Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
File: NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft (raw, json)
Hash identifier: DbyLBRpdTTe8267mplGX+lrc4aLVnmcXE9soXjUnr9I=
Subject key identifier: B7:14:1C:9F:4E:6D:C5:13:28:1A:50:56:70:04:17:92:35:E6:2D:1C
Authority key identifier: 34:B0:C5:A4:03:E2:DA:D3:C4:7B:79:1F:DA:20:42:CF:71:50:09:CF
Certificate issuer: /CN=34b0c5a403e2dad3c47b791fda2042cf715009cf
Certificate serial: 01974C9FC9F058EF2B98B43D9F5595BDCAB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
Manifest number: 0640
Signing time: Sat 07 Jun 2025 23:00:29 +0000
Manifest this update: Sat 07 Jun 2025 23:00:29 +0000
Manifest next update: Sun 08 Jun 2025 23:00:29 +0000
Files and hashes: 1: 1e-R_RVRVy4XvdCy2aS6EF3_EtI.roa (hash: BQhqOOFjoi+Ex8s0CUIBtj7pTDkrOo0Z4PQBLWx35W8=)
2: NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl (hash: EY+URGtRAK4vGTw9gY1YtuayWVTUzl6u0SQVYDfZn6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:9f:c9:f0:58:ef:2b:98:b4:3d:9f:55:95:bd:ca:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34b0c5a403e2dad3c47b791fda2042cf715009cf
Validity
Not Before: Jun 7 23:00:29 2025 GMT
Not After : Jun 8 23:00:29 2025 GMT
Subject: CN=b7141c9f4e6dc513281a50567004179235e62d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ca:c1:7d:75:33:ac:c5:23:23:fe:8b:5b:94:
25:88:21:58:55:f7:0f:fa:6d:d3:e3:ff:84:5b:40:
fd:c5:d7:19:8c:8d:74:44:3b:73:28:bc:ab:30:7d:
d1:c6:40:06:03:7a:42:49:c5:32:a2:be:d5:e7:27:
b4:8c:77:34:be:20:fb:53:9c:43:be:90:f5:f7:75:
07:82:41:d1:1b:2f:7c:e3:48:2c:1e:c6:c5:34:6b:
c8:7a:e0:33:f3:28:c2:15:0c:07:77:5d:ab:2a:ee:
74:e4:a9:71:32:43:c7:78:a6:e8:44:74:a4:ec:b0:
8c:dd:20:bf:d5:18:e9:62:19:9a:d0:72:7a:6c:fc:
1e:b2:d1:cb:35:de:6e:21:c2:5b:e3:79:91:1c:2d:
b7:24:39:03:e4:c7:15:d7:b5:68:df:0c:d5:c1:73:
a6:07:66:f4:ef:17:b8:a9:1a:e1:3f:ec:70:3c:e5:
ce:19:d8:0a:d2:1f:57:81:2a:96:ec:f3:9b:cc:5b:
06:22:6f:53:54:9a:1e:11:a8:5d:c0:fc:26:51:17:
c3:02:ac:42:fa:c4:c2:87:a0:b6:05:35:90:66:02:
66:a4:f7:3d:e9:d1:c7:33:90:fb:e3:19:38:11:8d:
98:6f:a5:93:3c:44:3d:20:c5:1b:97:7f:88:e5:69:
99:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:14:1C:9F:4E:6D:C5:13:28:1A:50:56:70:04:17:92:35:E6:2D:1C
X509v3 Authority Key Identifier:
keyid:34:B0:C5:A4:03:E2:DA:D3:C4:7B:79:1F:DA:20:42:CF:71:50:09:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:bc:c7:9b:c3:07:29:2d:50:bf:01:65:fc:9b:3d:09:6c:95:
32:dd:96:5c:29:6d:5a:0d:f7:60:ed:bc:24:d2:2c:f3:82:ad:
0c:27:7d:d6:e2:8f:2d:c0:c0:81:45:4f:fe:d8:2b:f0:36:78:
6b:bd:c7:80:2a:c0:67:f3:2b:2a:e4:e9:fa:bc:3a:11:a2:02:
4e:6b:2e:9d:58:ce:b0:07:07:7c:9f:bb:4a:e1:5b:ae:ab:73:
dd:88:cd:e6:b9:8a:48:f8:18:a4:67:2b:d1:fe:78:63:e1:d5:
ff:fc:71:fa:bd:38:20:92:ec:12:ea:8d:1c:f4:38:cb:a7:04:
43:29:26:c0:40:04:72:41:6f:7c:d0:58:41:b2:1a:3e:fa:eb:
63:4f:ca:16:43:32:cc:a8:bc:4d:a9:88:e1:58:bf:d4:27:f0:
0d:62:cc:9e:7b:f1:a2:e2:d0:41:e1:0f:c2:7e:c8:0d:9f:84:
6a:e5:9c:e2:58:dc:e4:2c:76:d4:1e:2e:c0:9a:09:2d:d7:c0:
1d:16:d9:87:38:52:e8:dd:59:07:95:28:24:63:b7:f7:a3:5f:
7a:28:01:cf:90:1d:27:c0:2f:b6:50:0b:9f:dc:ea:8d:64:cb:
4a:c4:42:8c:db:14:1b:a4:1e:a6:87:f5:f6:c5:34:ea:67:9f:
7e:e2:e1:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMn8nwWO8rmLQ9n1WVvcqyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0YjBjNWE0MDNlMmRhZDNjNDdiNzkxZmRhMjA0MmNmNzE1
MDA5Y2YwHhcNMjUwNjA3MjMwMDI5WhcNMjUwNjA4MjMwMDI5WjAzMTEwLwYDVQQD
EyhiNzE0MWM5ZjRlNmRjNTEzMjgxYTUwNTY3MDA0MTc5MjM1ZTYyZDFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3crBfXUzrMUjI/6LW5QliCFYVfcP
+m3T4/+EW0D9xdcZjI10RDtzKLyrMH3RxkAGA3pCScUyor7V5ye0jHc0viD7U5xD
vpD193UHgkHRGy9840gsHsbFNGvIeuAz8yjCFQwHd12rKu505KlxMkPHeKboRHSk
7LCM3SC/1RjpYhma0HJ6bPwestHLNd5uIcJb43mRHC23JDkD5McV17Vo3wzVwXOm
B2b07xe4qRrhP+xwPOXOGdgK0h9XgSqW7PObzFsGIm9TVJoeEahdwPwmURfDAqxC
+sTCh6C2BTWQZgJmpPc96dHHM5D74xk4EY2Yb6WTPEQ9IMUbl3+I5WmZcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLcUHJ9ObcUTKBpQVnAEF5I15i0cMB8GA1UdIwQY
MBaAFDSwxaQD4trTxHt5H9ogQs9xUAnPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkxERnBBUGkydFBFZTNrZjJpQkN6M0ZRQ2M4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8xNmQ1Y2UtMTg0YS00MzY2LThkNzUt
YWFhYjI1ODk0ZDVlLzEvTkxERnBBUGkydFBFZTNrZjJpQkN6M0ZRQ2M4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi8xNmQ1Y2UtMTg0YS00MzY2LThkNzUtYWFhYjI1ODk0ZDVl
LzEvTkxERnBBUGkydFBFZTNrZjJpQkN6M0ZRQ2M4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiLzHm8MH
KS1QvwFl/Js9CWyVMt2WXCltWg33YO28JNIs84KtDCd91uKPLcDAgUVP/tgr8DZ4
a73HgCrAZ/MrKuTp+rw6EaICTmsunVjOsAcHfJ+7SuFbrqtz3YjN5rmKSPgYpGcr
0f54Y+HV//xx+r04IJLsEuqNHPQ4y6cEQykmwEAEckFvfNBYQbIaPvrrY0/KFkMy
zKi8TamI4Vi/1CfwDWLMnnvxouLQQeEPwn7IDZ+EauWc4ljc5Cx21B4uwJoJLdfA
HRbZhzhS6N1ZB5UoJGO396NfeigBz5AdJ8AvtlALn9zqjWTLSsRCjNsUG6Qepof1
9sU06meffuLhwA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 06:27:13 2025 by rpki-client