Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
File: nhuhZT_KfIAXI8pG_0Qua6wekaA.mft (raw, json)
Hash identifier: eY0a0RUu6+0IrxgJllBkzjczUGIyLU4jbBhvu0qGzc0=
Subject key identifier: 08:99:CC:79:09:9C:99:91:B9:C3:89:14:48:29:7E:D6:08:F8:3E:03
Authority key identifier: 9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
Certificate issuer: /CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Certificate serial: 019767724002D97E0AE68D60B18E75409096
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
Manifest number: 0804
Signing time: Fri 13 Jun 2025 04:00:30 +0000
Manifest this update: Fri 13 Jun 2025 04:00:30 +0000
Manifest next update: Sat 14 Jun 2025 04:00:30 +0000
Files and hashes: 1: cb8dWgekdgTmGEn_puzoSrtajs0.roa (hash: klMt7aeT4NJnkoShXspgSHaq5Jk7n53EuU54bLRTaLc=)
2: nhuhZT_KfIAXI8pG_0Qua6wekaA.crl (hash: w8Y1xj5qM/3nSMbdYcRdYfSp6nbchBzTPHqVffE3Y5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 04:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:67:72:40:02:d9:7e:0a:e6:8d:60:b1:8e:75:40:90:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Validity
Not Before: Jun 13 04:00:30 2025 GMT
Not After : Jun 14 04:00:30 2025 GMT
Subject: CN=0899cc79099c9991b9c3891448297ed608f83e03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a8:88:55:1f:1d:60:7b:56:8e:9d:9c:06:3f:
3e:31:1f:32:27:cd:2b:70:c7:53:01:35:ed:20:d6:
cf:b7:b8:9b:fd:69:5a:8b:4d:96:11:0e:27:35:e1:
b5:9c:5a:dd:4b:d1:a3:2f:24:28:bc:cb:b0:4f:1e:
8d:47:e0:41:1f:f1:f2:fc:d3:2e:0f:81:bc:ee:3f:
d1:b5:fe:9b:17:5c:11:06:2d:47:9b:be:ee:6d:36:
c5:25:22:cc:b7:02:dd:16:02:2f:86:f1:3c:12:38:
09:b8:5f:e4:a4:73:7d:cd:a6:02:b9:df:1e:2c:82:
ac:de:ba:d6:d2:28:e5:b6:64:5d:14:2d:a6:c3:10:
29:78:f7:dc:1b:e9:ee:95:1d:23:e2:7c:60:05:d0:
fd:fd:83:80:62:ff:b1:4b:96:dd:bb:89:57:bf:13:
7c:79:75:92:63:e7:c3:d0:74:f5:1c:19:6d:ac:80:
63:1f:81:ec:c5:4f:32:67:72:6b:d6:af:82:56:0c:
35:46:5b:3e:a8:35:3b:fa:30:c7:0f:0d:a7:dc:ff:
23:ae:99:a0:b8:e3:b9:ce:8a:40:eb:ff:2d:d6:59:
59:97:9d:57:e2:11:bc:3e:97:c9:f7:0d:21:4b:8a:
a2:5d:4a:1c:13:9d:1e:47:7b:e9:10:a9:69:24:cf:
82:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:99:CC:79:09:9C:99:91:B9:C3:89:14:48:29:7E:D6:08:F8:3E:03
X509v3 Authority Key Identifier:
keyid:9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:d6:4c:cf:37:e9:04:1d:00:16:a0:f9:6d:f9:69:e5:7c:e5:
ba:ae:75:41:df:26:cd:42:1d:33:8c:10:00:ac:84:40:9a:7d:
5c:a0:36:46:20:77:b9:7e:60:cd:9c:b9:00:51:51:0c:86:30:
d1:7c:48:0b:0c:6a:d4:5f:95:55:c7:f0:37:28:cd:46:fb:2a:
ff:2d:6e:12:2f:83:6d:a7:5a:c4:83:e4:6a:8c:d6:b9:23:56:
8d:23:bb:bd:ec:fc:af:64:ce:96:5d:a7:ed:8f:51:54:98:42:
6c:94:2c:a5:3e:df:50:d3:d4:3f:d9:30:43:46:00:13:16:ea:
ea:af:eb:5d:36:85:36:74:cc:82:c1:b5:54:49:25:30:2f:fc:
d9:48:58:03:d1:c4:6f:22:6d:da:c6:40:47:3d:b4:a2:94:db:
38:f9:60:88:60:e4:7b:30:06:89:ce:58:05:d0:17:80:ed:53:
29:92:5d:7a:70:b9:c4:c8:ee:28:53:eb:e3:7a:10:93:f1:2e:
cc:1a:a3:13:0e:4c:b2:9a:9f:cb:b7:ce:b6:76:1a:1b:93:7f:
40:f1:af:db:90:70:62:ce:42:14:04:93:f4:52:ff:37:38:86:
a7:03:d8:fc:b4:62:c8:d9:6f:a3:5e:fd:a0:6c:02:cc:13:dd:
e8:ae:24:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdnckAC2X4K5o1gsY51QJCWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllMWJhMTY1M2ZjYTdjODAxNzIzY2E0NmZmNDQyZTZiYWMx
ZTkxYTAwHhcNMjUwNjEzMDQwMDMwWhcNMjUwNjE0MDQwMDMwWjAzMTEwLwYDVQQD
EygwODk5Y2M3OTA5OWM5OTkxYjljMzg5MTQ0ODI5N2VkNjA4ZjgzZTAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuaiIVR8dYHtWjp2cBj8+MR8yJ80r
cMdTATXtINbPt7ib/Wlai02WEQ4nNeG1nFrdS9GjLyQovMuwTx6NR+BBH/Hy/NMu
D4G87j/Rtf6bF1wRBi1Hm77ubTbFJSLMtwLdFgIvhvE8EjgJuF/kpHN9zaYCud8e
LIKs3rrW0ijltmRdFC2mwxApePfcG+nulR0j4nxgBdD9/YOAYv+xS5bdu4lXvxN8
eXWSY+fD0HT1HBltrIBjH4HsxU8yZ3Jr1q+CVgw1Rls+qDU7+jDHDw2n3P8jrpmg
uOO5zopA6/8t1llZl51X4hG8PpfJ9w0hS4qiXUocE50eR3vpEKlpJM+CDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAiZzHkJnJmRucOJFEgpftYI+D4DMB8GA1UdIwQY
MBaAFJ4boWU/ynyAFyPKRv9ELmusHpGgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8zODk0MjQtYWFiYS00NDkxLTlmYmEt
ZmNiNDNkNGY2NzE0LzEvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy8zODk0MjQtYWFiYS00NDkxLTlmYmEtZmNiNDNkNGY2NzE0
LzEvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAstZMzzfp
BB0AFqD5bflp5Xzluq51Qd8mzUIdM4wQAKyEQJp9XKA2RiB3uX5gzZy5AFFRDIYw
0XxICwxq1F+VVcfwNyjNRvsq/y1uEi+DbadaxIPkaozWuSNWjSO7vez8r2TOll2n
7Y9RVJhCbJQspT7fUNPUP9kwQ0YAExbq6q/rXTaFNnTMgsG1VEklMC/82UhYA9HE
byJt2sZARz20opTbOPlgiGDkezAGic5YBdAXgO1TKZJdenC5xMjuKFPr43oQk/Eu
zBqjEw5Mspqfy7fOtnYaG5N/QPGv25BwYs5CFAST9FL/NziGpwPY/LRiyNlvo179
oGwCzBPd6K4kcA==
-----END CERTIFICATE-----
Generated at Fri Jun 13 13:25:18 2025 by rpki-client