Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/f8434c-0230-4adf-bd00-2829aa3df258/1/nFK2oFFHG-xR23TXJW56MKVezxo.mft
File: nFK2oFFHG-xR23TXJW56MKVezxo.mft (raw, json)
Hash identifier: 5FdbIdPOenJIbMhlCathEq5mBQUZ28fXD6RQKIk682w=
Subject key identifier: CB:C3:7C:70:F1:96:B7:2B:96:66:2C:8D:69:85:B4:49:33:E9:95:B4
Authority key identifier: 9C:52:B6:A0:51:47:1B:EC:51:DB:74:D7:25:6E:7A:30:A5:5E:CF:1A
Certificate issuer: /CN=9c52b6a051471bec51db74d7256e7a30a55ecf1a
Certificate serial: 019848532E1AEE1007B244BCFDF8FA07B56D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFK2oFFHG-xR23TXJW56MKVezxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/f8434c-0230-4adf-bd00-2829aa3df258/1/nFK2oFFHG-xR23TXJW56MKVezxo.mft
Manifest number: 1601
Signing time: Sat 26 Jul 2025 20:01:07 +0000
Manifest this update: Sat 26 Jul 2025 20:01:07 +0000
Manifest next update: Sun 27 Jul 2025 20:01:07 +0000
Files and hashes: 1: CpF6aVcFa4aSib91gY7r_oRg7yk.roa (hash: g98Tlf03Q7mP804tnDVA4hODWWDgDXRhH7RoV+ttI2w=)
2: nFK2oFFHG-xR23TXJW56MKVezxo.crl (hash: YFiylI1BeTuS2lNgeb5Ee6p7AMu5pNKiAcgyfMlr5h0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/f8434c-0230-4adf-bd00-2829aa3df258/1/nFK2oFFHG-xR23TXJW56MKVezxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/f8434c-0230-4adf-bd00-2829aa3df258/1/nFK2oFFHG-xR23TXJW56MKVezxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/nFK2oFFHG-xR23TXJW56MKVezxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:53:2e:1a:ee:10:07:b2:44:bc:fd:f8:fa:07:b5:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c52b6a051471bec51db74d7256e7a30a55ecf1a
Validity
Not Before: Jul 26 20:01:07 2025 GMT
Not After : Jul 27 20:01:07 2025 GMT
Subject: CN=cbc37c70f196b72b96662c8d6985b44933e995b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:58:d3:86:08:c8:f1:bd:92:24:56:df:21:9a:
85:aa:9f:1b:65:75:5e:e0:92:b2:c3:74:29:73:7d:
9e:eb:8d:a4:55:b2:ac:96:54:93:e5:5c:c5:99:d1:
c3:05:cb:02:0e:71:bf:7d:d0:66:fb:e1:58:02:f2:
ab:8c:4b:cd:b8:ff:54:5c:c8:30:3f:d1:96:fd:1c:
f4:b9:8e:05:4b:c0:79:70:40:8e:c0:21:f5:73:80:
54:e9:da:ee:30:4c:b5:62:7f:3f:93:1c:21:8b:e8:
a2:68:5f:bc:ee:5a:48:0a:95:fb:5c:33:3c:d5:aa:
81:aa:e4:ab:38:15:20:ea:f1:2a:33:57:ea:ff:59:
4f:49:65:7a:79:e6:73:1b:3f:33:4b:09:60:7b:1a:
cf:b7:12:b0:28:9d:8e:72:5e:1f:9c:b6:df:e6:51:
d4:1f:60:72:5e:82:1c:c9:de:8b:86:88:a8:d6:0a:
53:57:9b:bb:2e:35:d7:c7:4a:3f:87:73:21:39:88:
73:1c:35:c3:b9:ae:62:d1:4d:b7:e7:dd:ec:9f:9c:
75:d6:30:ea:39:c7:75:52:89:70:0c:93:e8:a3:aa:
d0:4f:b6:32:3b:b3:aa:9b:d8:b9:84:4a:12:bd:08:
60:4f:c3:a0:e3:91:d6:a2:13:3e:53:8d:9b:35:60:
77:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C3:7C:70:F1:96:B7:2B:96:66:2C:8D:69:85:B4:49:33:E9:95:B4
X509v3 Authority Key Identifier:
keyid:9C:52:B6:A0:51:47:1B:EC:51:DB:74:D7:25:6E:7A:30:A5:5E:CF:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFK2oFFHG-xR23TXJW56MKVezxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f8434c-0230-4adf-bd00-2829aa3df258/1/nFK2oFFHG-xR23TXJW56MKVezxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f8434c-0230-4adf-bd00-2829aa3df258/1/nFK2oFFHG-xR23TXJW56MKVezxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:40:f9:01:f7:af:3f:fa:da:80:44:a1:97:a1:ec:02:07:f2:
e2:da:e8:43:4a:8a:ef:a5:94:f2:dd:ed:cd:7b:83:5f:29:3f:
73:e9:38:5f:b0:94:4e:20:67:12:33:9c:fe:06:f6:8b:a8:6d:
9c:03:e3:83:31:3d:65:17:d9:f0:d1:f0:b2:cf:a7:a1:9d:4c:
57:97:2e:f1:37:15:aa:68:f3:d3:3b:cf:18:fa:6e:e5:04:a3:
1a:11:94:d4:7d:ad:7a:31:6a:65:b1:dd:9e:3e:44:22:ff:6a:
7f:70:a6:f6:b1:12:a0:87:fe:ae:cf:df:ad:4b:04:0e:2d:6f:
0f:9d:c4:a4:6d:7b:41:be:30:29:34:03:47:10:52:1e:b4:ed:
72:36:11:92:30:44:38:01:30:25:48:30:48:ea:d1:e2:54:b3:
a2:14:f6:52:6c:90:cc:81:bb:31:9c:33:28:9f:6c:74:70:14:
94:4b:37:10:05:7d:34:bf:db:95:8e:62:8c:b7:45:49:a8:d4:
ce:9b:13:e9:50:5d:0d:13:6a:c2:e9:77:08:77:8f:ed:d2:11:
ca:f9:02:c9:17:7e:a6:6e:83:6c:5c:34:42:85:bb:46:5f:d0:
5f:f9:45:ec:a4:53:cd:be:4a:6d:c1:ac:68:36:9f:54:e4:9a:
f2:f9:a2:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhIUy4a7hAHskS8/fj6B7VtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljNTJiNmEwNTE0NzFiZWM1MWRiNzRkNzI1NmU3YTMwYTU1
ZWNmMWEwHhcNMjUwNzI2MjAwMTA3WhcNMjUwNzI3MjAwMTA3WjAzMTEwLwYDVQQD
EyhjYmMzN2M3MGYxOTZiNzJiOTY2NjJjOGQ2OTg1YjQ0OTMzZTk5NWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1jThgjI8b2SJFbfIZqFqp8bZXVe
4JKyw3Qpc32e642kVbKsllST5VzFmdHDBcsCDnG/fdBm++FYAvKrjEvNuP9UXMgw
P9GW/Rz0uY4FS8B5cECOwCH1c4BU6druMEy1Yn8/kxwhi+iiaF+87lpICpX7XDM8
1aqBquSrOBUg6vEqM1fq/1lPSWV6eeZzGz8zSwlgexrPtxKwKJ2Ocl4fnLbf5lHU
H2ByXoIcyd6Lhoio1gpTV5u7LjXXx0o/h3MhOYhzHDXDua5i0U23593sn5x11jDq
Ocd1UolwDJPoo6rQT7YyO7Oqm9i5hEoSvQhgT8Og45HWohM+U42bNWB3XQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMvDfHDxlrcrlmYsjWmFtEkz6ZW0MB8GA1UdIwQY
MBaAFJxStqBRRxvsUdt01yVuejClXs8aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkZLMm9GRkhHLXhSMjNUWEpXNTZNS1ZlenhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9mODQzNGMtMDIzMC00YWRmLWJkMDAt
MjgyOWFhM2RmMjU4LzEvbkZLMm9GRkhHLXhSMjNUWEpXNTZNS1ZlenhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi9mODQzNGMtMDIzMC00YWRmLWJkMDAtMjgyOWFhM2RmMjU4
LzEvbkZLMm9GRkhHLXhSMjNUWEpXNTZNS1ZlenhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYUD5Afev
P/ragEShl6HsAgfy4troQ0qK76WU8t3tzXuDXyk/c+k4X7CUTiBnEjOc/gb2i6ht
nAPjgzE9ZRfZ8NHwss+noZ1MV5cu8TcVqmjz0zvPGPpu5QSjGhGU1H2tejFqZbHd
nj5EIv9qf3Cm9rESoIf+rs/frUsEDi1vD53EpG17Qb4wKTQDRxBSHrTtcjYRkjBE
OAEwJUgwSOrR4lSzohT2UmyQzIG7MZwzKJ9sdHAUlEs3EAV9NL/blY5ijLdFSajU
zpsT6VBdDRNqwul3CHeP7dIRyvkCyRd+pm6DbFw0QoW7Rl/QX/lF7KRTzb5KbcGs
aDafVOSa8vmifA==
-----END CERTIFICATE-----
Generated at Sun Jul 27 05:23:54 2025 by rpki-client