Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
File: NutRbqkC2WStsqptytmh3A9bfv4.mft (raw, json)
Hash identifier: cIrnYjj0byhCJzL18OwYsQpbL60V5/POAeiJDTmjAfs=
Subject key identifier: E6:D0:F0:2A:DD:85:92:9B:1C:47:91:61:CE:D8:DC:8E:9D:B8:C8:7D
Authority key identifier: 36:EB:51:6E:A9:02:D9:64:AD:B2:AA:6D:CA:D9:A1:DC:0F:5B:7E:FE
Certificate issuer: /CN=36eb516ea902d964adb2aa6dcad9a1dc0f5b7efe
Certificate serial: 01963B784291B82F95309E9B45B8D998D5F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
Manifest number: 1482
Signing time: Tue 15 Apr 2025 22:00:59 +0000
Manifest this update: Tue 15 Apr 2025 22:00:59 +0000
Manifest next update: Wed 16 Apr 2025 22:00:59 +0000
Files and hashes: 1: NutRbqkC2WStsqptytmh3A9bfv4.crl (hash: 1ttra3wWCbHhhDj23QXW5J7MvktevLu509p8docSph4=)
2: XdAh2iIkdXAUuE10m0pcdADM_3Q.roa (hash: lEtjV/lSmPRly69ux6s/y/s94dr1ooRNJ7kAyfLCuys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 22:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3b:78:42:91:b8:2f:95:30:9e:9b:45:b8:d9:98:d5:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36eb516ea902d964adb2aa6dcad9a1dc0f5b7efe
Validity
Not Before: Apr 15 22:00:59 2025 GMT
Not After : Apr 16 22:00:59 2025 GMT
Subject: CN=e6d0f02add85929b1c479161ced8dc8e9db8c87d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:06:c7:6a:54:5e:4f:13:06:7e:0e:6e:ae:45:
c7:5c:b7:c6:0b:a1:fc:62:1f:49:b0:71:74:85:b7:
da:d4:7e:d3:c6:c4:62:03:29:06:be:4f:ea:10:63:
a9:7c:a6:53:21:9c:2f:84:66:3a:89:88:9d:09:53:
b7:0f:3c:bf:21:5b:3b:ca:17:e2:ed:ed:8b:46:71:
a5:2f:4a:4d:86:be:0e:8b:bd:46:49:5b:ad:8b:b5:
06:1f:98:39:ba:1d:0b:a6:cc:0b:57:7d:81:04:fe:
06:0a:3b:37:97:51:9e:40:5a:41:6c:91:66:d5:94:
fa:1d:44:0d:7b:70:32:99:c3:2c:10:10:7d:49:18:
c5:44:02:7b:b6:79:b8:db:23:16:d8:19:61:c9:fd:
1a:47:71:2f:a1:e4:95:c2:27:49:c6:8b:0d:6b:c7:
46:23:65:c7:a5:f9:37:24:3e:4c:3b:bb:9a:1c:af:
45:b4:fb:c1:7b:36:6b:cb:5a:fa:51:40:9b:1f:e4:
25:e9:ab:4d:75:78:c8:6c:3f:d3:8a:7c:78:ee:a8:
ac:fb:21:31:88:da:ab:4d:db:bc:43:8d:e5:3e:c4:
8e:79:48:98:f6:30:c1:6a:26:f9:b8:18:41:64:2e:
d6:92:ae:10:74:7e:93:e0:7f:16:a2:44:89:5b:39:
61:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D0:F0:2A:DD:85:92:9B:1C:47:91:61:CE:D8:DC:8E:9D:B8:C8:7D
X509v3 Authority Key Identifier:
keyid:36:EB:51:6E:A9:02:D9:64:AD:B2:AA:6D:CA:D9:A1:DC:0F:5B:7E:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:28:a7:4e:28:f4:84:a5:de:27:b3:74:68:8b:6b:9d:2d:00:
52:fe:e2:d7:1a:31:ad:cc:69:8b:67:5f:44:27:6e:c8:82:29:
01:ed:2c:0f:c2:18:ed:75:23:a8:19:1f:d0:15:02:cb:59:ef:
ae:a4:c1:c1:4d:f9:2f:b6:7b:d0:dd:7a:80:72:32:45:ea:db:
5e:37:f9:8d:e1:7d:55:e8:ba:29:34:b2:11:ef:bd:d7:d7:3f:
c8:01:18:1c:3c:bb:e0:78:99:5e:91:4c:25:5a:da:b4:7d:9a:
ed:25:5c:bc:4d:5f:e4:9d:c4:52:a8:75:9c:0d:91:b9:26:6e:
00:65:82:ea:b4:6e:04:d7:e1:01:fe:2c:0e:e6:14:3e:bf:01:
24:d7:c2:46:7f:96:9f:48:64:84:2e:e8:d4:f0:3b:56:60:26:
5c:f2:58:5d:0e:3c:08:d3:97:65:d3:57:a3:e5:72:8a:91:aa:
a9:14:9e:51:fc:6a:6d:71:88:1f:d9:c5:31:5e:5b:48:53:d7:
df:7e:7c:45:4e:31:e8:5d:c4:3a:d4:8b:4a:e2:28:d1:ff:eb:
e2:f9:57:18:c7:75:e5:1e:5e:6d:75:cc:66:99:99:88:b5:84:
a5:80:4d:e3:34:0d:4a:f3:91:6a:db:49:84:67:2c:17:8d:d2:
3e:f5:28:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY7eEKRuC+VMJ6bRbjZmNX2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2ZWI1MTZlYTkwMmQ5NjRhZGIyYWE2ZGNhZDlhMWRjMGY1
YjdlZmUwHhcNMjUwNDE1MjIwMDU5WhcNMjUwNDE2MjIwMDU5WjAzMTEwLwYDVQQD
EyhlNmQwZjAyYWRkODU5MjliMWM0NzkxNjFjZWQ4ZGM4ZTlkYjhjODdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwbHalReTxMGfg5urkXHXLfGC6H8
Yh9JsHF0hbfa1H7TxsRiAykGvk/qEGOpfKZTIZwvhGY6iYidCVO3Dzy/IVs7yhfi
7e2LRnGlL0pNhr4Oi71GSVuti7UGH5g5uh0LpswLV32BBP4GCjs3l1GeQFpBbJFm
1ZT6HUQNe3AymcMsEBB9SRjFRAJ7tnm42yMW2Blhyf0aR3EvoeSVwidJxosNa8dG
I2XHpfk3JD5MO7uaHK9FtPvBezZry1r6UUCbH+Ql6atNdXjIbD/Tinx47qis+yEx
iNqrTdu8Q43lPsSOeUiY9jDBaib5uBhBZC7Wkq4QdH6T4H8WokSJWzlh7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFObQ8CrdhZKbHEeRYc7Y3I6duMh9MB8GA1UdIwQY
MBaAFDbrUW6pAtlkrbKqbcrZodwPW37+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnV0UmJxa0MyV1N0c3FwdHl0bWgzQTliZnY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8yNmM2NzUtZGVmNy00MjMyLTgxMWIt
OGY3NmMzMjkxZmJjLzEvTnV0UmJxa0MyV1N0c3FwdHl0bWgzQTliZnY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS8yNmM2NzUtZGVmNy00MjMyLTgxMWItOGY3NmMzMjkxZmJj
LzEvTnV0UmJxa0MyV1N0c3FwdHl0bWgzQTliZnY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUCinTij0
hKXeJ7N0aItrnS0AUv7i1xoxrcxpi2dfRCduyIIpAe0sD8IY7XUjqBkf0BUCy1nv
rqTBwU35L7Z70N16gHIyRerbXjf5jeF9Vei6KTSyEe+919c/yAEYHDy74HiZXpFM
JVratH2a7SVcvE1f5J3EUqh1nA2RuSZuAGWC6rRuBNfhAf4sDuYUPr8BJNfCRn+W
n0hkhC7o1PA7VmAmXPJYXQ48CNOXZdNXo+VyipGqqRSeUfxqbXGIH9nFMV5bSFPX
3358RU4x6F3EOtSLSuIo0f/r4vlXGMd15R5ebXXMZpmZiLWEpYBN4zQNSvORattJ
hGcsF43SPvUouw==
-----END CERTIFICATE-----
Generated at Wed Apr 16 07:35:33 2025 by rpki-client