Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
File: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft (raw, json)
Hash identifier: HWmFacPLV23tQsVJAT+HPxP9CWpDGdtgvBhiQ15EcXw=
Subject key identifier: 04:B6:DD:1C:66:01:D5:20:EB:EE:55:68:3F:35:2F:69:D1:39:C5:32
Authority key identifier: 9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
Certificate issuer: /CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Certificate serial: 01964CD9080AE3DEC574B478726E3CD7C7E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
Manifest number: 0BCC
Signing time: Sat 19 Apr 2025 07:00:13 +0000
Manifest this update: Sat 19 Apr 2025 07:00:13 +0000
Manifest next update: Sun 20 Apr 2025 07:00:13 +0000
Files and hashes: 1: aRmXLbWgvqCrB_ieixDwg5bWHH4.roa (hash: NkuU0nUuwUULqqtGwJsRiK14f6VjdQm0HvAAtBo3GJQ=)
2: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl (hash: 0ohKPPU1bmzJh/LFbmNGpPx0ukDbroUlFr18BG6uNs4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:d9:08:0a:e3:de:c5:74:b4:78:72:6e:3c:d7:c7:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Validity
Not Before: Apr 19 07:00:13 2025 GMT
Not After : Apr 20 07:00:13 2025 GMT
Subject: CN=04b6dd1c6601d520ebee55683f352f69d139c532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:f6:4c:c6:c3:9e:43:de:56:a4:53:cf:b2:fe:
e1:1e:3e:c5:77:b1:5e:4c:50:a0:ef:32:7c:7a:6a:
35:e4:a4:92:31:d4:79:8a:39:9d:8f:a9:57:a2:cb:
9c:03:c9:af:7f:1d:56:ab:58:72:6c:27:0a:9a:da:
ff:04:bb:04:df:6d:8b:67:86:f5:e7:0a:45:4e:e9:
ab:b9:eb:d9:bb:99:f7:02:fb:ae:b4:d1:61:04:81:
bd:1e:1d:9c:20:75:10:07:ba:d4:8e:b8:b3:0f:e8:
96:ba:9a:20:38:34:cc:f5:2d:09:06:39:90:be:d8:
b1:e8:58:ec:b4:b8:d4:79:a4:99:51:56:7e:4a:e3:
e8:21:73:61:3a:ce:bd:00:0f:6d:06:85:0e:c0:e5:
c2:eb:ee:d1:58:e1:c6:17:10:c7:07:80:86:9b:a3:
1c:25:7a:35:e5:b5:d2:4d:ed:59:ae:6b:d0:64:28:
7b:a7:5a:68:38:71:1d:9e:69:59:49:8e:2a:85:d2:
fc:25:06:74:dd:29:23:55:53:4e:ae:64:a2:1c:9e:
b1:e1:48:67:70:bf:f5:1e:fe:30:ff:eb:07:8f:88:
21:2c:5a:20:e4:80:49:54:31:4a:66:3d:3c:ba:77:
00:77:8d:c9:1d:7d:e2:57:0d:23:46:de:36:1a:1f:
21:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B6:DD:1C:66:01:D5:20:EB:EE:55:68:3F:35:2F:69:D1:39:C5:32
X509v3 Authority Key Identifier:
keyid:9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:ef:a7:16:a5:f1:1d:db:3e:06:8d:86:85:fc:dd:c9:5c:28:
ab:9c:6a:e7:b0:57:ec:1f:5b:ab:96:e4:8f:38:97:e4:a2:d1:
56:6e:6e:71:d3:16:ca:7b:f6:5f:6e:d4:b1:2b:38:93:22:ff:
07:0f:82:f1:bd:ce:0d:a6:50:a8:27:3d:84:07:aa:97:ca:c9:
24:58:10:6f:a3:9d:b2:ac:f5:bb:14:f1:fb:bc:1c:ad:16:f8:
87:23:88:61:ea:dd:3b:ee:6c:d1:50:2c:f5:c1:3b:c4:1e:4d:
93:56:1f:62:aa:ed:f9:67:fc:7f:06:1c:c7:c6:71:05:6f:af:
ea:9d:f6:3b:05:53:85:9b:a0:9c:f5:6a:f7:83:b4:b3:dc:ee:
e2:1f:bb:e0:20:61:58:d7:8d:b7:81:94:ed:44:90:51:0e:0d:
09:3f:52:90:46:33:23:04:76:da:ed:98:66:6d:0e:77:8a:cf:
c0:d4:64:97:18:5e:7b:11:38:47:bb:02:42:99:cb:97:df:e5:
38:7d:c1:bb:ca:1d:ef:6f:d0:27:a1:74:e9:b6:dd:21:59:e5:
66:76:ec:fc:3a:e4:c7:df:82:0f:59:18:29:fc:ed:12:c1:ce:
96:fa:1f:3f:9f:b2:37:f9:40:0f:8b:05:9c:58:73:0b:c2:d0:
99:62:a4:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZM2QgK497FdLR4cm4818fiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMGUyYjllNjlmNTYyZGYxNGNmNzcyYmRlMDVmN2RhY2Rl
MjU5NjEwHhcNMjUwNDE5MDcwMDEzWhcNMjUwNDIwMDcwMDEzWjAzMTEwLwYDVQQD
EygwNGI2ZGQxYzY2MDFkNTIwZWJlZTU1NjgzZjM1MmY2OWQxMzljNTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgvZMxsOeQ95WpFPPsv7hHj7Fd7Fe
TFCg7zJ8emo15KSSMdR5ijmdj6lXosucA8mvfx1Wq1hybCcKmtr/BLsE322LZ4b1
5wpFTumruevZu5n3AvuutNFhBIG9Hh2cIHUQB7rUjrizD+iWupogODTM9S0JBjmQ
vtix6FjstLjUeaSZUVZ+SuPoIXNhOs69AA9tBoUOwOXC6+7RWOHGFxDHB4CGm6Mc
JXo15bXSTe1ZrmvQZCh7p1poOHEdnmlZSY4qhdL8JQZ03SkjVVNOrmSiHJ6x4Uhn
cL/1Hv4w/+sHj4ghLFog5IBJVDFKZj08uncAd43JHX3iVw0jRt42Gh8hvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAS23RxmAdUg6+5VaD81L2nROcUyMB8GA1UdIwQY
MBaAFJ0OK55p9WLfFM93K94F99rN4llhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblE0cm5tbjFZdDhVejNjcjNnWDMyczNpV1dFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8yNWJlMmYtOTJlYi00Y2RlLWEyNDct
ZDhkYzM0MDM2Y2U3LzEvblE0cm5tbjFZdDhVejNjcjNnWDMyczNpV1dFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8yNWJlMmYtOTJlYi00Y2RlLWEyNDctZDhkYzM0MDM2Y2U3
LzEvblE0cm5tbjFZdDhVejNjcjNnWDMyczNpV1dFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhe+nFqXx
Hds+Bo2GhfzdyVwoq5xq57BX7B9bq5bkjziX5KLRVm5ucdMWynv2X27UsSs4kyL/
Bw+C8b3ODaZQqCc9hAeql8rJJFgQb6Odsqz1uxTx+7wcrRb4hyOIYerdO+5s0VAs
9cE7xB5Nk1YfYqrt+Wf8fwYcx8ZxBW+v6p32OwVThZugnPVq94O0s9zu4h+74CBh
WNeNt4GU7USQUQ4NCT9SkEYzIwR22u2YZm0Od4rPwNRklxheexE4R7sCQpnLl9/l
OH3Bu8od72/QJ6F06bbdIVnlZnbs/Drkx9+CD1kYKfztEsHOlvofP5+yN/lAD4sF
nFhzC8LQmWKk1Q==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:36:00 2025 by rpki-client