Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
File: NW2albrOGXhcQGR2Y_MdkFYmHC8.mft (raw, json)
Hash identifier: MWvxe3lOlMxiXQIHYGTWGox35YJRi7BtbuGv8mpCZ8o=
Subject key identifier: 57:26:25:D7:F9:03:86:AB:11:85:B9:6A:9F:BF:4D:F7:A7:7F:B7:FE
Authority key identifier: 35:6D:9A:95:BA:CE:19:78:5C:40:64:76:63:F3:1D:90:56:26:1C:2F
Certificate issuer: /CN=356d9a95bace19785c40647663f31d9056261c2f
Certificate serial: 0197711AE726899F901BCAD9B328F0D4DC81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
Manifest number: 158F
Signing time: Sun 15 Jun 2025 01:01:17 +0000
Manifest this update: Sun 15 Jun 2025 01:01:17 +0000
Manifest next update: Mon 16 Jun 2025 01:01:17 +0000
Files and hashes: 1: NW2albrOGXhcQGR2Y_MdkFYmHC8.crl (hash: Gm3IBfJGkRezgm8g4gxP/bSRrFRf1HAC//wAuXJgCvI=)
2: VMysSyLNDVGWd0vcTeYPwlMA5rc.roa (hash: 6+DEgCnpiKyTQCIOlcuNMISjTH2qj/1LJFyn3yXus8Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:1a:e7:26:89:9f:90:1b:ca:d9:b3:28:f0:d4:dc:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=356d9a95bace19785c40647663f31d9056261c2f
Validity
Not Before: Jun 15 01:01:17 2025 GMT
Not After : Jun 16 01:01:17 2025 GMT
Subject: CN=572625d7f90386ab1185b96a9fbf4df7a77fb7fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:f8:c8:96:ba:d2:5b:db:60:d9:b4:03:c9:61:
5f:c4:45:af:35:a3:dd:e1:81:63:1d:39:18:7f:c6:
82:1a:38:a3:e6:8b:f4:7c:ac:41:96:a0:9e:7a:5d:
22:a3:b8:fe:e1:da:28:43:4d:21:55:6d:e8:96:fb:
1b:f3:da:c4:f3:62:2e:ac:de:b9:6e:44:dc:e6:0c:
b9:69:75:b3:31:41:36:48:32:8d:0e:24:68:12:7c:
71:5b:e1:e2:ba:db:7e:2c:1d:d7:04:41:78:9c:e2:
af:ab:e0:75:35:94:73:65:64:5c:59:2c:85:32:02:
33:bd:d8:80:37:35:c3:19:93:1f:ff:9e:75:91:59:
23:48:0c:2f:f5:0f:32:95:33:51:b9:a2:96:db:e6:
fe:d9:85:a3:e3:ca:cd:31:40:22:c0:b2:0a:8c:1a:
33:92:eb:a1:84:56:cd:8e:0d:b4:25:f3:51:bc:a5:
92:88:a1:e6:58:f2:8d:69:79:f6:6c:f6:8b:d8:0d:
f9:d8:b9:86:be:90:45:22:5f:1d:ba:de:b7:db:9a:
42:1e:c5:88:3d:01:34:80:6d:80:f9:bb:68:28:05:
33:66:53:b5:1f:a1:bf:63:2a:ff:08:e0:c4:76:f8:
3e:c8:8c:d3:97:77:b8:9b:f9:bf:20:74:dd:be:32:
81:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:26:25:D7:F9:03:86:AB:11:85:B9:6A:9F:BF:4D:F7:A7:7F:B7:FE
X509v3 Authority Key Identifier:
keyid:35:6D:9A:95:BA:CE:19:78:5C:40:64:76:63:F3:1D:90:56:26:1C:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:48:92:0b:c5:8c:f7:ab:dc:92:1e:4b:7e:df:6c:33:21:6a:
e2:22:c4:a5:6f:19:2e:29:6a:c0:79:6a:90:b4:2a:29:7a:aa:
72:71:c3:cd:48:01:ad:93:9a:76:1f:e9:ce:78:ce:91:4d:9d:
69:29:68:a4:bf:cf:4e:bc:14:be:82:02:06:5d:22:b9:2f:d2:
39:51:06:65:b1:ea:2e:1c:54:82:98:ec:f6:bb:c1:85:56:e5:
f2:af:89:09:91:53:e2:1f:2d:76:81:fe:c9:b6:59:9c:b7:99:
7f:ab:3f:20:ee:f9:55:1a:f0:e1:6f:5e:df:60:d3:0e:57:68:
e1:e5:4f:7a:da:ac:30:ce:54:25:23:fd:51:75:43:b0:2b:19:
cb:cc:cd:9a:60:c6:f1:18:db:6d:6d:ee:2e:e6:56:9d:57:7e:
5f:03:d9:a6:7d:7d:cc:04:d1:6c:13:30:67:d2:ee:77:45:e6:
53:47:6f:1e:9e:fa:23:a9:8b:a0:16:0e:77:00:5a:64:8d:70:
2c:ac:c7:a1:f9:14:c3:42:6f:f1:54:bc:d5:f0:ef:9b:8d:0d:
23:26:b1:78:c2:6b:c2:d9:2f:cf:5d:1f:12:1e:6c:5d:54:1e:
c3:1f:56:84:41:f3:5e:57:02:e7:0d:42:d0:03:9c:34:e7:83:
c6:3e:60:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdxGucmiZ+QG8rZsyjw1NyBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NmQ5YTk1YmFjZTE5Nzg1YzQwNjQ3NjYzZjMxZDkwNTYy
NjFjMmYwHhcNMjUwNjE1MDEwMTE3WhcNMjUwNjE2MDEwMTE3WjAzMTEwLwYDVQQD
Eyg1NzI2MjVkN2Y5MDM4NmFiMTE4NWI5NmE5ZmJmNGRmN2E3N2ZiN2ZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh/jIlrrSW9tg2bQDyWFfxEWvNaPd
4YFjHTkYf8aCGjij5ov0fKxBlqCeel0io7j+4dooQ00hVW3olvsb89rE82IurN65
bkTc5gy5aXWzMUE2SDKNDiRoEnxxW+Hiutt+LB3XBEF4nOKvq+B1NZRzZWRcWSyF
MgIzvdiANzXDGZMf/551kVkjSAwv9Q8ylTNRuaKW2+b+2YWj48rNMUAiwLIKjBoz
kuuhhFbNjg20JfNRvKWSiKHmWPKNaXn2bPaL2A352LmGvpBFIl8dut6325pCHsWI
PQE0gG2A+btoKAUzZlO1H6G/Yyr/CODEdvg+yIzTl3e4m/m/IHTdvjKBswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFcmJdf5A4arEYW5ap+/Tfenf7f+MB8GA1UdIwQY
MBaAFDVtmpW6zhl4XEBkdmPzHZBWJhwvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlcyYWxick9HWGhjUUdSMllfTWRrRlltSEM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9kZDljOTAtMzFhOS00OTk1LTlkYTMt
NGVmZGU2ZWIzMmQ0LzEvTlcyYWxick9HWGhjUUdSMllfTWRrRlltSEM4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS9kZDljOTAtMzFhOS00OTk1LTlkYTMtNGVmZGU2ZWIzMmQ0
LzEvTlcyYWxick9HWGhjUUdSMllfTWRrRlltSEM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEEiSC8WM
96vckh5Lft9sMyFq4iLEpW8ZLilqwHlqkLQqKXqqcnHDzUgBrZOadh/pznjOkU2d
aSlopL/PTrwUvoICBl0iuS/SOVEGZbHqLhxUgpjs9rvBhVbl8q+JCZFT4h8tdoH+
ybZZnLeZf6s/IO75VRrw4W9e32DTDldo4eVPetqsMM5UJSP9UXVDsCsZy8zNmmDG
8RjbbW3uLuZWnVd+XwPZpn19zATRbBMwZ9Lud0XmU0dvHp76I6mLoBYOdwBaZI1w
LKzHofkUw0Jv8VS81fDvm40NIyaxeMJrwtkvz10fEh5sXVQewx9WhEHzXlcC5w1C
0AOcNOeDxj5gzQ==
-----END CERTIFICATE-----
Generated at Sun Jun 15 09:08:05 2025 by rpki-client