Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.mft
File: NSfzoow8WhVFLOxPVswmno6tnXI.mft (raw, json)
Hash identifier: gcSr0qbZ2FogtvyIfGBr/Evt2/QvOtj8B1uKFP8Ws1g=
Subject key identifier: E3:22:9B:70:A6:D8:59:F2:33:F4:51:F7:E4:5B:92:F0:0D:11:A5:3C
Authority key identifier: 35:27:F3:A2:8C:3C:5A:15:45:2C:EC:4F:56:CC:26:9E:8E:AD:9D:72
Certificate issuer: /CN=3527f3a28c3c5a15452cec4f56cc269e8ead9d72
Certificate serial: 0198D473907A06ABCC2B71C55C1D22DDDEA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSfzoow8WhVFLOxPVswmno6tnXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.mft
Manifest number: 1644
Signing time: Sat 23 Aug 2025 01:03:20 +0000
Manifest this update: Sat 23 Aug 2025 01:03:20 +0000
Manifest next update: Sun 24 Aug 2025 01:03:20 +0000
Files and hashes: 1: NSfzoow8WhVFLOxPVswmno6tnXI.crl (hash: hT2DpIFDByagZ0bt0y/ZvYX3hka5qwx3GED2g9w2WB0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NSfzoow8WhVFLOxPVswmno6tnXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:90:7a:06:ab:cc:2b:71:c5:5c:1d:22:dd:de:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3527f3a28c3c5a15452cec4f56cc269e8ead9d72
Validity
Not Before: Aug 23 01:03:20 2025 GMT
Not After : Aug 24 01:03:20 2025 GMT
Subject: CN=e3229b70a6d859f233f451f7e45b92f00d11a53c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:50:2b:16:a7:ad:0b:03:97:fd:04:90:66:7f:
5b:0b:3e:3a:d8:1a:d5:13:1a:20:03:21:84:d8:d4:
2c:88:5f:8e:2a:c3:02:fa:cf:2b:26:cb:93:91:e9:
ee:51:82:01:6e:c9:94:80:4e:be:93:b1:5b:00:8a:
13:8f:6d:d2:a2:49:17:bc:df:19:25:c7:25:ce:c5:
76:6e:45:76:b6:41:89:2a:95:97:7b:4c:4f:82:77:
a1:17:d7:b3:cc:22:53:8c:38:a8:43:99:c9:60:f7:
04:f5:e7:60:fb:da:61:07:1a:ea:96:d5:bc:2f:ae:
d9:36:ef:25:10:e2:1e:dc:4f:01:89:a0:8a:ab:f3:
fd:32:55:9e:f3:3c:2b:4e:6c:8b:2d:d1:f4:24:e7:
a3:56:a7:e0:8e:b0:78:bf:34:48:89:f5:c5:a4:e6:
e4:46:a2:1f:af:7a:73:ce:ea:d1:f2:6f:44:20:18:
bf:d1:95:b0:d6:2c:b0:72:8b:db:dd:8f:75:dc:5d:
15:88:56:62:7a:95:6c:21:49:1b:51:1b:a3:bf:24:
e2:72:78:88:f1:91:9c:05:d1:61:a6:92:da:c5:9f:
ce:9e:37:f5:0c:4a:c1:b0:50:da:cc:f5:97:09:53:
c7:83:dd:ed:8d:d8:d8:95:77:8d:9f:f6:45:39:45:
1f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:22:9B:70:A6:D8:59:F2:33:F4:51:F7:E4:5B:92:F0:0D:11:A5:3C
X509v3 Authority Key Identifier:
keyid:35:27:F3:A2:8C:3C:5A:15:45:2C:EC:4F:56:CC:26:9E:8E:AD:9D:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSfzoow8WhVFLOxPVswmno6tnXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:bf:c1:e9:cb:d9:8a:0f:29:fb:b6:c3:95:1b:11:80:e9:58:
c3:f0:fc:db:52:34:71:5c:63:60:0f:a9:08:61:90:e5:8e:32:
d3:8c:e1:49:8c:3a:d1:75:18:0b:b0:b0:08:ed:cd:13:35:8c:
e2:51:53:6a:d5:56:c3:e0:4a:99:8b:d7:2b:0b:a8:87:f0:80:
59:cf:e5:18:db:f9:5c:3b:e8:63:90:10:b3:db:ef:40:49:61:
31:e3:99:f2:7d:b5:4f:bf:59:35:9f:f9:49:bb:1a:c9:af:5d:
40:e6:55:83:aa:b6:e7:25:f0:cf:94:20:9e:61:a6:55:f6:8d:
58:08:70:24:5e:96:c8:ff:27:0c:36:53:ed:00:6a:83:17:f9:
d8:0e:18:3e:9c:9c:29:6a:e3:b6:90:be:39:2f:50:77:f0:a5:
0a:5e:b8:43:a1:22:d9:76:39:9a:f5:fd:e6:3f:e9:6a:df:6a:
3c:ac:d1:9e:df:69:ce:29:62:dd:b3:4c:5a:ee:72:ff:dc:99:
e2:b7:c2:1d:21:11:b0:c0:3a:b3:a6:21:9c:b4:5f:cf:b5:1d:
73:83:22:86:51:0d:3e:d5:10:6b:92:9b:ce:0b:a5:c5:de:f0:
63:de:50:86:64:b6:59:f3:1c:49:0d:5b:b6:d3:c7:3c:d5:26:
93:3c:f8:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUc5B6BqvMK3HFXB0i3d6nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1MjdmM2EyOGMzYzVhMTU0NTJjZWM0ZjU2Y2MyNjllOGVh
ZDlkNzIwHhcNMjUwODIzMDEwMzIwWhcNMjUwODI0MDEwMzIwWjAzMTEwLwYDVQQD
EyhlMzIyOWI3MGE2ZDg1OWYyMzNmNDUxZjdlNDViOTJmMDBkMTFhNTNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn1ArFqetCwOX/QSQZn9bCz462BrV
ExogAyGE2NQsiF+OKsMC+s8rJsuTkenuUYIBbsmUgE6+k7FbAIoTj23SokkXvN8Z
JcclzsV2bkV2tkGJKpWXe0xPgnehF9ezzCJTjDioQ5nJYPcE9edg+9phBxrqltW8
L67ZNu8lEOIe3E8BiaCKq/P9MlWe8zwrTmyLLdH0JOejVqfgjrB4vzRIifXFpObk
RqIfr3pzzurR8m9EIBi/0ZWw1iywcovb3Y913F0ViFZiepVsIUkbURujvyTicniI
8ZGcBdFhppLaxZ/Onjf1DErBsFDazPWXCVPHg93tjdjYlXeNn/ZFOUUfVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOMim3Cm2FnyM/RR9+RbkvANEaU8MB8GA1UdIwQY
MBaAFDUn86KMPFoVRSzsT1bMJp6OrZ1yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlNmem9vdzhXaFZGTE94UFZzd21ubzZ0blhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS85NDM5MDMtYmVlOS00ZGQ3LTg0YzIt
YTQ4ZmVjMWZjYjcwLzEvTlNmem9vdzhXaFZGTE94UFZzd21ubzZ0blhJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS85NDM5MDMtYmVlOS00ZGQ3LTg0YzItYTQ4ZmVjMWZjYjcw
LzEvTlNmem9vdzhXaFZGTE94UFZzd21ubzZ0blhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAib/B6cvZ
ig8p+7bDlRsRgOlYw/D821I0cVxjYA+pCGGQ5Y4y04zhSYw60XUYC7CwCO3NEzWM
4lFTatVWw+BKmYvXKwuoh/CAWc/lGNv5XDvoY5AQs9vvQElhMeOZ8n21T79ZNZ/5
Sbsaya9dQOZVg6q25yXwz5QgnmGmVfaNWAhwJF6WyP8nDDZT7QBqgxf52A4YPpyc
KWrjtpC+OS9Qd/ClCl64Q6Ei2XY5mvX95j/pat9qPKzRnt9pzili3bNMWu5y/9yZ
4rfCHSERsMA6s6YhnLRfz7Udc4MihlENPtUQa5Kbzgulxd7wY95QhmS2WfMcSQ1b
ttPHPNUmkzz4cA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:31:11 2025 by rpki-client