Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
File: nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft (raw, json)
Hash identifier: FDoDBoqGzUH6fcc1yYwCP3VLhplDpg2PRQ88Loj2u+w=
Subject key identifier: 98:39:E4:81:0D:9C:A3:59:2E:9C:B2:F4:5D:52:66:94:95:09:5A:33
Authority key identifier: 9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC
Certificate issuer: /CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec
Certificate serial: 0197C4CA592A131C8495F5A6C234FB263B45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
Manifest number: 15B9
Signing time: Tue 01 Jul 2025 07:01:24 +0000
Manifest this update: Tue 01 Jul 2025 07:01:24 +0000
Manifest next update: Wed 02 Jul 2025 07:01:24 +0000
Files and hashes: 1: RvlNk8dGKorZzV6RSRdv-WDV_HE.roa (hash: KtznCFrYuNrxb/iIoe3x5KvOTsGXxBUw5Sa9+KNOTgg=)
2: nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl (hash: E81U5BMKFrktDOp/CEDIMmR81aOXSDFaBeCIrGrhXm8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 07:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c4:ca:59:2a:13:1c:84:95:f5:a6:c2:34:fb:26:3b:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec
Validity
Not Before: Jul 1 07:01:24 2025 GMT
Not After : Jul 2 07:01:24 2025 GMT
Subject: CN=9839e4810d9ca3592e9cb2f45d52669495095a33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8f:48:06:90:d6:f3:94:d6:d7:c3:f8:7a:b4:
79:57:69:63:7e:64:97:7f:b6:3d:c3:4e:bf:c6:a2:
3a:b8:2a:e9:1d:5d:3b:4b:c1:f5:54:ad:b4:9d:10:
46:ff:c4:e6:18:ac:38:eb:76:bf:c9:2b:e1:79:7e:
a1:e8:a5:a4:75:ab:f2:4a:f9:83:89:08:12:2c:8e:
30:d0:45:fd:8c:f1:2d:65:cd:32:be:ba:2b:8e:8f:
89:e3:97:77:b9:85:f2:85:50:f1:9f:a9:e8:4b:70:
51:6a:1a:eb:bf:56:9b:f3:26:e1:71:ed:44:7f:98:
b4:eb:7e:40:bb:4e:d8:c7:d1:ac:46:6d:39:ed:2e:
72:3e:19:b8:5b:2d:43:b8:b8:d5:33:d1:2d:78:c7:
71:18:4a:86:82:dc:ff:e7:ea:48:26:c9:ee:b4:29:
6a:27:cc:68:af:bf:e9:36:3e:c1:e9:4b:9f:e2:64:
96:2f:26:81:91:17:da:e7:af:af:1f:9a:5c:94:94:
02:15:31:8b:b7:64:a9:e8:ba:fd:ce:fe:9e:c5:75:
8a:41:d4:ec:f4:bf:b2:0d:1a:40:95:6f:2e:7b:6e:
b9:05:95:02:0b:f4:75:3e:91:eb:e6:40:47:8d:ff:
9b:99:8d:f2:b6:86:61:ab:7b:99:d8:92:77:03:a9:
82:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:39:E4:81:0D:9C:A3:59:2E:9C:B2:F4:5D:52:66:94:95:09:5A:33
X509v3 Authority Key Identifier:
keyid:9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:ee:77:e4:62:40:dd:95:89:0a:6e:4a:76:95:3d:a1:76:46:
10:76:a7:73:2c:93:49:34:f1:89:33:a4:e3:6b:3d:c8:11:0b:
82:3c:92:a2:7c:ce:8b:ec:e9:c2:76:23:a6:79:03:39:d0:f4:
49:39:32:bd:c2:57:56:93:54:32:8a:be:4e:bd:dd:4d:6c:5e:
bc:bd:1d:d8:9f:dd:44:d7:39:c5:f5:10:51:b4:f8:c0:86:c0:
3f:c4:73:28:0c:02:e0:0c:8d:c2:2a:91:b8:b0:8a:44:43:ba:
d1:7f:2e:92:8c:25:8b:ea:98:33:f8:c6:4d:74:39:4b:d1:de:
0f:19:16:1c:30:57:17:cd:90:5e:0a:c5:2e:e4:4f:01:12:03:
dc:f9:8b:23:de:50:33:a7:26:79:3f:8f:97:bf:4d:b7:bc:5a:
44:3a:77:c9:b9:2b:fd:9e:bd:99:60:ca:e7:ec:ed:2b:96:40:
83:b1:b8:5f:4c:e1:43:38:7c:42:f4:b6:4e:30:f5:a0:7e:78:
2e:7a:a7:36:b1:cd:47:1d:71:df:44:56:ff:cf:84:78:20:54:
f4:78:ea:82:a8:c6:17:99:12:19:d0:b4:ce:4d:2b:10:22:0e:
d1:5a:36:c9:e4:f1:60:f8:11:e4:e2:50:f5:16:5b:17:2c:d9:
50:f8:47:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfEylkqExyElfWmwjT7JjtFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkZmUzMGEwMTQ3ODQ2MjVkYjJjOWRjOTBhZTNjZTE1ZTU0
YTg4ZWMwHhcNMjUwNzAxMDcwMTI0WhcNMjUwNzAyMDcwMTI0WjAzMTEwLwYDVQQD
Eyg5ODM5ZTQ4MTBkOWNhMzU5MmU5Y2IyZjQ1ZDUyNjY5NDk1MDk1YTMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq49IBpDW85TW18P4erR5V2ljfmSX
f7Y9w06/xqI6uCrpHV07S8H1VK20nRBG/8TmGKw463a/ySvheX6h6KWkdavySvmD
iQgSLI4w0EX9jPEtZc0yvrorjo+J45d3uYXyhVDxn6noS3BRahrrv1ab8ybhce1E
f5i0635Au07Yx9GsRm057S5yPhm4Wy1DuLjVM9EteMdxGEqGgtz/5+pIJsnutClq
J8xor7/pNj7B6Uuf4mSWLyaBkRfa56+vH5pclJQCFTGLt2Sp6Lr9zv6exXWKQdTs
9L+yDRpAlW8ue265BZUCC/R1PpHr5kBHjf+bmY3ytoZhq3uZ2JJ3A6mCWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJg55IENnKNZLpyy9F1SZpSVCVozMB8GA1UdIwQY
MBaAFJ3+MKAUeEYl2yydyQrjzhXlSojsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmY0d29CUjRSaVhiTEozSkN1UE9GZVZLaU93LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8zZDE0OTUtMGVmOC00OWIxLTk5ZTIt
NjA0ZTIzNzQ3NzY5LzEvbmY0d29CUjRSaVhiTEozSkN1UE9GZVZLaU93Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi8zZDE0OTUtMGVmOC00OWIxLTk5ZTItNjA0ZTIzNzQ3NzY5
LzEvbmY0d29CUjRSaVhiTEozSkN1UE9GZVZLaU93LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUu535GJA
3ZWJCm5KdpU9oXZGEHancyyTSTTxiTOk42s9yBELgjySonzOi+zpwnYjpnkDOdD0
STkyvcJXVpNUMoq+Tr3dTWxevL0d2J/dRNc5xfUQUbT4wIbAP8RzKAwC4AyNwiqR
uLCKREO60X8ukowli+qYM/jGTXQ5S9HeDxkWHDBXF82QXgrFLuRPARID3PmLI95Q
M6cmeT+Pl79Nt7xaRDp3ybkr/Z69mWDK5+ztK5ZAg7G4X0zhQzh8QvS2TjD1oH54
LnqnNrHNRx1x30RW/8+EeCBU9HjqgqjGF5kSGdC0zk0rECIO0Vo2yeTxYPgR5OJQ
9RZbFyzZUPhHMw==
-----END CERTIFICATE-----
Generated at Tue Jul 1 13:12:50 2025 by rpki-client