Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
File: nzbQijzYpC9Goslt_XLtjO4nlHc.mft (raw, json)
Hash identifier: MzFrzFK2cWbFiM739BH+PTmJxR/6ACTB4EckkAmtM8s=
Subject key identifier: B2:AB:D6:BC:EA:0B:3F:85:6D:FA:09:1B:CD:30:08:FB:FB:A7:B5:07
Authority key identifier: 9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
Certificate issuer: /CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Certificate serial: 0197C94BCBDA37EFB5D6760D8504F6D64027
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
Manifest number: 0BC6
Signing time: Wed 02 Jul 2025 04:01:17 +0000
Manifest this update: Wed 02 Jul 2025 04:01:17 +0000
Manifest next update: Thu 03 Jul 2025 04:01:17 +0000
Files and hashes: 1: nzbQijzYpC9Goslt_XLtjO4nlHc.crl (hash: TroJof2WFJQUaaZmC0W9V7709gVcyexG9X1p4RGHf64=)
2: twzQnUgBAT35ET2oNZWOjjEoBE4.roa (hash: HIWNIMTAhxf1Wnub1ymBGmdU28kJ6snFsV9+PWAEB7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 04:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:4b:cb:da:37:ef:b5:d6:76:0d:85:04:f6:d6:40:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Validity
Not Before: Jul 2 04:01:17 2025 GMT
Not After : Jul 3 04:01:17 2025 GMT
Subject: CN=b2abd6bcea0b3f856dfa091bcd3008fbfba7b507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:19:82:01:ca:cf:c9:ad:5e:01:2e:68:7f:28:
43:4c:1e:fc:4e:45:32:2e:61:cc:29:06:36:b9:10:
30:fe:a5:e1:e0:33:d9:4a:45:5c:6c:37:08:a8:c3:
88:59:4a:2c:f6:74:b2:9c:48:6e:7c:b1:01:68:37:
c1:af:df:44:b4:6d:ea:bf:87:fe:d1:d9:28:ed:e4:
d2:33:ea:02:3c:de:a7:a2:de:38:fc:2e:b3:f2:6c:
ca:59:d3:d5:62:05:ba:14:21:e9:b2:cd:31:88:99:
48:09:ec:84:13:d7:db:36:c2:91:9c:cc:8c:d0:83:
aa:9f:23:94:9b:18:c1:64:49:ac:a4:44:99:72:cd:
bf:c3:e3:df:8e:c0:95:b0:e6:ef:b8:83:72:79:7b:
16:6f:15:2a:0d:eb:00:d6:6d:36:c6:22:34:34:81:
02:04:52:eb:80:8a:c1:b3:79:0b:61:91:3a:83:51:
0e:1b:50:1e:32:dd:ae:2d:29:b2:39:d9:84:e4:d2:
33:bd:ec:ce:46:df:11:f9:c3:6c:51:0f:42:f7:6c:
34:1a:56:86:e1:f4:3d:9a:e4:b1:b2:73:a0:af:a4:
09:47:ef:bf:19:9c:c3:28:16:49:5b:af:57:33:0c:
6d:74:ee:b6:2a:1a:16:e9:a2:25:2c:a9:ed:6e:5d:
65:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:AB:D6:BC:EA:0B:3F:85:6D:FA:09:1B:CD:30:08:FB:FB:A7:B5:07
X509v3 Authority Key Identifier:
keyid:9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:d7:02:ee:70:fe:3a:0e:7d:ff:5d:78:17:36:ab:fc:53:be:
3b:4a:c3:cf:51:7c:d6:6f:6a:34:22:1e:1d:9d:7d:a2:2c:5b:
02:b4:2b:34:90:c9:37:56:58:89:7c:9b:9a:d7:23:c1:2b:d6:
7e:eb:2e:a1:07:32:58:5b:a4:c5:6b:83:90:9d:55:c5:6f:53:
74:52:4d:7f:ee:37:3a:05:f2:19:a4:cd:bd:5a:50:70:35:09:
8f:44:a9:e6:3e:69:4a:d8:24:ec:a0:12:19:26:bb:0f:22:83:
7e:ef:d0:6e:04:5f:c5:dc:8b:44:ad:45:53:8a:d5:9c:f3:ce:
a5:46:53:c4:f6:4e:6e:c8:5b:af:24:6f:12:ed:56:a4:20:d4:
d6:9e:85:ea:19:52:d1:c1:ba:1c:a3:63:db:2f:7a:97:16:45:
65:9e:1f:66:43:f7:2f:45:ec:5b:6e:6e:25:97:7b:e4:44:a2:
b2:ec:53:90:aa:a4:e1:e0:64:a9:2d:4f:2f:5d:b8:b8:0e:de:
2a:c2:94:38:22:51:a1:1d:4a:09:39:57:d9:4a:68:fd:b5:f4:
e7:ce:18:17:8b:c4:e6:c5:82:5b:cb:02:d0:31:47:d9:51:0e:
5b:14:95:00:87:c2:0d:7e:0e:31:49:95:80:11:9e:d1:81:e5:
62:9f:e9:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfJS8vaN++11nYNhQT21kAnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMzZkMDhhM2NkOGE0MmY0NmEyYzk2ZGZkNzJlZDhjZWUy
Nzk0NzcwHhcNMjUwNzAyMDQwMTE3WhcNMjUwNzAzMDQwMTE3WjAzMTEwLwYDVQQD
EyhiMmFiZDZiY2VhMGIzZjg1NmRmYTA5MWJjZDMwMDhmYmZiYTdiNTA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwxmCAcrPya1eAS5ofyhDTB78TkUy
LmHMKQY2uRAw/qXh4DPZSkVcbDcIqMOIWUos9nSynEhufLEBaDfBr99EtG3qv4f+
0dko7eTSM+oCPN6not44/C6z8mzKWdPVYgW6FCHpss0xiJlICeyEE9fbNsKRnMyM
0IOqnyOUmxjBZEmspESZcs2/w+PfjsCVsObvuINyeXsWbxUqDesA1m02xiI0NIEC
BFLrgIrBs3kLYZE6g1EOG1AeMt2uLSmyOdmE5NIzvezORt8R+cNsUQ9C92w0GlaG
4fQ9muSxsnOgr6QJR++/GZzDKBZJW69XMwxtdO62KhoW6aIlLKntbl1llwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLKr1rzqCz+FbfoJG80wCPv7p7UHMB8GA1UdIwQY
MBaAFJ820Io82KQvRqLJbf1y7YzuJ5R3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnpiUWlqellwQzlHb3NsdF9YTHRqTzRubEhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8yZmJiYTctZWEwZS00MDg5LTk3Mjct
YzMzMzcyYzlkNTA3LzEvbnpiUWlqellwQzlHb3NsdF9YTHRqTzRubEhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi8yZmJiYTctZWEwZS00MDg5LTk3MjctYzMzMzcyYzlkNTA3
LzEvbnpiUWlqellwQzlHb3NsdF9YTHRqTzRubEhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKdcC7nD+
Og59/114Fzar/FO+O0rDz1F81m9qNCIeHZ19oixbArQrNJDJN1ZYiXybmtcjwSvW
fusuoQcyWFukxWuDkJ1VxW9TdFJNf+43OgXyGaTNvVpQcDUJj0Sp5j5pStgk7KAS
GSa7DyKDfu/QbgRfxdyLRK1FU4rVnPPOpUZTxPZObshbryRvEu1WpCDU1p6F6hlS
0cG6HKNj2y96lxZFZZ4fZkP3L0XsW25uJZd75ESisuxTkKqk4eBkqS1PL124uA7e
KsKUOCJRoR1KCTlX2Upo/bX0584YF4vE5sWCW8sC0DFH2VEOWxSVAIfCDX4OMUmV
gBGe0YHlYp/p7g==
-----END CERTIFICATE-----
Generated at Wed Jul 2 13:11:24 2025 by rpki-client