Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft
File: NHBSPMWdTwUnV-cSKR4rt535KAA.mft (raw, json)
Hash identifier: SJpH/SoIIdOWMYhjGUyM/GZg3OySlNEkyOQUPHAdrt0=
Subject key identifier: 11:04:2F:FE:51:F8:05:6B:DC:DE:5B:3E:0C:D2:AA:62:00:A9:C0:66
Authority key identifier: 34:70:52:3C:C5:9D:4F:05:27:57:E7:12:29:1E:2B:B7:9D:F9:28:00
Certificate issuer: /CN=3470523cc59d4f052757e712291e2bb79df92800
Certificate serial: 01974B5682D6C2A3F6DB113E164321E81158
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHBSPMWdTwUnV-cSKR4rt535KAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft
Manifest number: 8C
Signing time: Sat 07 Jun 2025 17:00:50 +0000
Manifest this update: Sat 07 Jun 2025 17:00:50 +0000
Manifest next update: Sun 08 Jun 2025 17:00:50 +0000
Files and hashes: 1: NHBSPMWdTwUnV-cSKR4rt535KAA.crl (hash: 4+r5gi+f5SBYo/UL24E4hWTYDoZIEYcudRNHF3vrEpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/NHBSPMWdTwUnV-cSKR4rt535KAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:56:82:d6:c2:a3:f6:db:11:3e:16:43:21:e8:11:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3470523cc59d4f052757e712291e2bb79df92800
Validity
Not Before: Jun 7 17:00:50 2025 GMT
Not After : Jun 8 17:00:50 2025 GMT
Subject: CN=11042ffe51f8056bdcde5b3e0cd2aa6200a9c066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ba:8f:46:37:9d:f1:d1:8f:23:29:39:dc:bc:
fd:b9:d8:58:f0:0a:09:39:8c:71:dd:90:6a:d5:b7:
47:0d:26:40:b2:fc:ce:d0:08:d2:7e:cf:cd:d0:86:
fa:9b:43:e2:c8:86:f0:0b:c2:aa:ad:72:67:d2:48:
27:58:9a:2e:ee:7e:17:7d:e8:5b:b3:72:22:14:e3:
4d:61:09:5d:0f:46:85:04:38:ca:f3:f3:ac:11:f4:
50:04:f0:ee:ae:9c:03:1f:b7:40:be:36:15:1d:85:
4a:b0:fd:93:07:1c:fa:26:49:6b:b7:c6:70:9e:58:
76:24:45:5c:d4:35:b6:25:9e:5f:e8:52:6b:f2:9e:
83:21:8a:58:de:67:bb:b4:6e:55:ff:66:72:25:4d:
be:68:48:bd:23:8a:e6:52:e5:b7:43:2e:d6:b1:52:
9c:00:d6:f7:c8:54:62:fc:2c:e2:c6:23:4a:49:b0:
68:33:d4:c1:94:74:59:23:7a:9a:d4:41:82:9d:f3:
2c:6c:49:3e:a9:7b:0c:26:b1:fc:e5:b6:fa:fe:0e:
51:de:7f:e6:c5:46:d0:df:5b:d9:b9:db:53:2a:23:
93:58:1c:01:cf:e4:2f:e6:4d:45:cc:0d:6e:0e:7c:
7d:06:96:42:10:ff:b3:a3:b5:1f:66:bd:d2:ae:c5:
f8:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:04:2F:FE:51:F8:05:6B:DC:DE:5B:3E:0C:D2:AA:62:00:A9:C0:66
X509v3 Authority Key Identifier:
keyid:34:70:52:3C:C5:9D:4F:05:27:57:E7:12:29:1E:2B:B7:9D:F9:28:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHBSPMWdTwUnV-cSKR4rt535KAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:26:32:d9:94:ee:fd:50:18:5c:f2:ec:a6:b9:8e:a0:e2:cc:
2e:1b:ef:b3:ea:65:0a:60:20:aa:35:e7:a1:78:19:2c:78:92:
f8:a8:31:d8:42:eb:f5:50:48:93:b8:bd:19:0b:80:ae:0e:22:
0f:be:6e:7c:50:41:18:02:8c:6e:70:b5:b7:76:de:0b:76:10:
60:86:cc:20:2d:c8:fd:da:93:fe:2d:c4:bb:cf:36:97:80:41:
04:ab:93:0b:c3:a3:96:7d:6a:83:bc:c8:d1:de:db:03:e4:69:
b0:df:10:4d:92:79:ca:1d:d4:66:6d:a8:9f:80:8b:18:62:0c:
57:22:8f:07:68:2f:fd:2a:a3:5c:6d:67:e9:64:9b:14:50:33:
84:b0:dc:6e:22:f4:e6:96:a2:e2:07:b0:2e:81:cf:97:50:86:
ce:46:bd:2a:6f:cd:7e:d2:0c:94:18:d9:6f:0c:5a:be:01:21:
76:88:d9:34:16:0d:78:82:ea:c8:9b:ad:6c:f4:78:73:bc:4c:
9b:9d:65:b7:54:17:75:a2:2f:b9:ea:49:57:3d:52:8b:96:c2:
dd:54:c5:be:a7:4d:d8:64:db:dc:eb:39:53:43:11:0c:18:1f:
8f:87:89:f5:72:3e:d2:17:2e:b8:74:e3:b7:fd:48:9c:3f:17:
fd:fb:b7:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLVoLWwqP22xE+FkMh6BFYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0NzA1MjNjYzU5ZDRmMDUyNzU3ZTcxMjI5MWUyYmI3OWRm
OTI4MDAwHhcNMjUwNjA3MTcwMDUwWhcNMjUwNjA4MTcwMDUwWjAzMTEwLwYDVQQD
EygxMTA0MmZmZTUxZjgwNTZiZGNkZTViM2UwY2QyYWE2MjAwYTljMDY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2LqPRjed8dGPIyk53Lz9udhY8AoJ
OYxx3ZBq1bdHDSZAsvzO0AjSfs/N0Ib6m0PiyIbwC8KqrXJn0kgnWJou7n4Xfehb
s3IiFONNYQldD0aFBDjK8/OsEfRQBPDurpwDH7dAvjYVHYVKsP2TBxz6Jklrt8Zw
nlh2JEVc1DW2JZ5f6FJr8p6DIYpY3me7tG5V/2ZyJU2+aEi9I4rmUuW3Qy7WsVKc
ANb3yFRi/CzixiNKSbBoM9TBlHRZI3qa1EGCnfMsbEk+qXsMJrH85bb6/g5R3n/m
xUbQ31vZudtTKiOTWBwBz+Qv5k1FzA1uDnx9BpZCEP+zo7UfZr3SrsX4eQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBEEL/5R+AVr3N5bPgzSqmIAqcBmMB8GA1UdIwQY
MBaAFDRwUjzFnU8FJ1fnEikeK7ed+SgAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkhCU1BNV2RUd1VuVi1jU0tSNHJ0NTM1S0FBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9hMjgwZDgtOGRiYS00NTY2LWEyMzgt
MzNhM2YzZjAwM2E1LzEvTkhCU1BNV2RUd1VuVi1jU0tSNHJ0NTM1S0FBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC9hMjgwZDgtOGRiYS00NTY2LWEyMzgtMzNhM2YzZjAwM2E1
LzEvTkhCU1BNV2RUd1VuVi1jU0tSNHJ0NTM1S0FBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZSYy2ZTu
/VAYXPLsprmOoOLMLhvvs+plCmAgqjXnoXgZLHiS+Kgx2ELr9VBIk7i9GQuArg4i
D75ufFBBGAKMbnC1t3beC3YQYIbMIC3I/dqT/i3Eu882l4BBBKuTC8Ojln1qg7zI
0d7bA+RpsN8QTZJ5yh3UZm2on4CLGGIMVyKPB2gv/SqjXG1n6WSbFFAzhLDcbiL0
5pai4gewLoHPl1CGzka9Km/NftIMlBjZbwxavgEhdojZNBYNeILqyJutbPR4c7xM
m51lt1QXdaIvuepJVz1Si5bC3VTFvqdN2GTb3Os5U0MRDBgfj4eJ9XI+0hcuuHTj
t/1InD8X/fu3hA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 21:59:40 2025 by rpki-client