Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft
File: NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft (raw, json)
Hash identifier: Y69sQGBewG+rM4mAoGwAvJjs4TziugljiUf4duMHazs=
Subject key identifier: D6:45:14:58:5E:20:4E:8F:A4:36:56:34:7D:3E:D5:87:31:AE:A4:29
Authority key identifier: 35:16:52:B8:38:FF:2D:96:72:AC:8C:A6:6B:A6:60:DD:4E:45:D6:99
Certificate issuer: /CN=351652b838ff2d9672ac8ca66ba660dd4e45d699
Certificate serial: 0197444168553817476FD1717CBF377FEFCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRZSuDj_LZZyrIyma6Zg3U5F1pk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft
Manifest number: 0A5E
Signing time: Fri 06 Jun 2025 08:00:26 +0000
Manifest this update: Fri 06 Jun 2025 08:00:26 +0000
Manifest next update: Sat 07 Jun 2025 08:00:26 +0000
Files and hashes: 1: NRZSuDj_LZZyrIyma6Zg3U5F1pk.crl (hash: Lli/8uONULyvrcOlOWtPzr2aIw/h9poB+6p0GEtAqLw=)
2: Zk0y4tHHB8Yu3r49IrGLEovlzps.roa (hash: Z8BlFARu3PiIVKgAzCmvXp/n3Elo4eu1cJ/tXUB0sZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft
rsync://rpki.ripe.net/repository/DEFAULT/NRZSuDj_LZZyrIyma6Zg3U5F1pk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:44:41:68:55:38:17:47:6f:d1:71:7c:bf:37:7f:ef:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351652b838ff2d9672ac8ca66ba660dd4e45d699
Validity
Not Before: Jun 6 08:00:26 2025 GMT
Not After : Jun 7 08:00:26 2025 GMT
Subject: CN=d64514585e204e8fa43656347d3ed58731aea429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:22:a2:bc:1c:1b:8a:c1:f6:a4:be:71:1a:e6:
f1:bb:d1:45:3a:ab:a9:8a:8b:6d:62:e2:01:64:91:
0d:42:0d:09:98:f3:a9:15:70:0d:be:1a:a4:4f:a9:
53:b1:01:11:54:6c:92:56:3a:f6:35:80:74:56:a0:
2b:d8:8e:fa:81:18:e8:ce:37:05:93:10:9b:b8:56:
97:0f:9d:48:84:fe:6f:5e:35:1f:b8:db:a3:28:4b:
94:ce:63:f6:aa:d4:e9:bb:b8:64:6a:bd:af:51:79:
74:16:0d:96:9e:ba:3b:20:92:c0:68:10:98:4d:fb:
18:17:1a:d1:08:12:7a:db:80:25:d0:4c:ea:21:6d:
10:f8:4b:03:aa:a4:b6:ce:25:11:af:ac:59:f3:cc:
81:16:32:4a:21:c8:1b:ea:b4:c5:ea:2e:f8:39:a4:
ad:b1:7c:3c:c7:bc:74:a1:06:54:b1:84:d5:05:4c:
1c:ee:e2:86:28:e9:0a:46:73:42:37:93:ef:d3:bc:
75:db:8a:ff:b0:f1:52:97:64:1d:3d:39:02:54:26:
2e:d2:83:e8:38:51:ba:30:09:40:29:cf:75:d7:18:
1e:bc:bf:f5:9c:7b:5e:89:8b:fc:da:0d:09:f8:c4:
5b:3d:9f:e3:e0:e9:da:eb:3f:4f:ec:38:04:87:c4:
cc:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:45:14:58:5E:20:4E:8F:A4:36:56:34:7D:3E:D5:87:31:AE:A4:29
X509v3 Authority Key Identifier:
keyid:35:16:52:B8:38:FF:2D:96:72:AC:8C:A6:6B:A6:60:DD:4E:45:D6:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRZSuDj_LZZyrIyma6Zg3U5F1pk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:95:88:c8:a4:03:5c:6e:fc:be:28:0e:35:7f:8d:bc:26:17:
6c:11:6c:97:f6:a3:96:72:da:dc:6d:40:e4:de:36:db:19:75:
5e:d6:32:55:b7:f8:c4:57:d7:e3:7f:57:be:69:b4:d7:8a:fa:
cc:04:a4:7a:1e:49:49:2d:f4:62:e1:f9:65:96:94:1f:6b:8b:
79:27:e9:91:96:10:db:89:c7:5c:e5:62:3c:d0:40:68:a1:e1:
c4:0f:a7:fb:1b:e4:79:3e:4e:20:ad:af:b9:ba:d2:89:a4:a8:
51:96:ef:0c:13:6f:05:6a:ad:12:c1:cb:98:65:c4:ff:9e:2e:
96:9d:65:d7:0d:cd:5e:6b:80:22:bf:08:70:9b:ee:92:87:10:
0c:f3:fb:77:f7:12:e2:73:fd:bc:47:b5:34:1e:75:67:19:9b:
9d:9d:0f:58:c4:df:20:5b:16:f5:bc:5d:0c:fc:7a:d0:33:b1:
a8:1c:88:b1:d9:7f:98:1d:5f:6b:49:26:8a:75:58:95:38:eb:
5c:ec:72:19:ae:a1:35:01:95:3f:45:1d:9f:f9:6b:c8:67:c6:
e5:50:1f:27:ab:12:c6:a6:bf:8b:dc:76:3f:bd:08:f2:21:d8:
f6:c5:ba:90:03:33:be:af:b5:72:e0:f6:c4:79:54:95:2b:fa:
7b:5c:f5:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdEQWhVOBdHb9FxfL83f+/NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1MTY1MmI4MzhmZjJkOTY3MmFjOGNhNjZiYTY2MGRkNGU0
NWQ2OTkwHhcNMjUwNjA2MDgwMDI2WhcNMjUwNjA3MDgwMDI2WjAzMTEwLwYDVQQD
EyhkNjQ1MTQ1ODVlMjA0ZThmYTQzNjU2MzQ3ZDNlZDU4NzMxYWVhNDI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvCKivBwbisH2pL5xGubxu9FFOqup
iottYuIBZJENQg0JmPOpFXANvhqkT6lTsQERVGySVjr2NYB0VqAr2I76gRjozjcF
kxCbuFaXD51IhP5vXjUfuNujKEuUzmP2qtTpu7hkar2vUXl0Fg2Wnro7IJLAaBCY
TfsYFxrRCBJ624Al0EzqIW0Q+EsDqqS2ziURr6xZ88yBFjJKIcgb6rTF6i74OaSt
sXw8x7x0oQZUsYTVBUwc7uKGKOkKRnNCN5Pv07x124r/sPFSl2QdPTkCVCYu0oPo
OFG6MAlAKc911xgevL/1nHteiYv82g0J+MRbPZ/j4Ona6z9P7DgEh8TMJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNZFFFheIE6PpDZWNH0+1YcxrqQpMB8GA1UdIwQY
MBaAFDUWUrg4/y2WcqyMpmumYN1ORdaZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlJaU3VEal9MWlp5ckl5bWE2WmczVTVGMXBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi85Y2U2MGItY2JjNC00MGQ5LTk4YWQt
MWNkNTA2MDcwYmI1LzEvTlJaU3VEal9MWlp5ckl5bWE2WmczVTVGMXBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi85Y2U2MGItY2JjNC00MGQ5LTk4YWQtMWNkNTA2MDcwYmI1
LzEvTlJaU3VEal9MWlp5ckl5bWE2WmczVTVGMXBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdJWIyKQD
XG78vigONX+NvCYXbBFsl/ajlnLa3G1A5N422xl1XtYyVbf4xFfX439Xvmm014r6
zASkeh5JSS30YuH5ZZaUH2uLeSfpkZYQ24nHXOViPNBAaKHhxA+n+xvkeT5OIK2v
ubrSiaSoUZbvDBNvBWqtEsHLmGXE/54ulp1l1w3NXmuAIr8IcJvukocQDPP7d/cS
4nP9vEe1NB51ZxmbnZ0PWMTfIFsW9bxdDPx60DOxqByIsdl/mB1fa0kminVYlTjr
XOxyGa6hNQGVP0Udn/lryGfG5VAfJ6sSxqa/i9x2P70I8iHY9sW6kAMzvq+1cuD2
xHlUlSv6e1z1Zw==
-----END CERTIFICATE-----
Generated at Fri Jun 6 11:40:39 2025 by rpki-client