Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
File: NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft (raw, json)
Hash identifier: zEdNUd5J2LWRmcIsyWmwGcPhCd832xxCUPGIDlg+HG8=
Subject key identifier: 1C:83:C3:36:B4:7B:F8:4F:20:97:BB:C9:01:38:2D:2B:5B:A3:97:16
Authority key identifier: 34:B0:C5:A4:03:E2:DA:D3:C4:7B:79:1F:DA:20:42:CF:71:50:09:CF
Certificate issuer: /CN=34b0c5a403e2dad3c47b791fda2042cf715009cf
Certificate serial: 019645FB6FFCD2FC6245F91677D8F2DF0EF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
Manifest number: 05B8
Signing time: Thu 17 Apr 2025 23:00:28 +0000
Manifest this update: Thu 17 Apr 2025 23:00:28 +0000
Manifest next update: Fri 18 Apr 2025 23:00:28 +0000
Files and hashes: 1: 1e-R_RVRVy4XvdCy2aS6EF3_EtI.roa (hash: BQhqOOFjoi+Ex8s0CUIBtj7pTDkrOo0Z4PQBLWx35W8=)
2: NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl (hash: VGRM3MuenFsMqQb92hu2AgGx6KGKblcdzPpi5Sf414I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:fb:6f:fc:d2:fc:62:45:f9:16:77:d8:f2:df:0e:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34b0c5a403e2dad3c47b791fda2042cf715009cf
Validity
Not Before: Apr 17 23:00:28 2025 GMT
Not After : Apr 18 23:00:28 2025 GMT
Subject: CN=1c83c336b47bf84f2097bbc901382d2b5ba39716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:7e:6b:76:7c:6d:b2:a7:f6:27:20:78:87:a5:
2d:22:90:ce:b0:16:fd:62:bf:54:ee:19:1f:2f:1c:
8d:2b:d0:88:b5:aa:cf:a5:c6:f1:d8:a3:84:89:2f:
48:de:ff:2a:85:d4:fe:97:bb:75:3a:77:72:a9:20:
7d:8a:1b:fc:a1:14:c7:57:16:1f:e5:c0:29:e7:fd:
5a:70:95:df:26:ff:3a:b4:11:a1:93:93:b2:cd:7e:
bb:d5:a3:ca:91:c1:a5:74:74:ff:71:98:bd:e8:31:
ba:b7:3d:60:2c:be:cb:b0:fb:ec:61:68:4c:1c:cd:
63:65:d0:90:a9:26:5e:5c:17:cb:0e:2d:10:2f:53:
27:ce:b6:47:2f:63:a0:18:b3:96:ca:ad:5a:ac:e2:
e6:67:7a:7f:68:11:e8:91:99:0f:85:c6:b5:e3:bb:
64:db:cb:f9:0e:b5:b7:f1:d1:a2:2e:87:96:a4:4e:
5c:37:cf:55:16:65:0b:4b:fa:27:1f:be:30:24:33:
2c:bb:9c:2a:83:f5:a7:ee:06:a2:df:56:7e:35:b8:
44:81:3f:15:d0:70:2f:29:14:b1:35:64:cb:58:8b:
3d:5e:50:5d:f8:bd:71:3e:f3:41:0a:c8:78:54:a0:
89:84:98:97:00:51:e1:48:b9:10:3f:11:6f:c0:5e:
d0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:83:C3:36:B4:7B:F8:4F:20:97:BB:C9:01:38:2D:2B:5B:A3:97:16
X509v3 Authority Key Identifier:
keyid:34:B0:C5:A4:03:E2:DA:D3:C4:7B:79:1F:DA:20:42:CF:71:50:09:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:61:94:ae:4f:d0:aa:a7:5e:6c:d7:34:64:48:70:42:5c:e9:
d9:a5:57:a2:bd:f4:b3:47:ce:bf:ef:14:41:f8:26:e5:27:25:
ba:6e:41:f6:7d:2c:f7:4c:1f:27:44:0e:37:bd:be:de:1a:e3:
50:06:9c:57:ae:8a:9c:c3:3a:43:46:28:1f:44:59:ee:25:b8:
6d:64:18:12:d5:ee:b0:21:59:70:59:d2:3b:38:5f:8a:c6:90:
1f:df:0f:e3:e9:dd:c3:23:d9:02:04:92:94:ef:76:79:23:72:
eb:cd:26:60:a3:36:44:ed:fe:4b:67:d3:c8:76:13:13:76:c7:
6f:df:31:86:c6:c4:f1:e1:3c:3e:64:12:fb:1b:1f:32:17:58:
f7:eb:d7:16:0c:86:59:53:b2:44:15:86:62:47:99:44:7d:2d:
32:34:e0:f9:3e:69:6e:79:4e:5e:79:f6:c0:d4:cc:fe:ed:2c:
b2:01:51:41:c7:26:a9:6e:8b:8e:6d:72:38:af:82:c0:70:a1:
70:dc:8f:cc:92:53:79:6f:62:b6:aa:32:2b:c4:2f:b6:8f:c2:
2e:2c:84:59:f4:f1:35:4a:d1:b4:3c:7a:de:bd:a0:8a:a5:f1:
79:f6:46:99:2a:53:ce:90:68:78:28:27:9f:e6:8b:d3:df:47:
4e:72:92:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZF+2/80vxiRfkWd9jy3w7yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0YjBjNWE0MDNlMmRhZDNjNDdiNzkxZmRhMjA0MmNmNzE1
MDA5Y2YwHhcNMjUwNDE3MjMwMDI4WhcNMjUwNDE4MjMwMDI4WjAzMTEwLwYDVQQD
EygxYzgzYzMzNmI0N2JmODRmMjA5N2JiYzkwMTM4MmQyYjViYTM5NzE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiH5rdnxtsqf2JyB4h6UtIpDOsBb9
Yr9U7hkfLxyNK9CItarPpcbx2KOEiS9I3v8qhdT+l7t1OndyqSB9ihv8oRTHVxYf
5cAp5/1acJXfJv86tBGhk5OyzX671aPKkcGldHT/cZi96DG6tz1gLL7LsPvsYWhM
HM1jZdCQqSZeXBfLDi0QL1MnzrZHL2OgGLOWyq1arOLmZ3p/aBHokZkPhca147tk
28v5DrW38dGiLoeWpE5cN89VFmULS/onH74wJDMsu5wqg/Wn7gai31Z+NbhEgT8V
0HAvKRSxNWTLWIs9XlBd+L1xPvNBCsh4VKCJhJiXAFHhSLkQPxFvwF7QIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFByDwza0e/hPIJe7yQE4LStbo5cWMB8GA1UdIwQY
MBaAFDSwxaQD4trTxHt5H9ogQs9xUAnPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkxERnBBUGkydFBFZTNrZjJpQkN6M0ZRQ2M4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8xNmQ1Y2UtMTg0YS00MzY2LThkNzUt
YWFhYjI1ODk0ZDVlLzEvTkxERnBBUGkydFBFZTNrZjJpQkN6M0ZRQ2M4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi8xNmQ1Y2UtMTg0YS00MzY2LThkNzUtYWFhYjI1ODk0ZDVl
LzEvTkxERnBBUGkydFBFZTNrZjJpQkN6M0ZRQ2M4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwmGUrk/Q
qqdebNc0ZEhwQlzp2aVXor30s0fOv+8UQfgm5Sclum5B9n0s90wfJ0QON72+3hrj
UAacV66KnMM6Q0YoH0RZ7iW4bWQYEtXusCFZcFnSOzhfisaQH98P4+ndwyPZAgSS
lO92eSNy680mYKM2RO3+S2fTyHYTE3bHb98xhsbE8eE8PmQS+xsfMhdY9+vXFgyG
WVOyRBWGYkeZRH0tMjTg+T5pbnlOXnn2wNTM/u0ssgFRQccmqW6Ljm1yOK+CwHCh
cNyPzJJTeW9itqoyK8Qvto/CLiyEWfTxNUrRtDx63r2giqXxefZGmSpTzpBoeCgn
n+aL099HTnKSfA==
-----END CERTIFICATE-----
Generated at Fri Apr 18 06:52:31 2025 by rpki-client