
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
File: NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft (raw, json)
Hash identifier: VLqreKvHk8NtQnmnvi14ukPW/Cy44YPOZGGXtRKTpzk=
Subject key identifier: 17:B8:AF:AE:BB:48:28:4C:35:B7:CC:C8:7E:F5:B5:7E:9A:4D:0D:AF
Authority key identifier: 35:D2:92:9F:16:52:F9:58:81:2D:09:9A:23:3F:33:AD:34:45:BB:FB
Certificate issuer: /CN=35d2929f1652f958812d099a233f33ad3445bbfb
Certificate serial: 01987450A96075B93CF060D2267E61D14F98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdKSnxZS-ViBLQmaIz8zrTRFu_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
Manifest number: 15D6
Signing time: Mon 04 Aug 2025 09:01:39 +0000
Manifest this update: Mon 04 Aug 2025 09:01:39 +0000
Manifest next update: Tue 05 Aug 2025 09:01:39 +0000
Files and hashes: 1: NdKSnxZS-ViBLQmaIz8zrTRFu_s.crl (hash: 9MMZ5eqdC6T2DZG6ZBoNS54moOP/zxW6ngCRMF3zP60=)
2: RvuQkZ_J-wvlyDc9DwQMRfdbRuc.roa (hash: ZwW8RhsC1c6THaCJDOUF+Lquzo4U71ipuOUtISL9Y48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/NdKSnxZS-ViBLQmaIz8zrTRFu_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:a9:60:75:b9:3c:f0:60:d2:26:7e:61:d1:4f:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35d2929f1652f958812d099a233f33ad3445bbfb
Validity
Not Before: Aug 4 09:01:39 2025 GMT
Not After : Aug 5 09:01:39 2025 GMT
Subject: CN=17b8afaebb48284c35b7ccc87ef5b57e9a4d0daf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3d:1f:99:78:3c:5a:f6:d1:e2:04:27:9b:b9:
c8:e5:57:d4:0f:b9:4d:5e:bb:be:ae:7d:d0:e3:02:
04:b4:d3:26:0d:37:08:bf:a5:3b:6e:8a:91:31:ac:
e4:19:85:d0:f6:d2:c9:33:17:8b:1f:58:41:d0:76:
ae:52:e3:b2:75:a0:8a:03:b5:4e:59:f4:08:c2:86:
aa:2f:73:d3:9c:14:cd:99:40:cb:c3:86:25:8f:88:
0b:ad:d3:6f:0f:d1:8e:b4:d3:f4:31:f7:15:21:af:
67:7f:ef:8e:ad:cc:45:c0:53:30:9a:59:9c:52:6f:
d7:9b:af:6c:b0:5a:2c:a5:7f:2f:59:16:4d:d9:d2:
3e:8c:bd:3e:f7:44:0a:b9:25:d1:82:67:8d:2f:55:
8b:dd:26:9a:08:69:e3:26:f2:5d:68:84:ea:a0:48:
3a:4b:d8:b9:6c:e1:03:5f:60:ff:ff:1e:f9:66:c6:
e2:12:f3:66:30:cb:d8:67:8e:3b:be:4c:7c:e3:51:
cd:1f:ac:ff:ae:d5:52:8d:6b:86:5b:3d:0f:b0:8a:
3e:42:59:92:5b:8a:59:34:cd:04:bb:06:6e:ec:a5:
06:71:fc:cb:39:a4:bc:29:ec:b3:b5:71:ea:5e:37:
ba:94:d3:c7:d5:1f:63:8f:24:62:4a:f1:e1:31:90:
a3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:B8:AF:AE:BB:48:28:4C:35:B7:CC:C8:7E:F5:B5:7E:9A:4D:0D:AF
X509v3 Authority Key Identifier:
keyid:35:D2:92:9F:16:52:F9:58:81:2D:09:9A:23:3F:33:AD:34:45:BB:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdKSnxZS-ViBLQmaIz8zrTRFu_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:2f:11:95:89:80:64:12:e3:96:46:99:f8:6c:51:1c:80:da:
fa:04:29:08:71:7e:14:ef:db:20:75:a0:54:ec:40:a5:e3:22:
37:1c:c2:2a:f2:b4:4e:ed:92:1c:a0:50:50:4c:be:27:65:94:
53:81:d1:f3:34:eb:58:1e:f9:c5:0f:12:f0:20:e3:6e:c9:47:
59:0e:bf:3f:3b:57:08:da:2e:1e:dd:47:c9:00:94:f8:9d:08:
15:1a:20:3b:4a:47:d6:64:0f:ff:fb:c7:e6:f7:de:86:81:63:
b9:89:ff:f2:5f:a1:1f:89:97:58:cc:23:ed:bc:a3:9a:3e:7f:
03:a1:5d:d7:d3:a7:5c:4f:06:a4:e0:44:e1:14:58:79:37:c4:
6a:24:69:a4:6d:e8:35:8c:f0:5f:d7:92:bc:ab:78:d1:50:31:
35:59:f9:79:5e:fe:33:f7:b4:c4:ed:e6:e1:08:13:8b:f9:f4:
13:a0:6b:55:44:da:00:cc:f8:84:bc:43:c0:c1:d0:36:d0:0e:
5f:ff:3d:c9:cb:03:19:c4:10:f9:4a:1e:d9:a5:cd:65:07:c7:
2d:86:32:d5:f5:01:ac:6e:a1:bd:ec:83:bf:89:43:0b:cd:64:
a2:a1:b3:fa:dc:e0:ab:68:bc:11:12:57:0b:08:db:81:e5:6d:
4e:fd:f0:cc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh0UKlgdbk88GDSJn5h0U+YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1ZDI5MjlmMTY1MmY5NTg4MTJkMDk5YTIzM2YzM2FkMzQ0
NWJiZmIwHhcNMjUwODA0MDkwMTM5WhcNMjUwODA1MDkwMTM5WjAzMTEwLwYDVQQD
EygxN2I4YWZhZWJiNDgyODRjMzViN2NjYzg3ZWY1YjU3ZTlhNGQwZGFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsj0fmXg8WvbR4gQnm7nI5VfUD7lN
Xru+rn3Q4wIEtNMmDTcIv6U7boqRMazkGYXQ9tLJMxeLH1hB0HauUuOydaCKA7VO
WfQIwoaqL3PTnBTNmUDLw4Ylj4gLrdNvD9GOtNP0MfcVIa9nf++OrcxFwFMwmlmc
Um/Xm69ssFospX8vWRZN2dI+jL0+90QKuSXRgmeNL1WL3SaaCGnjJvJdaITqoEg6
S9i5bOEDX2D//x75ZsbiEvNmMMvYZ447vkx841HNH6z/rtVSjWuGWz0PsIo+QlmS
W4pZNM0EuwZu7KUGcfzLOaS8KeyztXHqXje6lNPH1R9jjyRiSvHhMZCj0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBe4r667SChMNbfMyH71tX6aTQ2vMB8GA1UdIwQY
MBaAFDXSkp8WUvlYgS0JmiM/M600Rbv7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmRLU254WlMtVmlCTFFtYUl6OHpyVFJGdV9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9jNDljYTAtOTUyZS00OTVhLThlYjEt
YjI4MGQ0YzYyNzQ1LzEvTmRLU254WlMtVmlCTFFtYUl6OHpyVFJGdV9zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi9jNDljYTAtOTUyZS00OTVhLThlYjEtYjI4MGQ0YzYyNzQ1
LzEvTmRLU254WlMtVmlCTFFtYUl6OHpyVFJGdV9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATS8RlYmA
ZBLjlkaZ+GxRHIDa+gQpCHF+FO/bIHWgVOxApeMiNxzCKvK0Tu2SHKBQUEy+J2WU
U4HR8zTrWB75xQ8S8CDjbslHWQ6/PztXCNouHt1HyQCU+J0IFRogO0pH1mQP//vH
5vfehoFjuYn/8l+hH4mXWMwj7byjmj5/A6Fd19OnXE8GpOBE4RRYeTfEaiRppG3o
NYzwX9eSvKt40VAxNVn5eV7+M/e0xO3m4QgTi/n0E6BrVUTaAMz4hLxDwMHQNtAO
X/89ycsDGcQQ+Uoe2aXNZQfHLYYy1fUBrG6hveyDv4lDC81koqGz+tzgq2i8ERJX
CwjbgeVtTv3wzA==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:05:04 2025 by rpki-client