Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
File: NADZSQmD598yx88Xyh6tTwX3lkY.mft (raw, json)
Hash identifier: PY5JoqaeODLVWRjc2m8V/+Ecx1ftEnCulRDqivpYFd8=
Subject key identifier: CF:0E:19:3C:03:41:4A:87:E5:C5:C8:0C:79:B8:0C:D2:86:1F:9D:74
Authority key identifier: 34:00:D9:49:09:83:E7:DF:32:C7:CF:17:CA:1E:AD:4F:05:F7:96:46
Certificate issuer: /CN=3400d9490983e7df32c7cf17ca1ead4f05f79646
Certificate serial: 0197B7EA194A1B7E1BEC9A888A74D04DEAE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
Manifest number: 0728
Signing time: Sat 28 Jun 2025 19:01:01 +0000
Manifest this update: Sat 28 Jun 2025 19:01:01 +0000
Manifest next update: Sun 29 Jun 2025 19:01:01 +0000
Files and hashes: 1: NADZSQmD598yx88Xyh6tTwX3lkY.crl (hash: AQyuXYTV5I8Zu4ej3fNu+w3jgYuMVPsRAEPzaythf5A=)
2: wGV9gdNmWFtWWUn9dwqAU6O3Xlw.roa (hash: e5ewBGv57i41ziAigHZZOeL98kqI4hYVQ5SbzM8SjnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:19:4a:1b:7e:1b:ec:9a:88:8a:74:d0:4d:ea:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3400d9490983e7df32c7cf17ca1ead4f05f79646
Validity
Not Before: Jun 28 19:01:01 2025 GMT
Not After : Jun 29 19:01:01 2025 GMT
Subject: CN=cf0e193c03414a87e5c5c80c79b80cd2861f9d74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:08:f2:76:2c:b6:9f:c5:d8:47:da:98:a7:68:
9a:23:07:af:79:f7:c8:b0:a3:48:a1:33:5f:0a:bf:
0e:ed:7b:97:3a:51:9c:9d:aa:9b:a4:f9:a8:f6:74:
ed:45:f1:af:c6:f4:84:6b:8f:bd:dc:b9:08:80:1b:
21:29:5a:d6:4d:ac:73:82:65:7b:7a:ba:0d:fe:15:
e4:8f:6a:8f:30:2e:cf:32:54:11:6e:40:b6:59:d7:
ec:c0:5e:b6:e9:6c:54:ba:d3:79:e1:31:a9:62:5b:
7d:6b:8a:8a:a4:6b:ca:88:ec:26:72:bc:56:06:ff:
7a:0c:66:7a:c8:c6:a1:f3:0e:a7:db:b1:4a:eb:5c:
fd:05:a0:55:5e:16:a2:5f:4c:e3:12:3a:a4:6c:e1:
a7:98:ed:47:49:2a:71:89:aa:6f:7c:1c:aa:a3:a7:
97:0a:26:e2:52:42:79:88:cd:d5:78:3e:9c:e6:5e:
e6:2e:09:b5:33:b3:2e:e5:ea:d6:af:08:95:3b:32:
44:a1:1b:42:42:e1:09:c0:fc:4b:32:f1:71:e0:5a:
b0:d6:c1:28:c4:db:83:3a:ab:ce:5f:42:20:94:d6:
af:51:61:fd:a3:6d:bc:af:24:f9:b4:97:49:69:b5:
a0:75:01:b4:17:7e:be:dd:62:26:cd:10:4b:56:6d:
8b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:0E:19:3C:03:41:4A:87:E5:C5:C8:0C:79:B8:0C:D2:86:1F:9D:74
X509v3 Authority Key Identifier:
keyid:34:00:D9:49:09:83:E7:DF:32:C7:CF:17:CA:1E:AD:4F:05:F7:96:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:e6:85:02:c9:f7:50:45:a9:32:34:5c:c2:e3:3e:75:1f:e6:
dd:54:de:7c:39:1d:b7:d3:36:63:34:9b:69:cf:15:14:a2:19:
2c:96:fd:2b:77:8c:6f:08:a6:19:3d:09:f8:c2:e7:1a:56:53:
9b:7f:12:75:6f:07:f1:af:58:64:29:dc:2e:98:bb:76:da:c2:
7e:88:18:68:b0:74:bd:ec:a4:75:9f:09:f6:c3:0f:ac:d1:d3:
6e:29:3e:cf:a0:47:83:a4:1e:e8:69:a5:34:c2:51:7e:01:b9:
48:03:24:82:5a:f2:41:f7:7e:67:6b:d1:f6:8a:e0:5f:b9:12:
90:07:e7:18:b7:0e:f0:15:be:df:57:03:07:84:70:94:5d:f2:
5f:b5:9d:6c:d3:0f:3f:c7:6d:54:4a:e3:db:8c:a2:77:55:3d:
68:4d:99:ee:c7:57:13:f0:50:2c:16:c2:b9:9b:e4:a1:c5:3f:
ef:53:1a:60:c8:2f:e5:10:b4:0e:bd:23:10:a0:ea:78:12:c6:
59:de:71:12:76:28:99:bd:7c:cf:1a:c3:f2:f6:e6:e3:37:b4:
38:11:90:20:4c:1d:9a:82:91:ae:f0:f2:e8:a0:03:91:9c:23:
4d:8d:47:8d:bf:ce:72:5b:d6:5e:b5:25:84:42:10:1e:44:99:
e2:27:43:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36hlKG34b7JqIinTQTeroMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0MDBkOTQ5MDk4M2U3ZGYzMmM3Y2YxN2NhMWVhZDRmMDVm
Nzk2NDYwHhcNMjUwNjI4MTkwMTAxWhcNMjUwNjI5MTkwMTAxWjAzMTEwLwYDVQQD
EyhjZjBlMTkzYzAzNDE0YTg3ZTVjNWM4MGM3OWI4MGNkMjg2MWY5ZDc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvAjydiy2n8XYR9qYp2iaIweveffI
sKNIoTNfCr8O7XuXOlGcnaqbpPmo9nTtRfGvxvSEa4+93LkIgBshKVrWTaxzgmV7
eroN/hXkj2qPMC7PMlQRbkC2WdfswF626WxUutN54TGpYlt9a4qKpGvKiOwmcrxW
Bv96DGZ6yMah8w6n27FK61z9BaBVXhaiX0zjEjqkbOGnmO1HSSpxiapvfByqo6eX
CibiUkJ5iM3VeD6c5l7mLgm1M7Mu5erWrwiVOzJEoRtCQuEJwPxLMvFx4Fqw1sEo
xNuDOqvOX0IglNavUWH9o228ryT5tJdJabWgdQG0F36+3WImzRBLVm2LKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM8OGTwDQUqH5cXIDHm4DNKGH510MB8GA1UdIwQY
MBaAFDQA2UkJg+ffMsfPF8oerU8F95ZGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkFEWlNRbUQ1OTh5eDg4WHloNnRUd1gzbGtZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy9mZWZjMTItMmZjMi00MzBkLTk2MDYt
ZjQ5NDZmMDNmNTQyLzEvTkFEWlNRbUQ1OTh5eDg4WHloNnRUd1gzbGtZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy9mZWZjMTItMmZjMi00MzBkLTk2MDYtZjQ5NDZmMDNmNTQy
LzEvTkFEWlNRbUQ1OTh5eDg4WHloNnRUd1gzbGtZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOeaFAsn3
UEWpMjRcwuM+dR/m3VTefDkdt9M2YzSbac8VFKIZLJb9K3eMbwimGT0J+MLnGlZT
m38SdW8H8a9YZCncLpi7dtrCfogYaLB0veykdZ8J9sMPrNHTbik+z6BHg6Qe6Gml
NMJRfgG5SAMkglryQfd+Z2vR9orgX7kSkAfnGLcO8BW+31cDB4RwlF3yX7WdbNMP
P8dtVErj24yid1U9aE2Z7sdXE/BQLBbCuZvkocU/71MaYMgv5RC0Dr0jEKDqeBLG
Wd5xEnYomb18zxrD8vbm4ze0OBGQIEwdmoKRrvDy6KADkZwjTY1Hjb/OclvWXrUl
hEIQHkSZ4idDsA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:30:06 2025 by rpki-client