Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
File: NPwYIZBVFuYYMg6eRxoTsqqslv8.mft (raw, json)
Hash identifier: T4QXdp+wIZLy8AkLIsFFVuUmkn26Tq8I9B0/ZYBK0z0=
Subject key identifier: B3:EC:79:D6:24:67:51:A5:9A:DE:61:73:BF:3F:C8:11:40:EC:17:9A
Authority key identifier: 34:FC:18:21:90:55:16:E6:18:32:0E:9E:47:1A:13:B2:AA:AC:96:FF
Certificate issuer: /CN=34fc1821905516e618320e9e471a13b2aaac96ff
Certificate serial: 0199240D27B48EED6E7C85F6270C00FB17F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NPwYIZBVFuYYMg6eRxoTsqqslv8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 12:01:05 +0000
Manifest this update: Sun 07 Sep 2025 12:01:05 +0000
Manifest next update: Mon 08 Sep 2025 12:01:05 +0000
Files and hashes: 1: NPwYIZBVFuYYMg6eRxoTsqqslv8.crl (hash: /7p2or84p2G/LPl4xpDIt9rOUZtRaJElvLl25i0rOvE=)
2: rYKTx0nL3KpouO_aEG54Y81fax4.roa (hash: U8k6Z6wFvQxh2jmlJpmKkiKIDJ2daF7abfgpCSFD+Kw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NPwYIZBVFuYYMg6eRxoTsqqslv8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:27:b4:8e:ed:6e:7c:85:f6:27:0c:00:fb:17:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34fc1821905516e618320e9e471a13b2aaac96ff
Validity
Not Before: Sep 7 12:01:05 2025 GMT
Not After : Sep 8 12:01:05 2025 GMT
Subject: CN=b3ec79d6246751a59ade6173bf3fc81140ec179a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:67:01:52:89:63:87:81:43:64:4f:7a:50:ee:
55:0a:dc:18:de:04:c4:08:b0:b0:c0:75:c3:ab:29:
86:a1:ba:68:6b:93:0f:51:f8:5d:5d:16:0d:ed:52:
d8:56:4b:25:a6:ec:ef:f0:87:06:94:06:87:5c:3c:
12:37:39:69:32:bf:b1:15:90:d4:e2:83:f9:7e:52:
6d:63:87:55:f7:91:8c:b9:18:72:19:67:39:f3:05:
f7:7f:2a:b9:dc:e0:c2:c4:b4:bf:86:0d:cf:5f:9a:
ea:7c:d5:d5:52:59:1a:bc:34:ea:b2:1f:b9:0d:cc:
0d:ff:0b:60:fd:a1:45:5d:18:9c:37:da:80:c4:91:
96:4e:13:90:73:27:4b:c5:c8:c6:a2:4e:2f:0b:36:
60:c4:ff:f2:3e:04:04:eb:7f:a8:bf:68:0d:47:0c:
e8:1c:8d:6e:c1:81:84:24:1a:59:aa:38:fa:bb:8d:
25:09:0d:d6:b8:c9:8f:b6:2b:26:c9:2f:a7:d2:49:
88:7f:0e:23:c7:85:0c:0d:34:6c:a8:38:02:9e:95:
b9:87:fa:4d:57:4f:d0:2d:f5:a1:02:ae:01:ee:06:
d2:6a:9e:31:99:f1:4d:17:ca:42:f1:ed:ac:2f:e0:
59:19:df:af:f1:23:f9:39:13:a5:1b:34:62:a9:18:
8f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:EC:79:D6:24:67:51:A5:9A:DE:61:73:BF:3F:C8:11:40:EC:17:9A
X509v3 Authority Key Identifier:
keyid:34:FC:18:21:90:55:16:E6:18:32:0E:9E:47:1A:13:B2:AA:AC:96:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NPwYIZBVFuYYMg6eRxoTsqqslv8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:52:f9:c2:20:77:c5:cd:7c:6e:a5:ab:7f:4b:23:b6:9a:6d:
2d:89:78:3d:2a:06:1e:c9:a1:32:a7:58:d6:67:d6:30:81:29:
77:73:22:c5:44:61:ae:51:fc:e5:54:a9:06:9e:6d:b8:2d:aa:
f4:35:4e:0f:ae:95:ac:4e:83:e6:10:ab:d4:99:cc:a1:cd:32:
41:fb:e4:68:67:b3:34:8f:ba:a9:15:44:c3:41:87:e7:a4:f3:
ff:95:05:be:1f:86:af:9d:0c:53:0d:08:29:0f:57:6c:55:f4:
97:51:5d:08:26:22:24:cc:92:3e:e8:7a:68:c0:96:6e:bc:7a:
bd:4d:3a:1e:4d:a0:05:a2:c0:2b:85:ec:7c:bd:bf:44:c7:01:
3a:90:a4:77:d2:9b:61:74:ea:dd:ad:82:a4:79:54:e7:9d:91:
3a:5a:21:24:06:ab:ee:fa:2e:5e:c8:3e:09:7b:9c:a6:16:b4:
35:7b:4f:6c:fa:b9:99:0a:cd:41:13:f0:22:d8:f6:6d:77:a0:
47:b3:f8:f2:59:e5:18:76:7a:95:61:1d:99:1a:f4:8b:3e:ff:
ce:d3:4c:f6:43:87:b2:80:dd:19:9f:12:40:5a:05:f6:c5:8c:
2d:3d:88:25:f4:b8:ff:dd:e0:50:a7:98:1d:84:f3:df:79:06:
ae:88:2f:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkkDSe0ju1ufIX2JwwA+xfzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ZmMxODIxOTA1NTE2ZTYxODMyMGU5ZTQ3MWExM2IyYWFh
Yzk2ZmYwHhcNMjUwOTA3MTIwMTA1WhcNMjUwOTA4MTIwMTA1WjAzMTEwLwYDVQQD
EyhiM2VjNzlkNjI0Njc1MWE1OWFkZTYxNzNiZjNmYzgxMTQwZWMxNzlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWcBUoljh4FDZE96UO5VCtwY3gTE
CLCwwHXDqymGobpoa5MPUfhdXRYN7VLYVkslpuzv8IcGlAaHXDwSNzlpMr+xFZDU
4oP5flJtY4dV95GMuRhyGWc58wX3fyq53ODCxLS/hg3PX5rqfNXVUlkavDTqsh+5
DcwN/wtg/aFFXRicN9qAxJGWThOQcydLxcjGok4vCzZgxP/yPgQE63+ov2gNRwzo
HI1uwYGEJBpZqjj6u40lCQ3WuMmPtismyS+n0kmIfw4jx4UMDTRsqDgCnpW5h/pN
V0/QLfWhAq4B7gbSap4xmfFNF8pC8e2sL+BZGd+v8SP5OROlGzRiqRiPyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLPsedYkZ1Glmt5hc78/yBFA7BeaMB8GA1UdIwQY
MBaAFDT8GCGQVRbmGDIOnkcaE7KqrJb/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlB3WUlaQlZGdVlZTWc2ZVJ4b1RzcXFzbHY4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84NGI1NzUtNTU2My00ZjFiLTg2NWEt
ODE1ZWVhMzNiMzViLzEvTlB3WUlaQlZGdVlZTWc2ZVJ4b1RzcXFzbHY4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi84NGI1NzUtNTU2My00ZjFiLTg2NWEtODE1ZWVhMzNiMzVi
LzEvTlB3WUlaQlZGdVlZTWc2ZVJ4b1RzcXFzbHY4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAelL5wiB3
xc18bqWrf0sjtpptLYl4PSoGHsmhMqdY1mfWMIEpd3MixURhrlH85VSpBp5tuC2q
9DVOD66VrE6D5hCr1JnMoc0yQfvkaGezNI+6qRVEw0GH56Tz/5UFvh+Gr50MUw0I
KQ9XbFX0l1FdCCYiJMySPuh6aMCWbrx6vU06Hk2gBaLAK4XsfL2/RMcBOpCkd9Kb
YXTq3a2CpHlU552ROlohJAar7vouXsg+CXucpha0NXtPbPq5mQrNQRPwItj2bXeg
R7P48lnlGHZ6lWEdmRr0iz7/ztNM9kOHsoDdGZ8SQFoF9sWMLT2IJfS4/93gUKeY
HYTz33kGrogvBA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 14:42:02 2025 by rpki-client