Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
File: NVyaW8uDQBCKQchiduHLlKYefak.mft (raw, json)
Hash identifier: ajMzy1xMbXwhLVUN9Cm/KCMwi9OSYQVXiXihT4L2I4E=
Subject key identifier: C0:3B:68:D7:8B:E6:B0:40:EE:BE:CF:99:75:3E:7D:1E:54:59:D4:C7
Authority key identifier: 35:5C:9A:5B:CB:83:40:10:8A:41:C8:62:76:E1:CB:94:A6:1E:7D:A9
Certificate issuer: /CN=355c9a5bcb8340108a41c86276e1cb94a61e7da9
Certificate serial: 0198D515877E63F384DA29C78E3FC3DAF643
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
Manifest number: 0EE2
Signing time: Sat 23 Aug 2025 04:00:14 +0000
Manifest this update: Sat 23 Aug 2025 04:00:14 +0000
Manifest next update: Sun 24 Aug 2025 04:00:14 +0000
Files and hashes: 1: 5KKpk9qEveM_ucLAOYR8lDjQsvs.roa (hash: FsEABHDgSk6DaTySsepeca9yMLpdy1J0E11YMBOaZ9k=)
2: NVyaW8uDQBCKQchiduHLlKYefak.crl (hash: pFVHBd0CG1xki6IzSQXhRvw3rqWvpHsC+d1c1QS94hI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:87:7e:63:f3:84:da:29:c7:8e:3f:c3:da:f6:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=355c9a5bcb8340108a41c86276e1cb94a61e7da9
Validity
Not Before: Aug 23 04:00:14 2025 GMT
Not After : Aug 24 04:00:14 2025 GMT
Subject: CN=c03b68d78be6b040eebecf99753e7d1e5459d4c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d3:42:95:c6:b4:69:9a:6c:21:22:cf:90:49:
82:9e:be:72:42:14:bb:f6:2b:62:9c:71:28:9b:b5:
38:a1:d0:44:86:b6:e0:d4:1e:18:65:3d:75:82:9a:
7d:a6:1e:2c:42:c9:71:43:b9:54:23:d5:62:1d:fa:
58:ea:17:c7:de:31:ff:a2:37:bb:5e:72:2f:cb:54:
9b:23:fb:64:fa:a8:fd:48:fa:67:1c:97:22:36:90:
5b:f5:c3:90:c6:6f:81:3f:14:9e:9b:83:8a:ac:9d:
e3:36:86:92:e6:ed:1d:ed:98:38:0a:8b:b7:44:40:
47:e9:a2:e1:31:5e:3f:fb:76:8d:55:f2:15:4e:3e:
ee:f1:b3:72:a8:8b:bc:36:f3:dd:c1:7f:27:26:e7:
36:d8:09:e2:d6:c1:01:fb:2a:c2:b8:7e:4d:b0:12:
20:11:17:1f:a3:bf:df:8f:54:67:6a:7d:77:60:d6:
54:5d:93:8e:3a:95:76:06:ba:2f:ae:1f:d4:37:c0:
c3:7c:3a:da:eb:2b:2e:5f:fc:54:53:f3:91:91:08:
24:02:f0:b5:f1:38:b6:a3:cc:e8:86:c4:25:ae:54:
9c:a9:e7:6b:86:19:4a:e8:2b:64:68:ba:9b:ab:34:
d4:19:ea:f6:a3:40:1c:68:e4:a9:9c:aa:37:59:ab:
6a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:3B:68:D7:8B:E6:B0:40:EE:BE:CF:99:75:3E:7D:1E:54:59:D4:C7
X509v3 Authority Key Identifier:
keyid:35:5C:9A:5B:CB:83:40:10:8A:41:C8:62:76:E1:CB:94:A6:1E:7D:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:41:0e:51:bf:83:25:b5:0d:2e:b6:a0:fd:1e:27:5d:0e:3d:
3e:e6:0c:6e:0c:fc:3a:1b:46:ce:83:88:a7:63:3f:c7:80:bd:
21:14:82:08:89:5f:92:62:4a:45:af:5a:2a:13:f4:92:99:28:
19:14:d2:15:98:78:88:43:30:b6:24:d1:bf:52:42:64:d3:86:
cd:51:36:54:20:9f:6c:a4:d4:ea:76:d9:fa:91:50:06:a7:2c:
aa:2c:1a:f3:39:9a:ed:f0:e8:dc:77:7a:94:c0:56:a0:2e:96:
cb:31:90:e9:69:2c:3b:ae:ff:49:4b:13:95:b9:b0:b8:25:e2:
3f:78:4e:77:97:42:b7:03:de:64:17:33:30:af:f1:54:be:9e:
82:eb:e4:dc:fe:b8:4f:d0:58:e9:ef:e9:33:03:0f:da:bf:b9:
f6:4a:cf:3f:3c:2f:fc:b2:22:a0:4c:73:6e:96:af:6a:ae:ec:
ff:54:00:aa:b9:50:af:27:81:5b:81:f3:d5:f6:9a:36:c8:40:
38:9e:8b:6c:e4:9d:3f:d1:28:ae:b3:dd:24:4f:af:ff:05:7c:
b9:56:89:3d:ac:3e:11:57:73:69:e2:bf:f2:22:f0:6e:63:aa:
01:53:82:38:4f:f6:01:f3:32:66:4b:45:30:be:2e:10:2a:e1:
e8:6a:8f:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFYd+Y/OE2inHjj/D2vZDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NWM5YTViY2I4MzQwMTA4YTQxYzg2Mjc2ZTFjYjk0YTYx
ZTdkYTkwHhcNMjUwODIzMDQwMDE0WhcNMjUwODI0MDQwMDE0WjAzMTEwLwYDVQQD
EyhjMDNiNjhkNzhiZTZiMDQwZWViZWNmOTk3NTNlN2QxZTU0NTlkNGM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApNNClca0aZpsISLPkEmCnr5yQhS7
9itinHEom7U4odBEhrbg1B4YZT11gpp9ph4sQslxQ7lUI9ViHfpY6hfH3jH/oje7
XnIvy1SbI/tk+qj9SPpnHJciNpBb9cOQxm+BPxSem4OKrJ3jNoaS5u0d7Zg4Cou3
REBH6aLhMV4/+3aNVfIVTj7u8bNyqIu8NvPdwX8nJuc22Ani1sEB+yrCuH5NsBIg
ERcfo7/fj1Rnan13YNZUXZOOOpV2Brovrh/UN8DDfDra6ysuX/xUU/ORkQgkAvC1
8Ti2o8zohsQlrlScqedrhhlK6CtkaLqbqzTUGer2o0AcaOSpnKo3Watq0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMA7aNeL5rBA7r7PmXU+fR5UWdTHMB8GA1UdIwQY
MBaAFDVcmlvLg0AQikHIYnbhy5SmHn2pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlZ5YVc4dURRQkNLUWNoaWR1SExsS1llZmFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS8zZjQyNmYtNzllZS00Y2IyLWFiMTct
MzBkNjRmZjcwYjkwLzEvTlZ5YVc4dURRQkNLUWNoaWR1SExsS1llZmFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS8zZjQyNmYtNzllZS00Y2IyLWFiMTctMzBkNjRmZjcwYjkw
LzEvTlZ5YVc4dURRQkNLUWNoaWR1SExsS1llZmFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVEEOUb+D
JbUNLrag/R4nXQ49PuYMbgz8OhtGzoOIp2M/x4C9IRSCCIlfkmJKRa9aKhP0kpko
GRTSFZh4iEMwtiTRv1JCZNOGzVE2VCCfbKTU6nbZ+pFQBqcsqiwa8zma7fDo3Hd6
lMBWoC6WyzGQ6WksO67/SUsTlbmwuCXiP3hOd5dCtwPeZBczMK/xVL6eguvk3P64
T9BY6e/pMwMP2r+59krPPzwv/LIioExzbpavaq7s/1QAqrlQryeBW4Hz1faaNshA
OJ6LbOSdP9EorrPdJE+v/wV8uVaJPaw+EVdzaeK/8iLwbmOqAVOCOE/2AfMyZktF
ML4uECrh6GqPwQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:27:44 2025 by rpki-client