
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.mft
File: nD_Ua11gbBzKtVixc24mIaS8BAM.mft (raw, json)
Hash identifier: neKanMgd/2SMeAg5uVYAZnz+NL5qOtYOkdQPjeevEug=
Subject key identifier: 52:45:FF:69:EF:62:31:C3:B7:95:87:7C:76:85:89:18:2C:2F:38:AB
Authority key identifier: 9C:3F:D4:6B:5D:60:6C:1C:CA:B5:58:B1:73:6E:26:21:A4:BC:04:03
Certificate issuer: /CN=9c3fd46b5d606c1ccab558b1736e2621a4bc0403
Certificate serial: 019767A92FB109A5C769AA63CC3534385A7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nD_Ua11gbBzKtVixc24mIaS8BAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.mft
Manifest number: 0819
Signing time: Fri 13 Jun 2025 05:00:30 +0000
Manifest this update: Fri 13 Jun 2025 05:00:30 +0000
Manifest next update: Sat 14 Jun 2025 05:00:30 +0000
Files and hashes: 1: nD_Ua11gbBzKtVixc24mIaS8BAM.crl (hash: jp+0GrRkMm25kZ91n6G31LmABimKH+JH2qX91ZbBZmU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/nD_Ua11gbBzKtVixc24mIaS8BAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 05:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:67:a9:2f:b1:09:a5:c7:69:aa:63:cc:35:34:38:5a:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c3fd46b5d606c1ccab558b1736e2621a4bc0403
Validity
Not Before: Jun 13 05:00:30 2025 GMT
Not After : Jun 14 05:00:30 2025 GMT
Subject: CN=5245ff69ef6231c3b795877c768589182c2f38ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:0f:30:c8:02:a7:db:18:11:c5:c7:36:15:2e:
64:b4:ab:45:b4:83:e8:9e:43:6d:c0:51:08:45:ae:
49:d7:ef:25:4e:dc:a2:41:a0:2d:64:44:89:55:5e:
54:39:40:6f:26:5f:05:26:b2:c1:da:e2:3d:8c:bb:
3a:d7:32:ed:1f:c8:ba:66:82:15:5f:b3:d3:bd:b6:
fd:8a:d1:a9:4d:86:4e:77:c5:e7:89:bd:97:9b:51:
65:b7:3f:56:29:c3:7e:0d:50:ff:8a:e9:09:56:d8:
9c:2e:72:4f:e6:3b:ae:80:58:e2:69:43:89:05:5c:
eb:5c:06:35:eb:ac:8c:5e:ec:1b:e4:cb:89:34:f9:
70:a6:71:02:c6:4f:cd:87:f6:07:1b:0c:8b:7c:0c:
46:35:46:68:15:3e:94:6d:ab:e4:8e:99:97:f5:d8:
67:db:72:5a:91:53:83:80:c0:d5:a0:8e:2d:0c:4d:
49:b3:74:49:23:4c:87:cf:0a:7f:79:12:66:c0:db:
b1:86:c2:ac:0d:1f:23:1f:95:fb:46:31:a3:c8:e4:
fd:7b:84:d6:1a:dc:78:23:11:fc:e9:2d:1b:c4:a4:
94:5b:b5:d7:cd:f2:b1:81:28:54:94:a6:81:a5:2e:
a5:ec:bc:03:58:bb:3b:3b:9b:f9:cd:10:38:66:d5:
58:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:45:FF:69:EF:62:31:C3:B7:95:87:7C:76:85:89:18:2C:2F:38:AB
X509v3 Authority Key Identifier:
keyid:9C:3F:D4:6B:5D:60:6C:1C:CA:B5:58:B1:73:6E:26:21:A4:BC:04:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nD_Ua11gbBzKtVixc24mIaS8BAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:a0:87:88:1b:83:d8:5f:8b:af:0a:f6:7a:77:b5:7e:f1:ca:
6f:1a:57:d7:59:ac:e5:af:d1:31:3e:a6:42:2e:a4:39:66:5f:
c4:8d:19:fb:27:db:2a:d9:6a:d6:e7:35:a6:90:dd:99:97:ba:
4d:0b:2b:4e:b0:d0:03:2f:8f:fc:ec:1e:e1:e2:60:02:00:c2:
3b:00:36:17:8b:7f:e5:71:dc:e3:77:e5:34:f8:72:c5:53:d1:
65:23:a1:b1:9d:3d:fd:60:1f:4a:e7:3f:fe:ee:95:38:9f:e0:
86:2f:01:71:b1:9f:65:f7:21:ac:f1:cc:27:07:a8:18:79:2f:
fb:8d:6a:30:5c:77:5b:23:65:6c:a5:54:59:3d:ff:33:e9:22:
4a:25:f7:f1:c8:ca:cb:58:cc:65:5d:8d:a1:f6:e2:aa:1d:9c:
bb:fc:4f:76:fe:93:0d:16:9d:ba:02:16:a1:33:10:ab:f7:ce:
5d:b8:1b:d5:b9:4f:19:3e:5d:bc:86:53:8e:7f:be:bf:fe:7e:
22:bf:24:0c:8a:9f:ce:7e:36:13:a0:e8:76:a5:4e:a9:29:db:
be:d9:82:d9:40:71:9c:b4:b2:6e:04:26:c1:17:f9:59:5f:ff:
82:fe:8d:e9:6a:0f:b4:57:4b:90:9e:53:bb:54:a5:00:a6:0b:
03:6a:34:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdnqS+xCaXHaapjzDU0OFp6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljM2ZkNDZiNWQ2MDZjMWNjYWI1NThiMTczNmUyNjIxYTRi
YzA0MDMwHhcNMjUwNjEzMDUwMDMwWhcNMjUwNjE0MDUwMDMwWjAzMTEwLwYDVQQD
Eyg1MjQ1ZmY2OWVmNjIzMWMzYjc5NTg3N2M3Njg1ODkxODJjMmYzOGFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiQ8wyAKn2xgRxcc2FS5ktKtFtIPo
nkNtwFEIRa5J1+8lTtyiQaAtZESJVV5UOUBvJl8FJrLB2uI9jLs61zLtH8i6ZoIV
X7PTvbb9itGpTYZOd8Xnib2Xm1Fltz9WKcN+DVD/iukJVticLnJP5juugFjiaUOJ
BVzrXAY166yMXuwb5MuJNPlwpnECxk/Nh/YHGwyLfAxGNUZoFT6UbavkjpmX9dhn
23JakVODgMDVoI4tDE1Js3RJI0yHzwp/eRJmwNuxhsKsDR8jH5X7RjGjyOT9e4TW
Gtx4IxH86S0bxKSUW7XXzfKxgShUlKaBpS6l7LwDWLs7O5v5zRA4ZtVYBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFJF/2nvYjHDt5WHfHaFiRgsLzirMB8GA1UdIwQY
MBaAFJw/1GtdYGwcyrVYsXNuJiGkvAQDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkRfVWExMWdiQnpLdFZpeGMyNG1JYVM4QkFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi81Y2VkMjUtOTA5Ni00NzUwLTgyMTkt
MGIzMWMzMzJkNTBkLzEvbkRfVWExMWdiQnpLdFZpeGMyNG1JYVM4QkFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi81Y2VkMjUtOTA5Ni00NzUwLTgyMTktMGIzMWMzMzJkNTBk
LzEvbkRfVWExMWdiQnpLdFZpeGMyNG1JYVM4QkFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASqCHiBuD
2F+Lrwr2ene1fvHKbxpX11ms5a/RMT6mQi6kOWZfxI0Z+yfbKtlq1uc1ppDdmZe6
TQsrTrDQAy+P/Owe4eJgAgDCOwA2F4t/5XHc43flNPhyxVPRZSOhsZ09/WAfSuc/
/u6VOJ/ghi8BcbGfZfchrPHMJweoGHkv+41qMFx3WyNlbKVUWT3/M+kiSiX38cjK
y1jMZV2Nofbiqh2cu/xPdv6TDRadugIWoTMQq/fOXbgb1blPGT5dvIZTjn++v/5+
Ir8kDIqfzn42E6DodqVOqSnbvtmC2UBxnLSybgQmwRf5WV//gv6N6WoPtFdLkJ5T
u1SlAKYLA2o06w==
-----END CERTIFICATE-----
Generated at Fri Jun 13 12:53:43 2025 by rpki-client