Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
File: nDKfMzH1ND8pDrSkHxbENjooLJA.mft (raw, json)
Hash identifier: kmYvq02+2llCgajuI68H8odrp1BPR/MH7TppXS36FVU=
Subject key identifier: 71:52:45:EC:DE:8F:31:84:35:ED:C5:CA:64:C6:2B:BF:38:9A:76:AD
Authority key identifier: 9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
Certificate issuer: /CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Certificate serial: 019750B40EED5D960545C351D37CA18857E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
Manifest number: 1581
Signing time: Sun 08 Jun 2025 18:01:06 +0000
Manifest this update: Sun 08 Jun 2025 18:01:06 +0000
Manifest next update: Mon 09 Jun 2025 18:01:06 +0000
Files and hashes: 1: nDKfMzH1ND8pDrSkHxbENjooLJA.crl (hash: XMpHQX9+lUOKI6FfiQwxdqGCGPErwyr4ev4SphSU4GU=)
2: xXqtZaQE8p1BJ-LrGDHK3ctGl88.roa (hash: 19HlQM5dbXIMn5dc2AbBJAmDmCjDbQENEnPoWF/ZUJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:b4:0e:ed:5d:96:05:45:c3:51:d3:7c:a1:88:57:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Validity
Not Before: Jun 8 18:01:06 2025 GMT
Not After : Jun 9 18:01:06 2025 GMT
Subject: CN=715245ecde8f318435edc5ca64c62bbf389a76ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:29:2c:4c:dc:af:7a:6b:c2:8f:7d:23:d1:6f:
9d:3f:3a:44:d7:c1:a7:e5:98:46:87:05:08:e5:3f:
88:26:3f:b6:75:60:5d:4c:0f:52:73:15:10:5f:39:
3a:9c:b7:d0:79:be:60:0f:af:ee:87:48:00:d4:d0:
f2:ac:de:01:7e:0d:6b:02:da:c0:58:c1:0a:3b:f6:
24:e8:2d:34:a0:44:06:41:78:ee:af:c9:e8:51:83:
cb:c4:5c:d0:30:fd:96:62:aa:69:16:7e:22:a9:8f:
0e:db:41:ea:b6:31:11:3c:88:93:98:72:80:ae:35:
3f:82:25:7e:3a:63:f5:f0:79:75:e0:ca:94:83:e9:
b2:86:71:27:f5:3c:01:3e:a1:e0:3c:51:3e:57:d3:
e6:6b:43:d9:d5:fc:bc:2a:4f:84:80:6c:3d:33:09:
fb:dc:26:c4:20:b9:10:a8:bb:7f:66:2e:49:39:10:
e9:73:a3:20:32:c3:41:c3:db:2c:66:c6:a4:ae:a4:
37:01:bc:46:b7:6f:44:31:db:5c:3b:e8:e3:f3:a1:
ad:09:e0:41:28:bc:2f:8f:92:e5:24:78:62:68:ae:
9f:0c:b3:55:78:26:2d:d0:28:de:bc:ab:63:78:ae:
e8:98:c4:7e:3c:17:fa:2c:af:ac:b8:71:13:31:aa:
8b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:52:45:EC:DE:8F:31:84:35:ED:C5:CA:64:C6:2B:BF:38:9A:76:AD
X509v3 Authority Key Identifier:
keyid:9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:a5:0e:13:3f:ca:a9:e9:50:31:7f:c9:9d:71:98:50:a4:68:
1c:08:56:0f:9d:cd:88:6e:7b:62:64:eb:e1:98:70:82:3b:48:
23:ea:b2:f0:b0:37:db:dd:22:e0:01:08:0f:6f:96:d9:83:4d:
ed:b5:49:03:46:13:86:24:eb:5c:5f:db:0f:3b:1b:a0:8d:e7:
59:b7:6a:b9:44:b2:99:4b:04:d0:99:61:b0:91:fc:72:43:41:
de:7e:6a:33:23:84:8d:0a:6a:60:ac:1d:9f:96:8c:db:3c:f4:
08:2d:75:93:95:1d:cc:43:53:77:ef:9e:1d:53:47:46:7f:4a:
38:7b:32:eb:80:17:56:1b:8e:93:19:5a:e3:c8:5d:39:04:13:
75:38:86:f6:b4:d7:6b:e5:09:8b:7b:28:2b:4e:9f:8b:74:f4:
fc:fc:2e:e5:e8:6c:40:d5:2e:fc:52:8d:c0:7c:a1:fd:72:75:
00:ad:f3:b3:d3:22:63:ca:83:fc:af:c6:cf:8e:31:7d:9b:25:
83:1a:f0:df:c9:2b:2c:a0:20:71:6e:69:35:2c:84:3a:a2:ed:
ee:cd:99:6b:82:84:a6:27:84:46:a0:36:32:40:e0:b4:f2:44:
8d:d2:a6:05:4c:30:9e:b4:3e:7c:83:2b:54:a7:40:b8:9c:82:
df:2b:4f:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdQtA7tXZYFRcNR03yhiFfnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljMzI5ZjMzMzFmNTM0M2YyOTBlYjRhNDFmMTZjNDM2M2Ey
ODJjOTAwHhcNMjUwNjA4MTgwMTA2WhcNMjUwNjA5MTgwMTA2WjAzMTEwLwYDVQQD
Eyg3MTUyNDVlY2RlOGYzMTg0MzVlZGM1Y2E2NGM2MmJiZjM4OWE3NmFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7yksTNyvemvCj30j0W+dPzpE18Gn
5ZhGhwUI5T+IJj+2dWBdTA9ScxUQXzk6nLfQeb5gD6/uh0gA1NDyrN4Bfg1rAtrA
WMEKO/Yk6C00oEQGQXjur8noUYPLxFzQMP2WYqppFn4iqY8O20HqtjERPIiTmHKA
rjU/giV+OmP18Hl14MqUg+myhnEn9TwBPqHgPFE+V9Pma0PZ1fy8Kk+EgGw9Mwn7
3CbEILkQqLt/Zi5JORDpc6MgMsNBw9ssZsakrqQ3AbxGt29EMdtcO+jj86GtCeBB
KLwvj5LlJHhiaK6fDLNVeCYt0CjevKtjeK7omMR+PBf6LK+suHETMaqLMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHFSRezejzGENe3FymTGK784mnatMB8GA1UdIwQY
MBaAFJwynzMx9TQ/KQ60pB8WxDY6KCyQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkRLZk16SDFORDhwRHJTa0h4YkVOam9vTEpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi82MjQyMjAtYzA3Ni00YTFkLWFlZmIt
YjdmNWQ0Mzk1Y2MwLzEvbkRLZk16SDFORDhwRHJTa0h4YkVOam9vTEpBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi82MjQyMjAtYzA3Ni00YTFkLWFlZmItYjdmNWQ0Mzk1Y2Mw
LzEvbkRLZk16SDFORDhwRHJTa0h4YkVOam9vTEpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFKUOEz/K
qelQMX/JnXGYUKRoHAhWD53NiG57YmTr4ZhwgjtII+qy8LA3290i4AEID2+W2YNN
7bVJA0YThiTrXF/bDzsboI3nWbdquUSymUsE0JlhsJH8ckNB3n5qMyOEjQpqYKwd
n5aM2zz0CC11k5UdzENTd++eHVNHRn9KOHsy64AXVhuOkxla48hdOQQTdTiG9rTX
a+UJi3soK06fi3T0/Pwu5ehsQNUu/FKNwHyh/XJ1AK3zs9MiY8qD/K/Gz44xfZsl
gxrw38krLKAgcW5pNSyEOqLt7s2Za4KEpieERqA2MkDgtPJEjdKmBUwwnrQ+fIMr
VKdAuJyC3ytPxg==
-----END CERTIFICATE-----
Generated at Sun Jun 8 23:21:16 2025 by rpki-client