Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft
File: NufP3RKRk-IZw3ASHKFiUOQptYs.mft (raw, json)
Hash identifier: AiXKyXCibYZVSXkRSI8fAghk0qLJ/+R4QvHD8WU/T+U=
Subject key identifier: C2:77:5B:21:62:1A:89:97:DF:69:74:D4:53:F5:AB:A4:C2:E8:99:BE
Authority key identifier: 36:E7:CF:DD:12:91:93:E2:19:C3:70:12:1C:A1:62:50:E4:29:B5:8B
Certificate issuer: /CN=36e7cfdd129193e219c370121ca16250e429b58b
Certificate serial: 0198D6CCE446D1779FCA25BAC394B0396DB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NufP3RKRk-IZw3ASHKFiUOQptYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft
Manifest number: 103B
Signing time: Sat 23 Aug 2025 12:00:08 +0000
Manifest this update: Sat 23 Aug 2025 12:00:08 +0000
Manifest next update: Sun 24 Aug 2025 12:00:08 +0000
Files and hashes: 1: NufP3RKRk-IZw3ASHKFiUOQptYs.crl (hash: KP+MBejP4ZQsubyj3e3FIBW74AWUePwMO+gjIiW8zB4=)
2: TQTaN9R3PROnWSlPAnOimZ3OkV0.roa (hash: 6MvOdY9qe95Xeb6bYl6JjgUIxMzjpmO+qyLURJWgUDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/NufP3RKRk-IZw3ASHKFiUOQptYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cc:e4:46:d1:77:9f:ca:25:ba:c3:94:b0:39:6d:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36e7cfdd129193e219c370121ca16250e429b58b
Validity
Not Before: Aug 23 12:00:08 2025 GMT
Not After : Aug 24 12:00:08 2025 GMT
Subject: CN=c2775b21621a8997df6974d453f5aba4c2e899be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e2:23:98:15:a8:4f:65:93:8e:5a:c9:57:eb:
17:92:46:2f:06:f9:7f:3a:c9:9e:0e:3d:7a:be:35:
ef:7c:a5:77:34:0b:a8:05:4d:a3:b3:41:4b:29:2b:
b9:8c:76:da:d5:48:90:c9:d7:e6:46:88:89:6d:4c:
ad:6c:d0:2a:4e:f2:4a:5f:3e:c3:72:49:fe:62:1f:
d9:a3:92:65:4a:f6:48:74:2f:9c:8f:0f:cc:ba:fc:
06:9a:5f:5b:99:1f:ac:2f:7a:0c:13:5d:e8:02:31:
1f:3f:e1:89:fc:fc:35:5b:d1:d4:43:2e:13:a2:b0:
0c:64:29:32:67:1b:4f:87:1d:99:c3:5c:d9:35:9d:
d0:2b:a8:3a:49:4d:da:4b:5b:14:f7:5a:f9:f2:ed:
4a:b1:49:eb:32:25:87:e6:2e:81:c4:77:c0:07:8e:
4a:f4:cb:23:84:c8:89:f4:9e:e2:4b:7b:85:00:62:
bc:e4:18:04:89:a3:cb:15:d6:6f:e7:c0:38:59:7c:
34:a8:61:e7:0c:ff:d9:33:dd:70:1c:2a:a9:d7:16:
e6:fd:db:8b:b3:16:a0:43:0f:f7:52:8e:22:bb:6d:
7f:5a:15:14:3b:04:d7:45:e3:39:6f:62:3e:52:83:
25:72:59:a8:38:fd:d4:17:fb:9e:70:f1:3e:41:b5:
b2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:77:5B:21:62:1A:89:97:DF:69:74:D4:53:F5:AB:A4:C2:E8:99:BE
X509v3 Authority Key Identifier:
keyid:36:E7:CF:DD:12:91:93:E2:19:C3:70:12:1C:A1:62:50:E4:29:B5:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NufP3RKRk-IZw3ASHKFiUOQptYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:f3:98:ac:f1:e7:8d:04:a0:24:89:74:f6:a3:65:11:72:40:
29:30:75:b9:d6:d6:d5:e2:6c:a6:05:82:b9:8c:12:81:df:03:
d2:43:88:4d:d2:c6:cd:39:05:1b:79:1a:bb:29:e6:1e:27:30:
d7:b3:99:87:c7:99:e7:73:01:0a:77:d1:c7:33:eb:1e:0e:ab:
57:15:e1:bc:42:e1:fc:2e:ed:bd:25:25:19:e9:0f:ea:ed:07:
97:46:63:58:f0:98:44:99:8e:8d:70:48:5d:fc:98:8a:61:c2:
86:b7:6e:2d:d0:1c:8d:dd:9a:71:f5:1b:64:6a:79:a1:5a:ee:
82:69:dd:64:20:7a:01:2c:4e:3e:15:2d:e6:f9:9e:5f:99:aa:
ab:97:e7:6f:c4:48:23:a2:07:0a:0c:0c:88:29:06:2e:8b:a6:
04:87:4e:b2:fe:a4:08:13:cc:a3:5e:7f:3b:9b:02:93:ca:60:
2d:95:2a:e2:e8:dc:ea:43:fc:75:95:81:5d:dc:9a:a5:ca:6d:
cf:45:b6:23:2c:b3:69:4d:25:8c:e7:f5:35:14:a4:7b:30:09:
10:10:b6:48:64:d5:82:94:19:76:f0:b1:09:6c:e5:9d:d2:9a:
8e:e1:1f:d4:64:7c:a1:52:3f:96:35:83:a8:f2:fa:e8:77:a8:
00:96:84:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWzORG0XefyiW6w5SwOW22MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2ZTdjZmRkMTI5MTkzZTIxOWMzNzAxMjFjYTE2MjUwZTQy
OWI1OGIwHhcNMjUwODIzMTIwMDA4WhcNMjUwODI0MTIwMDA4WjAzMTEwLwYDVQQD
EyhjMjc3NWIyMTYyMWE4OTk3ZGY2OTc0ZDQ1M2Y1YWJhNGMyZTg5OWJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+IjmBWoT2WTjlrJV+sXkkYvBvl/
OsmeDj16vjXvfKV3NAuoBU2js0FLKSu5jHba1UiQydfmRoiJbUytbNAqTvJKXz7D
ckn+Yh/Zo5JlSvZIdC+cjw/MuvwGml9bmR+sL3oME13oAjEfP+GJ/Pw1W9HUQy4T
orAMZCkyZxtPhx2Zw1zZNZ3QK6g6SU3aS1sU91r58u1KsUnrMiWH5i6BxHfAB45K
9MsjhMiJ9J7iS3uFAGK85BgEiaPLFdZv58A4WXw0qGHnDP/ZM91wHCqp1xbm/duL
sxagQw/3Uo4iu21/WhUUOwTXReM5b2I+UoMlclmoOP3UF/uecPE+QbWyQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMJ3WyFiGomX32l01FP1q6TC6Jm+MB8GA1UdIwQY
MBaAFDbnz90SkZPiGcNwEhyhYlDkKbWLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnVmUDNSS1JrLUladzNBU0hLRmlVT1FwdFlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8zNTU1ZTAtOTQ0My00ZTYzLWE4OWIt
ZGQxN2JmZDY3Y2QzLzEvTnVmUDNSS1JrLUladzNBU0hLRmlVT1FwdFlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy8zNTU1ZTAtOTQ0My00ZTYzLWE4OWItZGQxN2JmZDY3Y2Qz
LzEvTnVmUDNSS1JrLUladzNBU0hLRmlVT1FwdFlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJvOYrPHn
jQSgJIl09qNlEXJAKTB1udbW1eJspgWCuYwSgd8D0kOITdLGzTkFG3kauynmHicw
17OZh8eZ53MBCnfRxzPrHg6rVxXhvELh/C7tvSUlGekP6u0Hl0ZjWPCYRJmOjXBI
XfyYimHChrduLdAcjd2acfUbZGp5oVrugmndZCB6ASxOPhUt5vmeX5mqq5fnb8RI
I6IHCgwMiCkGLoumBIdOsv6kCBPMo15/O5sCk8pgLZUq4ujc6kP8dZWBXdyapcpt
z0W2IyyzaU0ljOf1NRSkezAJEBC2SGTVgpQZdvCxCWzlndKajuEf1GR8oVI/ljWD
qPL66HeoAJaEKA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:33:02 2025 by rpki-client