Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/284b3e-2d4f-412a-8862-539e1ac821d7/1/sNcTFlrGKE-0HV38gmV3_B2gtzA.mft
File: sNcTFlrGKE-0HV38gmV3_B2gtzA.mft (raw, json)
Hash identifier: BFtCkp4zzXLq4sYxq0S044KIhjxaTU3s6f87EgPFGUg=
Subject key identifier: 52:DA:EE:47:DA:8B:CC:0A:AC:FF:8A:92:71:F4:0F:2E:BD:D7:A7:B4
Authority key identifier: B0:D7:13:16:5A:C6:28:4F:B4:1D:5D:FC:82:65:77:FC:1D:A0:B7:30
Certificate issuer: /CN=b0d713165ac6284fb41d5dfc826577fc1da0b730
Certificate serial: 0198D660FA3E05347CA50002680D527E145F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sNcTFlrGKE-0HV38gmV3_B2gtzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/284b3e-2d4f-412a-8862-539e1ac821d7/1/sNcTFlrGKE-0HV38gmV3_B2gtzA.mft
Manifest number: 1360
Signing time: Sat 23 Aug 2025 10:02:16 +0000
Manifest this update: Sat 23 Aug 2025 10:02:16 +0000
Manifest next update: Sun 24 Aug 2025 10:02:16 +0000
Files and hashes: 1: sNcTFlrGKE-0HV38gmV3_B2gtzA.crl (hash: OS4qYdN1hL++cxHMrQi79kMSjED5pa0WNP8woy+6zGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/284b3e-2d4f-412a-8862-539e1ac821d7/1/sNcTFlrGKE-0HV38gmV3_B2gtzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/284b3e-2d4f-412a-8862-539e1ac821d7/1/sNcTFlrGKE-0HV38gmV3_B2gtzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/sNcTFlrGKE-0HV38gmV3_B2gtzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:fa:3e:05:34:7c:a5:00:02:68:0d:52:7e:14:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0d713165ac6284fb41d5dfc826577fc1da0b730
Validity
Not Before: Aug 23 10:02:16 2025 GMT
Not After : Aug 24 10:02:16 2025 GMT
Subject: CN=52daee47da8bcc0aacff8a9271f40f2ebdd7a7b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:af:de:83:24:3d:7d:26:28:36:68:95:88:f1:
a3:7c:b9:77:5c:80:ce:c0:46:d3:eb:5c:95:49:10:
6e:1b:9c:c0:63:7f:f8:64:fb:ac:da:b7:01:dc:f1:
27:40:56:19:d8:ff:ab:ff:10:56:ca:7d:ef:5a:8b:
61:f3:19:1a:55:fa:1d:54:01:e6:b2:7f:5d:84:be:
47:0a:99:38:46:ab:d3:26:8d:ca:a4:cb:24:27:7f:
d7:5c:f9:38:68:43:39:59:6e:f8:0f:27:85:41:0d:
38:ef:f7:44:63:85:ad:a3:7a:35:12:0b:8f:5a:6e:
05:9d:04:4c:b6:4b:79:e2:9c:a2:8e:a4:b5:a6:7c:
9d:b2:e1:d9:61:54:98:11:e6:4f:d8:df:67:01:70:
7f:57:a0:14:8a:57:1f:99:d3:ef:68:c1:57:ea:75:
c8:b4:db:dc:aa:1c:c9:b7:b1:d6:76:7a:81:0e:af:
73:2a:44:9b:eb:4f:31:96:3b:92:9a:de:ca:f9:50:
2a:5c:fb:d2:c1:67:62:07:9f:88:36:73:bc:1b:d3:
68:44:a6:dd:15:d0:a3:31:f0:78:ea:56:ac:dc:91:
11:a5:89:a3:89:81:cd:4b:f4:a6:e7:58:1c:fe:b1:
47:81:05:42:da:0e:bb:4d:21:60:ea:af:6f:e0:d4:
d4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:DA:EE:47:DA:8B:CC:0A:AC:FF:8A:92:71:F4:0F:2E:BD:D7:A7:B4
X509v3 Authority Key Identifier:
keyid:B0:D7:13:16:5A:C6:28:4F:B4:1D:5D:FC:82:65:77:FC:1D:A0:B7:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sNcTFlrGKE-0HV38gmV3_B2gtzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/284b3e-2d4f-412a-8862-539e1ac821d7/1/sNcTFlrGKE-0HV38gmV3_B2gtzA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/284b3e-2d4f-412a-8862-539e1ac821d7/1/sNcTFlrGKE-0HV38gmV3_B2gtzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:0e:9b:aa:af:4e:68:cd:1a:d2:24:45:db:23:d0:7d:87:2e:
18:9c:ac:20:5a:e9:88:e6:05:77:60:18:b5:e3:ea:05:38:a0:
1a:1b:0f:9b:76:44:1b:e8:d5:69:4b:51:ce:43:bc:13:3e:08:
fa:ef:03:c9:7d:91:f0:f9:d4:fe:c0:a1:05:f5:36:ba:c1:18:
d0:f6:bd:ab:13:4c:4b:22:94:e8:5a:b0:54:5e:d0:19:44:d0:
1a:2a:84:18:51:4a:f8:c8:bc:3f:71:4e:be:fd:9f:96:20:2a:
92:19:b4:9c:7f:38:78:d8:45:84:ce:17:67:36:14:04:bf:d4:
0f:83:7f:ae:9f:93:cf:b3:8c:8c:cc:22:06:fd:a1:96:41:05:
44:48:bb:be:79:6b:76:86:ba:67:74:65:d0:51:d6:9d:6a:d0:
99:20:cd:52:cc:ec:b2:89:65:e7:5b:a8:a6:4f:16:8d:95:28:
64:de:23:80:9f:0c:7f:2b:c1:65:a0:7a:04:02:8b:a1:0b:03:
4a:3b:6a:a8:8c:bc:ff:1a:b4:66:59:6c:ab:8f:03:dc:f1:34:
1b:57:a5:9e:60:a2:f2:ec:10:0f:bd:91:23:e6:9f:4f:4c:a0:
66:1f:95:c8:7f:84:fd:a4:fa:6e:89:34:73:f5:ff:0b:82:28:
14:5c:be:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYPo+BTR8pQACaA1SfhRfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwZDcxMzE2NWFjNjI4NGZiNDFkNWRmYzgyNjU3N2ZjMWRh
MGI3MzAwHhcNMjUwODIzMTAwMjE2WhcNMjUwODI0MTAwMjE2WjAzMTEwLwYDVQQD
Eyg1MmRhZWU0N2RhOGJjYzBhYWNmZjhhOTI3MWY0MGYyZWJkZDdhN2I0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7a/egyQ9fSYoNmiViPGjfLl3XIDO
wEbT61yVSRBuG5zAY3/4ZPus2rcB3PEnQFYZ2P+r/xBWyn3vWoth8xkaVfodVAHm
sn9dhL5HCpk4RqvTJo3KpMskJ3/XXPk4aEM5WW74DyeFQQ047/dEY4Wto3o1EguP
Wm4FnQRMtkt54pyijqS1pnydsuHZYVSYEeZP2N9nAXB/V6AUilcfmdPvaMFX6nXI
tNvcqhzJt7HWdnqBDq9zKkSb608xljuSmt7K+VAqXPvSwWdiB5+INnO8G9NoRKbd
FdCjMfB46las3JERpYmjiYHNS/Sm51gc/rFHgQVC2g67TSFg6q9v4NTU4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFLa7kfai8wKrP+KknH0Dy6916e0MB8GA1UdIwQY
MBaAFLDXExZaxihPtB1d/IJld/wdoLcwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc05jVEZsckdLRS0wSFYzOGdtVjNfQjJndHpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yODRiM2UtMmQ0Zi00MTJhLTg4NjIt
NTM5ZTFhYzgyMWQ3LzEvc05jVEZsckdLRS0wSFYzOGdtVjNfQjJndHpBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yODRiM2UtMmQ0Zi00MTJhLTg4NjItNTM5ZTFhYzgyMWQ3
LzEvc05jVEZsckdLRS0wSFYzOGdtVjNfQjJndHpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGw6bqq9O
aM0a0iRF2yPQfYcuGJysIFrpiOYFd2AYtePqBTigGhsPm3ZEG+jVaUtRzkO8Ez4I
+u8DyX2R8PnU/sChBfU2usEY0Pa9qxNMSyKU6FqwVF7QGUTQGiqEGFFK+Mi8P3FO
vv2fliAqkhm0nH84eNhFhM4XZzYUBL/UD4N/rp+Tz7OMjMwiBv2hlkEFREi7vnlr
doa6Z3Rl0FHWnWrQmSDNUszssoll51uopk8WjZUoZN4jgJ8MfyvBZaB6BAKLoQsD
SjtqqIy8/xq0Zllsq48D3PE0G1elnmCi8uwQD72RI+afT0ygZh+VyH+E/aT6bok0
c/X/C4IoFFy+lQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:27:24 2025 by rpki-client