Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.mft
File: nurBz77ElK6UV8hm5jYYZcTzAEg.mft (raw, json)
Hash identifier: svEfpR5QsLgfeJm5qvCbChB6qAiXqR+Q1Tu5/GNs9cA=
Subject key identifier: D4:25:15:35:73:B2:5B:50:61:94:2A:63:F8:B9:82:A3:E2:C7:F1:98
Authority key identifier: 9E:EA:C1:CF:BE:C4:94:AE:94:57:C8:66:E6:36:18:65:C4:F3:00:48
Certificate issuer: /CN=9eeac1cfbec494ae9457c866e6361865c4f30048
Certificate serial: 019923310B65AB9CB7F3DADFFCEDDA194D43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nurBz77ElK6UV8hm5jYYZcTzAEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.mft
Manifest number: 0C6D
Signing time: Sun 07 Sep 2025 08:00:40 +0000
Manifest this update: Sun 07 Sep 2025 08:00:40 +0000
Manifest next update: Mon 08 Sep 2025 08:00:40 +0000
Files and hashes: 1: mmnZOOh4xZoAyB6ozP7dMz0vpOQ.roa (hash: MPgwr3P3oOg7+ut0sMgX1kiy6aK0r7pykdMfFbGH85I=)
2: nurBz77ElK6UV8hm5jYYZcTzAEg.crl (hash: TRE6mbEPkEhU+dlNfNcVOLpcgvc60SJUjuyP3fm3R5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/nurBz77ElK6UV8hm5jYYZcTzAEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:0b:65:ab:9c:b7:f3:da:df:fc:ed:da:19:4d:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9eeac1cfbec494ae9457c866e6361865c4f30048
Validity
Not Before: Sep 7 08:00:40 2025 GMT
Not After : Sep 8 08:00:40 2025 GMT
Subject: CN=d425153573b25b5061942a63f8b982a3e2c7f198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ca:a1:d6:7f:2d:13:46:7f:c8:c2:a6:05:f0:
6a:d6:07:ff:c0:c4:36:79:d6:34:ed:1a:e8:80:51:
4f:9f:af:f2:96:ce:37:26:66:1c:0c:87:a9:80:c7:
6b:22:61:b7:5a:92:58:32:a2:74:d0:51:f4:dd:b9:
03:4c:7c:c4:b8:c3:95:16:e3:97:0c:29:f4:9f:9e:
8b:26:a5:a9:67:aa:14:ad:ea:21:66:50:fa:8e:3b:
09:e7:b5:10:9c:db:b2:6e:bb:95:35:26:2e:5d:a2:
75:47:1e:ae:03:03:db:25:2b:82:76:9a:a2:f3:83:
aa:c9:2b:f7:b9:c5:69:b1:e7:55:64:17:50:f6:3e:
1b:aa:ed:81:d2:30:b8:a2:c1:0d:c4:c3:a6:2c:dd:
a5:8e:31:16:0e:7d:66:35:53:ba:ea:68:66:41:3f:
cb:b4:0e:d5:6a:47:49:de:51:f0:7d:ea:4b:27:a0:
da:0b:26:61:dc:7f:5e:a5:17:ec:3c:a7:19:25:7e:
63:9f:44:ab:31:c1:5a:66:5f:30:3b:ba:27:72:d4:
e5:28:a2:41:ac:6a:83:1c:ed:c8:fb:93:a4:fb:9c:
01:16:58:74:96:f9:2b:07:ac:f0:96:e6:84:dd:78:
63:35:86:55:ee:1c:44:fe:b6:ea:c7:f1:2d:ab:69:
dc:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:25:15:35:73:B2:5B:50:61:94:2A:63:F8:B9:82:A3:E2:C7:F1:98
X509v3 Authority Key Identifier:
keyid:9E:EA:C1:CF:BE:C4:94:AE:94:57:C8:66:E6:36:18:65:C4:F3:00:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nurBz77ElK6UV8hm5jYYZcTzAEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:31:2b:54:f1:ff:c2:74:2e:69:29:0d:5c:b3:34:be:82:47:
f7:ec:f9:62:a2:00:99:dd:26:79:cc:93:1a:9c:a6:a4:e7:b7:
b0:7a:3a:07:0b:23:59:bf:06:7e:20:5d:33:f3:bb:fb:5c:5b:
07:7e:cb:12:89:e6:46:4c:ae:94:e6:d8:a6:77:ec:df:35:99:
b6:21:06:5f:47:ce:1e:58:a4:00:9a:71:fa:ae:0d:03:f1:3e:
f5:62:5a:bd:e0:e0:f5:51:fa:40:69:1a:ee:bb:e6:d9:a0:e6:
5b:7c:8c:72:cd:42:e2:ad:da:95:4a:55:62:ef:96:dd:ed:67:
0a:52:c5:ef:72:84:4d:2f:af:a2:68:da:03:40:7b:82:34:bb:
bf:1b:bc:97:5b:73:95:8c:6f:2b:5a:9e:af:13:43:22:5c:37:
9c:8a:d8:06:c0:ec:5f:1c:4e:2b:b4:cc:15:6b:14:b0:27:5f:
45:94:91:40:b1:a2:34:31:98:5c:6a:35:2d:48:89:bc:25:89:
50:e9:37:53:dc:e2:25:59:07:54:db:03:ba:5b:c4:e9:a2:8b:
56:90:4e:04:e6:9b:3f:d1:1b:59:9c:ba:cb:2c:69:d3:20:22:
57:b9:3e:bc:f1:d8:15:b1:71:03:a9:e3:a8:c0:ce:48:3a:dd:
86:e7:4a:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjMQtlq5y389rf/O3aGU1DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllZWFjMWNmYmVjNDk0YWU5NDU3Yzg2NmU2MzYxODY1YzRm
MzAwNDgwHhcNMjUwOTA3MDgwMDQwWhcNMjUwOTA4MDgwMDQwWjAzMTEwLwYDVQQD
EyhkNDI1MTUzNTczYjI1YjUwNjE5NDJhNjNmOGI5ODJhM2UyYzdmMTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl8qh1n8tE0Z/yMKmBfBq1gf/wMQ2
edY07RrogFFPn6/yls43JmYcDIepgMdrImG3WpJYMqJ00FH03bkDTHzEuMOVFuOX
DCn0n56LJqWpZ6oUreohZlD6jjsJ57UQnNuybruVNSYuXaJ1Rx6uAwPbJSuCdpqi
84OqySv3ucVpsedVZBdQ9j4bqu2B0jC4osENxMOmLN2ljjEWDn1mNVO66mhmQT/L
tA7VakdJ3lHwfepLJ6DaCyZh3H9epRfsPKcZJX5jn0SrMcFaZl8wO7onctTlKKJB
rGqDHO3I+5Ok+5wBFlh0lvkrB6zwluaE3XhjNYZV7hxE/rbqx/Etq2ncmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNQlFTVzsltQYZQqY/i5gqPix/GYMB8GA1UdIwQY
MBaAFJ7qwc++xJSulFfIZuY2GGXE8wBIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnVyQno3N0VsSzZVVjhobTVqWVlaY1R6QUVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS80N2U2MDktYjZiNy00NDNiLThhMDQt
ZTI4NWNkOGNhZDEyLzEvbnVyQno3N0VsSzZVVjhobTVqWVlaY1R6QUVnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS80N2U2MDktYjZiNy00NDNiLThhMDQtZTI4NWNkOGNhZDEy
LzEvbnVyQno3N0VsSzZVVjhobTVqWVlaY1R6QUVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUTErVPH/
wnQuaSkNXLM0voJH9+z5YqIAmd0mecyTGpympOe3sHo6BwsjWb8GfiBdM/O7+1xb
B37LEonmRkyulObYpnfs3zWZtiEGX0fOHlikAJpx+q4NA/E+9WJaveDg9VH6QGka
7rvm2aDmW3yMcs1C4q3alUpVYu+W3e1nClLF73KETS+vomjaA0B7gjS7vxu8l1tz
lYxvK1qerxNDIlw3nIrYBsDsXxxOK7TMFWsUsCdfRZSRQLGiNDGYXGo1LUiJvCWJ
UOk3U9ziJVkHVNsDulvE6aKLVpBOBOabP9EbWZy6yyxp0yAiV7k+vPHYFbFxA6nj
qMDOSDrdhudKuw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:36 2025 by rpki-client