Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
File: nzbQijzYpC9Goslt_XLtjO4nlHc.mft (raw, json)
Hash identifier: fJ4z6VASoiZuuvJ2BMba1hwr5HSF07fH09t9JBuEMDI=
Subject key identifier: 7F:8A:61:A9:5D:E9:B3:72:6E:5D:9D:A8:A4:AF:B6:BE:D1:1B:40:E6
Authority key identifier: 9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
Certificate issuer: /CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Certificate serial: 0198D5BB866814D3B48A631598278340703B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
Manifest number: 0C51
Signing time: Sat 23 Aug 2025 07:01:33 +0000
Manifest this update: Sat 23 Aug 2025 07:01:33 +0000
Manifest next update: Sun 24 Aug 2025 07:01:33 +0000
Files and hashes: 1: nzbQijzYpC9Goslt_XLtjO4nlHc.crl (hash: 2x2bl2wn84q8oWxWqwG5X7tDL5U3O7LgZxe0XQArF/4=)
2: twzQnUgBAT35ET2oNZWOjjEoBE4.roa (hash: HIWNIMTAhxf1Wnub1ymBGmdU28kJ6snFsV9+PWAEB7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:86:68:14:d3:b4:8a:63:15:98:27:83:40:70:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Validity
Not Before: Aug 23 07:01:33 2025 GMT
Not After : Aug 24 07:01:33 2025 GMT
Subject: CN=7f8a61a95de9b3726e5d9da8a4afb6bed11b40e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:53:65:65:ae:42:80:08:ab:8b:7c:0d:c6:0c:
6d:e6:6c:af:be:a2:cc:a9:33:81:35:1e:53:fb:6b:
e2:21:ab:61:30:b5:59:df:f7:da:f7:13:b6:43:14:
59:d7:81:1b:b5:dc:00:ca:f4:05:03:9f:07:94:60:
7b:69:55:3d:fb:0b:3b:a5:b1:16:02:48:bb:97:59:
96:b1:11:34:d2:e7:5b:d9:bf:7c:ac:34:52:09:25:
b8:20:17:74:29:ef:1d:ae:c6:93:1f:20:89:96:c8:
fb:b2:ed:3c:b2:cd:52:c1:9d:14:03:09:f0:4a:56:
d2:2f:b4:c2:fa:57:46:47:90:ec:1e:76:fb:64:ad:
21:b7:0c:ef:f0:2c:36:0d:68:a2:50:17:3b:b6:c9:
f1:bb:7b:1c:58:5e:27:44:0a:f9:21:f2:c3:93:7c:
f5:34:96:13:7c:99:88:be:7a:95:93:ca:f0:b0:76:
6b:37:68:e0:5e:53:82:f7:4b:8e:92:7a:5b:f4:72:
e3:19:97:65:b0:43:3d:09:3c:e1:81:08:64:fd:0b:
9d:01:66:1f:b1:6a:26:d6:65:a7:02:7d:b7:b0:24:
c5:0e:2d:69:f2:35:46:dc:62:81:d5:e9:cf:b6:33:
12:1d:93:fb:43:1b:5c:de:68:5e:52:75:48:cd:b8:
19:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:8A:61:A9:5D:E9:B3:72:6E:5D:9D:A8:A4:AF:B6:BE:D1:1B:40:E6
X509v3 Authority Key Identifier:
keyid:9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:8a:2e:8c:6d:73:66:6c:39:e0:dd:10:82:bb:d9:02:34:b8:
e3:77:21:bc:92:0e:ea:88:ad:ee:0a:7d:85:28:a3:97:97:ad:
a2:2d:7b:65:34:e5:3d:f3:66:cd:17:48:f8:33:ad:1b:70:fc:
7b:93:cf:bd:6d:59:f0:f4:ab:b2:36:49:e0:66:a4:f7:8b:0e:
83:67:de:0a:7d:e4:e7:1c:7a:86:f4:5c:48:23:04:10:0d:29:
ae:19:e4:a1:e0:59:89:43:86:68:6a:59:0a:54:32:c5:01:35:
c0:5c:55:48:72:65:3f:d6:1b:af:76:30:a1:b7:53:45:70:72:
22:80:c8:6d:da:bf:6c:cc:39:46:45:9e:b5:09:a5:52:0c:3f:
b8:52:89:8f:cd:32:4e:24:09:85:4e:04:da:e3:b7:ce:ca:c9:
a5:7d:57:32:e9:dd:1b:de:e6:0c:28:d8:af:86:eb:d4:93:3f:
fe:3e:22:43:71:dc:63:12:49:c7:6c:cf:8b:50:75:68:98:91:
08:3e:1f:9b:fe:0c:3e:2e:88:07:13:22:f7:c7:cb:54:3d:26:
3a:92:80:c3:d7:d0:45:21:c7:74:54:36:9f:64:58:41:a3:3d:
90:d6:b6:06:58:39:7c:ae:e9:28:4d:28:7a:9a:2f:e5:88:99:
d4:3f:ca:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVu4ZoFNO0imMVmCeDQHA7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMzZkMDhhM2NkOGE0MmY0NmEyYzk2ZGZkNzJlZDhjZWUy
Nzk0NzcwHhcNMjUwODIzMDcwMTMzWhcNMjUwODI0MDcwMTMzWjAzMTEwLwYDVQQD
Eyg3ZjhhNjFhOTVkZTliMzcyNmU1ZDlkYThhNGFmYjZiZWQxMWI0MGU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FNlZa5CgAiri3wNxgxt5myvvqLM
qTOBNR5T+2viIathMLVZ3/fa9xO2QxRZ14EbtdwAyvQFA58HlGB7aVU9+ws7pbEW
Aki7l1mWsRE00udb2b98rDRSCSW4IBd0Ke8drsaTHyCJlsj7su08ss1SwZ0UAwnw
SlbSL7TC+ldGR5DsHnb7ZK0htwzv8Cw2DWiiUBc7tsnxu3scWF4nRAr5IfLDk3z1
NJYTfJmIvnqVk8rwsHZrN2jgXlOC90uOknpb9HLjGZdlsEM9CTzhgQhk/QudAWYf
sWom1mWnAn23sCTFDi1p8jVG3GKB1enPtjMSHZP7Qxtc3mheUnVIzbgZsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH+KYald6bNybl2dqKSvtr7RG0DmMB8GA1UdIwQY
MBaAFJ820Io82KQvRqLJbf1y7YzuJ5R3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnpiUWlqellwQzlHb3NsdF9YTHRqTzRubEhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8yZmJiYTctZWEwZS00MDg5LTk3Mjct
YzMzMzcyYzlkNTA3LzEvbnpiUWlqellwQzlHb3NsdF9YTHRqTzRubEhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi8yZmJiYTctZWEwZS00MDg5LTk3MjctYzMzMzcyYzlkNTA3
LzEvbnpiUWlqellwQzlHb3NsdF9YTHRqTzRubEhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKIoujG1z
Zmw54N0QgrvZAjS443chvJIO6oit7gp9hSijl5etoi17ZTTlPfNmzRdI+DOtG3D8
e5PPvW1Z8PSrsjZJ4Gak94sOg2feCn3k5xx6hvRcSCMEEA0prhnkoeBZiUOGaGpZ
ClQyxQE1wFxVSHJlP9Ybr3YwobdTRXByIoDIbdq/bMw5RkWetQmlUgw/uFKJj80y
TiQJhU4E2uO3zsrJpX1XMundG97mDCjYr4br1JM//j4iQ3HcYxJJx2zPi1B1aJiR
CD4fm/4MPi6IBxMi98fLVD0mOpKAw9fQRSHHdFQ2n2RYQaM9kNa2Blg5fK7pKE0o
epov5YiZ1D/K5A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:38:09 2025 by rpki-client