Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
File: NIMjF9JURDS2WeVpIHHY5MSTiwY.mft (raw, json)
Hash identifier: J1M8NWsSptQiW/aBqL/ygQc0+qvfaleJhjN2iJqh34I=
Subject key identifier: B0:91:8C:B0:90:4B:03:34:F6:1C:B1:A3:A4:82:17:25:13:34:1D:C7
Authority key identifier: 34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
Certificate issuer: /CN=34832317d2544434b659e5692071d8e4c4938b06
Certificate serial: 01974AE8D75C3275C69FFFA68B3683D433CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
Manifest number: 02EF
Signing time: Sat 07 Jun 2025 15:01:02 +0000
Manifest this update: Sat 07 Jun 2025 15:01:02 +0000
Manifest next update: Sun 08 Jun 2025 15:01:02 +0000
Files and hashes: 1: NIMjF9JURDS2WeVpIHHY5MSTiwY.crl (hash: xs4g4EZZUcHvZsSetacjfc+aft69vGrSiu3CRJgVZls=)
2: x2Xaez7Ra9vjvF4FG3Er4hO4ovk.roa (hash: T67Ch/iuLueDDibfJIFSKnLQW9UiEIt+71JVmL/jUzg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:d7:5c:32:75:c6:9f:ff:a6:8b:36:83:d4:33:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34832317d2544434b659e5692071d8e4c4938b06
Validity
Not Before: Jun 7 15:01:02 2025 GMT
Not After : Jun 8 15:01:02 2025 GMT
Subject: CN=b0918cb0904b0334f61cb1a3a482172513341dc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a5:4c:3b:d7:da:44:2b:a9:37:62:18:f5:f3:
03:b2:25:26:d4:16:a0:72:f9:ed:7e:71:b3:a0:99:
08:11:3d:ae:be:da:6c:1f:d8:fa:bc:7b:23:e8:a4:
93:61:8b:bb:07:ac:5e:9d:4e:8d:e7:39:ba:aa:b9:
f3:8e:68:62:83:45:0d:01:4f:ab:43:7c:14:14:fa:
da:2c:fc:6f:0f:3a:d4:c8:b9:9f:33:2b:22:31:a9:
d7:be:bb:68:37:24:54:42:17:57:cc:40:33:3d:a4:
4f:73:b8:7e:80:cb:43:86:00:b7:19:ca:b8:af:7a:
ea:83:7d:eb:c6:dc:e5:bb:30:1a:b6:54:f5:e6:df:
47:95:d1:72:0c:ee:1d:1b:30:33:0f:ce:27:a9:51:
17:57:0f:fb:c1:01:4c:30:b1:48:73:58:ae:8e:61:
01:f9:5a:53:24:fd:e8:c9:8b:bb:ba:87:51:6a:f9:
17:d2:88:98:1e:9f:3a:9d:96:ae:57:05:f0:0a:c0:
6c:3f:82:e8:36:b8:0f:ee:cb:d5:82:25:95:f4:a0:
c8:82:1c:b8:ff:b8:15:25:88:b8:bb:c0:1f:8f:32:
fb:5e:d4:d4:a3:c5:7d:9c:2f:9f:90:ec:3c:a1:81:
90:8f:cb:98:19:78:bc:91:3f:58:00:af:a6:c0:cf:
cb:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:91:8C:B0:90:4B:03:34:F6:1C:B1:A3:A4:82:17:25:13:34:1D:C7
X509v3 Authority Key Identifier:
keyid:34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:ca:9a:6b:31:f3:95:11:b3:9c:02:93:0f:a7:24:3c:22:1d:
bd:40:78:8e:4f:25:d9:a6:a7:da:7f:c0:f8:83:08:f6:b9:b1:
e3:33:5a:c9:08:0a:07:7a:db:ea:80:a9:ab:63:b4:7e:04:98:
ea:89:3d:ef:71:ab:c2:d0:b4:af:48:91:b0:de:71:c0:76:56:
65:6a:7e:55:76:99:87:12:92:4b:3b:02:c8:b9:85:6e:dc:2d:
6c:b0:f6:b6:07:23:ed:0a:fe:58:24:41:02:21:a9:0e:e8:bd:
7f:d2:b9:f1:08:7c:43:8b:9e:3d:ab:cf:54:8d:fd:8c:6b:08:
9a:b7:09:b4:d8:26:e0:36:59:b8:e0:61:13:64:17:b4:a9:4d:
61:22:ca:c3:bc:06:1c:32:f3:31:fb:8c:51:ef:d6:3a:18:d4:
ae:5e:3d:e3:15:1f:8e:8b:f1:a7:ed:17:5e:02:b3:e3:d8:b5:
ef:ff:5c:d4:d1:37:5b:3f:27:e1:d3:9f:c7:7e:82:5e:6a:09:
1d:ad:16:db:16:fd:90:9c:ab:a8:46:b1:72:29:bb:52:63:f2:
e2:df:0a:79:0f:0b:92:a8:bb:72:78:4b:42:49:28:5d:6f:e5:
de:3a:58:77:b6:ad:19:80:42:f2:a7:e3:b9:d3:6e:3d:00:ef:
43:8e:67:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdK6NdcMnXGn/+mizaD1DPPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ODMyMzE3ZDI1NDQ0MzRiNjU5ZTU2OTIwNzFkOGU0YzQ5
MzhiMDYwHhcNMjUwNjA3MTUwMTAyWhcNMjUwNjA4MTUwMTAyWjAzMTEwLwYDVQQD
EyhiMDkxOGNiMDkwNGIwMzM0ZjYxY2IxYTNhNDgyMTcyNTEzMzQxZGM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqqVMO9faRCupN2IY9fMDsiUm1Bag
cvntfnGzoJkIET2uvtpsH9j6vHsj6KSTYYu7B6xenU6N5zm6qrnzjmhig0UNAU+r
Q3wUFPraLPxvDzrUyLmfMysiManXvrtoNyRUQhdXzEAzPaRPc7h+gMtDhgC3Gcq4
r3rqg33rxtzluzAatlT15t9HldFyDO4dGzAzD84nqVEXVw/7wQFMMLFIc1iujmEB
+VpTJP3oyYu7uodRavkX0oiYHp86nZauVwXwCsBsP4LoNrgP7svVgiWV9KDIghy4
/7gVJYi4u8AfjzL7XtTUo8V9nC+fkOw8oYGQj8uYGXi8kT9YAK+mwM/LTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLCRjLCQSwM09hyxo6SCFyUTNB3HMB8GA1UdIwQY
MBaAFDSDIxfSVEQ0tlnlaSBx2OTEk4sGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTklNakY5SlVSRFMyV2VWcElISFk1TVNUaXdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS81YTJlZDktOGY4ZS00YzFkLWFhZjMt
MzBjNjVhZDgzMjkxLzEvTklNakY5SlVSRFMyV2VWcElISFk1TVNUaXdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS81YTJlZDktOGY4ZS00YzFkLWFhZjMtMzBjNjVhZDgzMjkx
LzEvTklNakY5SlVSRFMyV2VWcElISFk1TVNUaXdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhMqaazHz
lRGznAKTD6ckPCIdvUB4jk8l2aan2n/A+IMI9rmx4zNayQgKB3rb6oCpq2O0fgSY
6ok973GrwtC0r0iRsN5xwHZWZWp+VXaZhxKSSzsCyLmFbtwtbLD2tgcj7Qr+WCRB
AiGpDui9f9K58Qh8Q4uePavPVI39jGsImrcJtNgm4DZZuOBhE2QXtKlNYSLKw7wG
HDLzMfuMUe/WOhjUrl494xUfjovxp+0XXgKz49i17/9c1NE3Wz8n4dOfx36CXmoJ
Ha0W2xb9kJyrqEaxcim7UmPy4t8KeQ8Lkqi7cnhLQkkoXW/l3jpYd7atGYBC8qfj
udNuPQDvQ45nfg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 19:27:08 2025 by rpki-client