Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
File: nlY8Qm0ark7R5_WVNnSQIgiehHk.mft (raw, json)
Hash identifier: wTrkAlZsp0TeiPes/aBNHhy/rESmGVA/gfIFCX4Rp6s=
Subject key identifier: DD:74:B7:6F:E4:62:A0:A5:B6:4D:5C:29:C5:D4:61:FC:68:C4:CA:21
Authority key identifier: 9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
Certificate issuer: /CN=9e563c426d1aae4ed1e7f59536749022089e8479
Certificate serial: 01974FD7C8CB212E05D4018573DFC673A8C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
Manifest number: 0A41
Signing time: Sun 08 Jun 2025 14:00:31 +0000
Manifest this update: Sun 08 Jun 2025 14:00:31 +0000
Manifest next update: Mon 09 Jun 2025 14:00:31 +0000
Files and hashes: 1: DLPCyIKM7jz79PsqVnrxNoMgYXE.roa (hash: +QgaTeTZpZ2fDtls8hcOtAF0lYWHQbDmqjy56TBm3AY=)
2: nlY8Qm0ark7R5_WVNnSQIgiehHk.crl (hash: RJGir8TXBgmHpTwSrqEa99UzgdTs+B7Z2cYdeoR669I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:d7:c8:cb:21:2e:05:d4:01:85:73:df:c6:73:a8:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e563c426d1aae4ed1e7f59536749022089e8479
Validity
Not Before: Jun 8 14:00:31 2025 GMT
Not After : Jun 9 14:00:31 2025 GMT
Subject: CN=dd74b76fe462a0a5b64d5c29c5d461fc68c4ca21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:4b:63:87:41:10:c5:15:a8:f3:61:c1:92:c8:
b7:aa:85:73:b0:dc:8d:85:35:ef:ac:dc:5b:7f:eb:
ca:85:c1:c7:cc:71:77:0e:cb:80:c8:71:17:69:12:
35:54:57:71:e4:d7:ce:78:4c:76:d3:0c:1e:21:62:
64:97:e6:d2:7a:1d:46:bc:74:5b:c3:22:0f:0f:21:
bf:5d:56:f3:b2:9e:61:e8:98:34:c0:30:0e:6b:fa:
2f:ad:cb:1b:d9:aa:22:68:a7:c1:80:98:69:49:7d:
bd:26:42:5b:4f:5b:2a:b7:a6:7e:ef:d0:f4:4a:df:
23:e3:66:cb:f6:39:93:2e:d6:72:10:11:bf:c0:e0:
d0:27:44:59:f0:97:22:7e:67:65:4a:59:dc:44:21:
1b:08:3a:51:d1:75:60:0c:a7:29:b0:a7:75:f7:ff:
d6:d2:20:ab:57:33:bf:65:38:93:25:d4:f4:76:3c:
15:ab:d3:b7:6f:d2:ba:d5:65:3f:0e:c4:a3:5e:d8:
df:cc:22:54:b8:3d:be:41:a6:0c:be:93:cd:78:26:
9d:05:cb:0f:a7:0e:09:c1:69:fd:42:5c:73:5d:06:
d3:94:f7:5f:d9:ea:2e:ac:2c:8a:77:1e:eb:5c:56:
ff:02:67:dd:88:aa:da:59:87:38:9b:61:62:e6:6f:
2a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:74:B7:6F:E4:62:A0:A5:B6:4D:5C:29:C5:D4:61:FC:68:C4:CA:21
X509v3 Authority Key Identifier:
keyid:9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:dd:17:13:38:84:04:0b:b2:f6:1d:f1:1e:02:ac:a1:d1:82:
46:9f:48:5c:47:e2:d7:cf:01:15:6c:1b:d4:74:ef:47:a1:ed:
b4:51:ed:11:6f:af:15:a9:5d:b0:97:86:89:8d:34:32:43:81:
eb:de:19:1f:d5:fc:26:1b:dd:07:ff:56:a6:99:be:03:0c:ff:
a7:39:82:5d:00:2c:4a:ce:ed:6b:29:5f:8b:eb:7f:7b:36:b3:
9e:2a:e0:e4:4a:87:47:ba:4c:94:1c:2c:c0:de:8c:51:ef:c4:
34:a1:67:ac:2e:2a:e5:67:67:2d:03:1c:01:26:ac:15:e9:a1:
70:00:1c:b3:60:89:40:61:f6:3d:09:65:2b:e7:34:92:d2:72:
dd:2c:73:2d:ad:8b:79:83:9b:70:45:e9:2b:ab:29:05:f6:45:
77:c3:69:2d:23:91:5a:61:69:d4:36:de:12:43:47:ac:28:0e:
9b:70:b1:87:d4:5c:58:77:27:c7:e1:b3:71:f1:3d:51:4a:ec:
57:08:b5:d7:0a:03:9a:d8:2b:1d:e9:ed:31:57:50:9c:b6:75:
03:80:f0:56:82:17:ef:f5:4f:ca:97:16:8c:b8:52:77:e7:df:
33:80:0e:bd:ca:6a:ad:3f:82:f5:a0:f7:99:0a:90:74:d3:e4:
eb:93:db:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdP18jLIS4F1AGFc9/Gc6jAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllNTYzYzQyNmQxYWFlNGVkMWU3ZjU5NTM2NzQ5MDIyMDg5
ZTg0NzkwHhcNMjUwNjA4MTQwMDMxWhcNMjUwNjA5MTQwMDMxWjAzMTEwLwYDVQQD
EyhkZDc0Yjc2ZmU0NjJhMGE1YjY0ZDVjMjljNWQ0NjFmYzY4YzRjYTIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Etjh0EQxRWo82HBksi3qoVzsNyN
hTXvrNxbf+vKhcHHzHF3DsuAyHEXaRI1VFdx5NfOeEx20wweIWJkl+bSeh1GvHRb
wyIPDyG/XVbzsp5h6Jg0wDAOa/ovrcsb2aoiaKfBgJhpSX29JkJbT1sqt6Z+79D0
St8j42bL9jmTLtZyEBG/wODQJ0RZ8JcifmdlSlncRCEbCDpR0XVgDKcpsKd19//W
0iCrVzO/ZTiTJdT0djwVq9O3b9K61WU/DsSjXtjfzCJUuD2+QaYMvpPNeCadBcsP
pw4JwWn9QlxzXQbTlPdf2eourCyKdx7rXFb/AmfdiKraWYc4m2Fi5m8q/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN10t2/kYqCltk1cKcXUYfxoxMohMB8GA1UdIwQY
MBaAFJ5WPEJtGq5O0ef1lTZ0kCIInoR5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmxZOFFtMGFyazdSNV9XVk5uU1FJZ2llaEhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi81NWQ1OTUtZDBiYy00YmEyLTgwYTAt
YWZiY2YzNjZiYjA3LzEvbmxZOFFtMGFyazdSNV9XVk5uU1FJZ2llaEhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi81NWQ1OTUtZDBiYy00YmEyLTgwYTAtYWZiY2YzNjZiYjA3
LzEvbmxZOFFtMGFyazdSNV9XVk5uU1FJZ2llaEhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXd0XEziE
BAuy9h3xHgKsodGCRp9IXEfi188BFWwb1HTvR6HttFHtEW+vFaldsJeGiY00MkOB
694ZH9X8JhvdB/9Wppm+Awz/pzmCXQAsSs7taylfi+t/ezaznirg5EqHR7pMlBws
wN6MUe/ENKFnrC4q5WdnLQMcASasFemhcAAcs2CJQGH2PQllK+c0ktJy3SxzLa2L
eYObcEXpK6spBfZFd8NpLSORWmFp1DbeEkNHrCgOm3Cxh9RcWHcnx+GzcfE9UUrs
Vwi11woDmtgrHentMVdQnLZ1A4DwVoIX7/VPypcWjLhSd+ffM4AOvcpqrT+C9aD3
mQqQdNPk65PbHA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 20:32:27 2025 by rpki-client