76:b7:0a:
70:5b:0c:84:e2:0f:6a:22:78:0a:bc:8a:ea:a4:e1:c8:a2:d3:
2e:a9:33:bf:96:7f:c4:87:f0:ab:40:85:f9:b9:27:ba:9e:aa:
3a:82:b2:7c:34:5a:e9:bb:78:41:d1:77:b9:b2:b1:fd:c8:2b:
50:72:58:7e:b0:89:9d:a9:c2:46:7e:73:4c:2b:cd:87:e8:f5:
34:d2:c0:a2:ee:f4:33:5a:77:17:97:9f:8f:e0:d3:67:91:60:
1e:00:29:52:3a:dd:19:24:3f:cc:30:42:a4:8e:c7:01:d5:f1:
e8:93:90:fa:b3:24:98:8f:d0:3a:2e:10:98:a9:f5:13:a4:82:
24:cf:e5:18:74:96:0b:31:ee:43:53:fd:a5:ce:9c:8f:68:ef:
da:1d:a1:74:3f:3b:a0:35:14:e9:cb:dc:e1:df:b4:1e:f1:26:
45:78:f3:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92L8x1uS6b0Q+Rku2i4suMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwMjljNzI3YzZlMjJlZWQ4ZmJjZDFlOGI3NjkzOTU3OGQw
ZGNhMGEwHhcNMjUxMDE5MTkwMTA0WhcNMjUxMDIwMTkwMTA0WjAzMTEwLwYDVQQD
EyhiY2VhMTFiNjUyNmY1NDkyODA3ZmY2OGQxNTQ4ZjIxZTFhODE5MjI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqplDitl3Z0+VIqrlY/P12N1Owr5T
3fSaqfa/+2z02ZjjpLfrWaXZSNP3924narun+dOhY7iK1s7MpwZZaiptU9IdP4z1
gGaqXH5DN9MSu25fCPcTUYNtCyHyma/R3G7p15NNwTy8UwXzqWBSLNZ+L3Ls+9A8
b7OJBPyZQbs9xpKaq/RcqDoa0fEXZBU13EW/9Z8w9DfHZ2CwCTTsJjWiMVW3lz53
M6rp/w4qwoyhH+xA4MA+zcWjU59AbPTjPh9zh4XvSopd/2oLQtB08saLXZ2sbJ9a
nyZPZQVFnHX8L6+KxKIpglZlEPHRH+oUgzAJejgJcibpilmKpZZIPLzpMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLzqEbZSb1SSgH/2jRVI8h4agZIpMB8GA1UdIwQY
MBaAFLApxyfG4i7tj7zR6LdpOVeNDcoKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0NuSEo4YmlMdTJQdk5Ib3QyazVWNDBOeWdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC80NjE1YTEtOTA1Mi00MGM2LWExOGQt
YTBkNzk5MjRkYjZjLzEvc0NuSEo4YmlMdTJQdk5Ib3QyazVWNDBOeWdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC80NjE1YTEtOTA1Mi00MGM2LWExOGQtYTBkNzk5MjRkYjZj
LzEvc0NuSEo4YmlMdTJQdk5Ib3QyazVWNDBOeWdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAllAG4UWw
lQ959HVBW/nTzXhmj9TmkR8rFQ8w1aHu37Hw/OFVfXJzvZGx9pnzi/Q2v03fF35w
1VFNCAHHgiVHBltiUWoi/ppz3LKHEk9GZrBjFYbGPPchdrcKcFsMhOIPaiJ4CryK
6qThyKLTLqkzv5Z/xIfwq0CF+bknup6qOoKyfDRa6bt4QdF3ubKx/cgrUHJYfrCJ
nanCRn5zTCvNh+j1NNLAou70M1p3F5efj+DTZ5FgHgApUjrdGSQ/zDBCpI7HAdXx
6JOQ+rMkmI/QOi4QmKn1E6SCJM/lGHSWCzHuQ1P9pc6cj2jv2h2hdD87oDUU6cvc
4d+0HvEmRXjzjA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:30:13 2025 by rpki-client