Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.mft
File: NSfzoow8WhVFLOxPVswmno6tnXI.mft (raw, json)
Hash identifier: ecHJOdeO87O+nQ88PkGJBXsrKKStBx912UVGwK+GQMc=
Subject key identifier: C2:27:75:76:6C:5F:93:1B:51:AC:E6:35:29:27:FC:AC:B0:25:47:C9
Authority key identifier: 35:27:F3:A2:8C:3C:5A:15:45:2C:EC:4F:56:CC:26:9E:8E:AD:9D:72
Certificate issuer: /CN=3527f3a28c3c5a15452cec4f56cc269e8ead9d72
Certificate serial: 0197B6A230FACB5CA624A8151D1A6E92614A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSfzoow8WhVFLOxPVswmno6tnXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.mft
Manifest number: 15B0
Signing time: Sat 28 Jun 2025 13:02:51 +0000
Manifest this update: Sat 28 Jun 2025 13:02:51 +0000
Manifest next update: Sun 29 Jun 2025 13:02:51 +0000
Files and hashes: 1: NSfzoow8WhVFLOxPVswmno6tnXI.crl (hash: OAio2wlwYELFyoRr4TvD7PFcKaNjCiVPkZ0t6YE9zQU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NSfzoow8WhVFLOxPVswmno6tnXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:30:fa:cb:5c:a6:24:a8:15:1d:1a:6e:92:61:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3527f3a28c3c5a15452cec4f56cc269e8ead9d72
Validity
Not Before: Jun 28 13:02:51 2025 GMT
Not After : Jun 29 13:02:51 2025 GMT
Subject: CN=c22775766c5f931b51ace6352927fcacb02547c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ef:19:ff:67:fc:94:20:ea:df:e2:25:11:72:
5c:76:55:b8:8c:ab:00:8b:f9:d0:93:05:41:69:46:
9c:bd:33:63:44:4b:0b:47:95:65:55:c5:f3:eb:ab:
01:ca:64:0c:61:a7:53:3d:c9:cb:ec:f1:03:74:74:
a7:83:64:8c:b4:15:ca:62:e8:c0:9e:2e:36:bf:bd:
29:07:b2:79:ff:80:75:ea:c5:ef:d7:52:ad:a6:08:
d7:9e:84:12:89:d9:05:a3:b9:f3:0e:13:14:ea:e2:
5f:94:1d:20:19:f5:64:52:2b:eb:e2:87:b4:32:2d:
11:08:d4:cb:cb:03:58:6e:6b:89:d9:a6:0d:f7:f2:
24:d4:98:d2:95:2d:da:56:84:3c:67:d9:63:14:4c:
d6:aa:88:3b:6e:c1:d1:d5:2d:d7:30:ab:43:b0:2f:
ca:0e:4e:0e:08:14:a8:bc:ea:7d:4b:2b:c7:15:53:
c0:1b:58:61:6b:09:6a:11:fc:4b:cf:3d:28:9c:7c:
4a:33:02:89:53:7f:0d:f1:5f:29:22:32:be:4e:53:
77:0c:99:b7:0c:ae:78:62:5e:8a:60:6c:ad:5c:0c:
ff:1a:87:3c:29:64:23:1c:9a:89:b7:f7:25:a5:62:
ad:48:98:27:a8:45:78:45:64:c3:1c:c3:fe:c5:9b:
91:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:27:75:76:6C:5F:93:1B:51:AC:E6:35:29:27:FC:AC:B0:25:47:C9
X509v3 Authority Key Identifier:
keyid:35:27:F3:A2:8C:3C:5A:15:45:2C:EC:4F:56:CC:26:9E:8E:AD:9D:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSfzoow8WhVFLOxPVswmno6tnXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/943903-bee9-4dd7-84c2-a48fec1fcb70/1/NSfzoow8WhVFLOxPVswmno6tnXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:6d:19:26:f8:69:c9:1b:23:ad:ac:6c:a2:4b:4c:94:df:67:
19:3c:73:8a:44:0c:56:71:73:ff:d3:f8:7d:28:3a:f3:46:c4:
2d:3c:df:b3:f5:f2:57:96:51:d1:32:2c:a8:93:c2:77:5b:ec:
fc:be:4d:62:9a:92:db:e8:a6:52:be:b8:79:98:7a:52:54:8e:
8e:6e:69:2a:90:f3:49:a6:0e:1f:08:d0:b9:19:ea:76:28:4c:
51:bf:59:b2:fa:9c:11:89:c1:ff:f5:63:34:0a:e6:22:5d:1b:
c3:d1:28:2b:4b:c4:75:3a:69:3f:6b:66:61:82:84:6a:31:a4:
a1:e7:8b:80:e4:1a:54:5d:a9:87:86:f5:6a:8b:85:3c:2a:24:
da:56:e8:d4:a4:3b:67:99:c0:34:56:a0:52:fc:7d:97:2b:75:
79:5e:f9:22:ea:f6:12:ab:17:3d:5b:2a:e8:e5:4d:57:fe:85:
f2:0c:2e:58:94:93:d4:cc:e4:ff:81:3f:61:eb:3c:00:3b:eb:
75:57:79:8e:05:cb:31:22:27:80:c2:1c:30:b2:fd:66:8b:12:
30:3c:48:b3:0f:92:a4:a8:3d:b2:71:2f:0a:04:df:8a:5c:38:
18:ee:57:cd:a8:79:e0:55:2d:2a:ad:e5:f9:56:64:0f:b8:e0:
16:da:1b:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2ojD6y1ymJKgVHRpukmFKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1MjdmM2EyOGMzYzVhMTU0NTJjZWM0ZjU2Y2MyNjllOGVh
ZDlkNzIwHhcNMjUwNjI4MTMwMjUxWhcNMjUwNjI5MTMwMjUxWjAzMTEwLwYDVQQD
EyhjMjI3NzU3NjZjNWY5MzFiNTFhY2U2MzUyOTI3ZmNhY2IwMjU0N2M5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1+8Z/2f8lCDq3+IlEXJcdlW4jKsA
i/nQkwVBaUacvTNjREsLR5VlVcXz66sBymQMYadTPcnL7PEDdHSng2SMtBXKYujA
ni42v70pB7J5/4B16sXv11KtpgjXnoQSidkFo7nzDhMU6uJflB0gGfVkUivr4oe0
Mi0RCNTLywNYbmuJ2aYN9/Ik1JjSlS3aVoQ8Z9ljFEzWqog7bsHR1S3XMKtDsC/K
Dk4OCBSovOp9SyvHFVPAG1hhawlqEfxLzz0onHxKMwKJU38N8V8pIjK+TlN3DJm3
DK54Yl6KYGytXAz/Goc8KWQjHJqJt/clpWKtSJgnqEV4RWTDHMP+xZuRwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMIndXZsX5MbUazmNSkn/KywJUfJMB8GA1UdIwQY
MBaAFDUn86KMPFoVRSzsT1bMJp6OrZ1yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlNmem9vdzhXaFZGTE94UFZzd21ubzZ0blhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS85NDM5MDMtYmVlOS00ZGQ3LTg0YzIt
YTQ4ZmVjMWZjYjcwLzEvTlNmem9vdzhXaFZGTE94UFZzd21ubzZ0blhJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS85NDM5MDMtYmVlOS00ZGQ3LTg0YzItYTQ4ZmVjMWZjYjcw
LzEvTlNmem9vdzhXaFZGTE94UFZzd21ubzZ0blhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD20ZJvhp
yRsjraxsoktMlN9nGTxzikQMVnFz/9P4fSg680bELTzfs/XyV5ZR0TIsqJPCd1vs
/L5NYpqS2+imUr64eZh6UlSOjm5pKpDzSaYOHwjQuRnqdihMUb9ZsvqcEYnB//Vj
NArmIl0bw9EoK0vEdTppP2tmYYKEajGkoeeLgOQaVF2ph4b1aouFPCok2lbo1KQ7
Z5nANFagUvx9lyt1eV75Iur2EqsXPVsq6OVNV/6F8gwuWJST1Mzk/4E/Yes8ADvr
dVd5jgXLMSIngMIcMLL9ZosSMDxIsw+SpKg9snEvCgTfilw4GO5Xzah54FUtKq3l
+VZkD7jgFtobPQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:45:06 2025 by rpki-client