Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.mft
File: nurBz77ElK6UV8hm5jYYZcTzAEg.mft (raw, json)
Hash identifier: Dcp9ZKIdaBuy/zsDAjHTgZPCTguPXN7dxoIqLhZf3pQ=
Subject key identifier: 03:E0:6C:44:A8:2C:11:88:72:61:65:52:69:EC:A2:0B:37:44:5D:D7
Authority key identifier: 9E:EA:C1:CF:BE:C4:94:AE:94:57:C8:66:E6:36:18:65:C4:F3:00:48
Certificate issuer: /CN=9eeac1cfbec494ae9457c866e6361865c4f30048
Certificate serial: 01974A0C9CF643D8F94CA87376B29D79767B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nurBz77ElK6UV8hm5jYYZcTzAEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.mft
Manifest number: 0B78
Signing time: Sat 07 Jun 2025 11:00:30 +0000
Manifest this update: Sat 07 Jun 2025 11:00:30 +0000
Manifest next update: Sun 08 Jun 2025 11:00:30 +0000
Files and hashes: 1: mmnZOOh4xZoAyB6ozP7dMz0vpOQ.roa (hash: MPgwr3P3oOg7+ut0sMgX1kiy6aK0r7pykdMfFbGH85I=)
2: nurBz77ElK6UV8hm5jYYZcTzAEg.crl (hash: JBvwyOoPw+MNl4DRRlHmRiMKdg4B188TR8xN0AKP7Dc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/nurBz77ElK6UV8hm5jYYZcTzAEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:9c:f6:43:d8:f9:4c:a8:73:76:b2:9d:79:76:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9eeac1cfbec494ae9457c866e6361865c4f30048
Validity
Not Before: Jun 7 11:00:30 2025 GMT
Not After : Jun 8 11:00:30 2025 GMT
Subject: CN=03e06c44a82c11887261655269eca20b37445dd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:dc:05:5b:41:d3:24:02:f7:12:d3:51:4e:68:
ab:2e:98:4c:11:f7:50:33:af:cb:66:28:44:67:1c:
87:1b:86:4a:cd:aa:df:da:2e:91:d6:6d:11:4f:20:
51:ba:ad:26:96:e0:35:8b:66:0c:e7:02:b8:44:6b:
1a:ef:e8:de:b3:66:56:81:a8:7c:e1:ed:09:4c:54:
c8:7a:19:aa:2d:98:c4:31:b2:53:69:8f:e8:d5:e9:
c1:b8:b1:b4:31:10:92:80:b4:e6:ff:bf:18:ee:46:
f6:f7:e6:a4:84:bb:dd:0d:82:35:36:50:22:c7:5b:
78:0b:b3:dd:17:3b:a2:5a:b5:85:49:39:0f:1c:4b:
75:bd:19:80:5a:f6:44:a8:d4:94:24:cf:5b:f2:7f:
00:20:ea:41:41:25:c1:e3:f7:cc:13:2b:05:38:57:
87:ec:d3:8c:c0:1c:27:7f:a8:62:f5:32:83:77:23:
f7:c0:13:88:fc:6f:ff:ee:14:7c:26:e5:e1:36:fa:
11:28:00:a6:f1:0d:ce:59:44:eb:4c:12:e3:8b:2c:
0a:27:44:23:fb:34:e1:9d:2e:e0:f0:57:94:84:94:
1f:e3:5a:3e:20:b1:1a:9f:3e:04:be:75:dd:8f:1b:
de:57:34:10:9c:12:c9:48:17:5e:9d:d8:8b:b9:0e:
e5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:E0:6C:44:A8:2C:11:88:72:61:65:52:69:EC:A2:0B:37:44:5D:D7
X509v3 Authority Key Identifier:
keyid:9E:EA:C1:CF:BE:C4:94:AE:94:57:C8:66:E6:36:18:65:C4:F3:00:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nurBz77ElK6UV8hm5jYYZcTzAEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:b1:fa:e2:0e:66:9e:95:56:69:e0:cd:19:e0:54:44:4f:aa:
90:c6:fc:95:0c:35:d0:a8:7b:2b:df:12:5e:40:6f:ff:65:5e:
66:47:2b:a6:47:bb:09:10:04:0c:99:f3:d1:b1:1e:2f:2d:2b:
29:d6:f9:d2:0a:39:51:d7:67:92:09:f9:88:af:e0:70:48:ac:
c6:34:80:39:73:8f:d5:d6:6b:b2:aa:69:06:19:2e:a3:9a:b4:
c4:6a:ba:a4:af:9b:2d:f6:a3:d8:75:8c:8f:87:98:18:bc:c5:
0a:f5:3e:20:3f:4b:a2:db:ca:cb:d5:38:d0:c1:e1:c8:45:37:
5b:fe:a9:3f:cc:39:6c:8b:f0:54:92:62:0d:48:5f:8c:91:38:
b9:fc:e4:74:e4:26:e9:85:78:dc:6d:42:3b:37:f6:8f:37:33:
b9:46:5f:4e:60:a6:76:28:d9:ac:c0:44:8a:23:62:de:c6:f4:
ff:9e:3e:d6:79:a9:f0:09:b2:57:37:a6:d4:ab:83:87:3d:1b:
98:c5:57:8f:8a:1e:c3:d8:05:cc:fc:56:8d:02:e6:18:ce:d5:
bc:db:6b:34:93:39:61:e1:f8:f5:7b:26:39:6e:f2:31:30:fc:
e9:6c:7c:8a:b6:a7:68:37:75:8d:1e:4e:28:01:2e:52:b5:c3:
fe:27:ac:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKDJz2Q9j5TKhzdrKdeXZ7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllZWFjMWNmYmVjNDk0YWU5NDU3Yzg2NmU2MzYxODY1YzRm
MzAwNDgwHhcNMjUwNjA3MTEwMDMwWhcNMjUwNjA4MTEwMDMwWjAzMTEwLwYDVQQD
EygwM2UwNmM0NGE4MmMxMTg4NzI2MTY1NTI2OWVjYTIwYjM3NDQ1ZGQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr9wFW0HTJAL3EtNRTmirLphMEfdQ
M6/LZihEZxyHG4ZKzarf2i6R1m0RTyBRuq0mluA1i2YM5wK4RGsa7+jes2ZWgah8
4e0JTFTIehmqLZjEMbJTaY/o1enBuLG0MRCSgLTm/78Y7kb29+akhLvdDYI1NlAi
x1t4C7PdFzuiWrWFSTkPHEt1vRmAWvZEqNSUJM9b8n8AIOpBQSXB4/fMEysFOFeH
7NOMwBwnf6hi9TKDdyP3wBOI/G//7hR8JuXhNvoRKACm8Q3OWUTrTBLjiywKJ0Qj
+zThnS7g8FeUhJQf41o+ILEanz4EvnXdjxveVzQQnBLJSBdendiLuQ7lDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAPgbESoLBGIcmFlUmnsogs3RF3XMB8GA1UdIwQY
MBaAFJ7qwc++xJSulFfIZuY2GGXE8wBIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnVyQno3N0VsSzZVVjhobTVqWVlaY1R6QUVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS80N2U2MDktYjZiNy00NDNiLThhMDQt
ZTI4NWNkOGNhZDEyLzEvbnVyQno3N0VsSzZVVjhobTVqWVlaY1R6QUVnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS80N2U2MDktYjZiNy00NDNiLThhMDQtZTI4NWNkOGNhZDEy
LzEvbnVyQno3N0VsSzZVVjhobTVqWVlaY1R6QUVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuLH64g5m
npVWaeDNGeBURE+qkMb8lQw10Kh7K98SXkBv/2VeZkcrpke7CRAEDJnz0bEeLy0r
Kdb50go5Uddnkgn5iK/gcEisxjSAOXOP1dZrsqppBhkuo5q0xGq6pK+bLfaj2HWM
j4eYGLzFCvU+ID9LotvKy9U40MHhyEU3W/6pP8w5bIvwVJJiDUhfjJE4ufzkdOQm
6YV43G1COzf2jzczuUZfTmCmdijZrMBEiiNi3sb0/54+1nmp8AmyVzem1KuDhz0b
mMVXj4oew9gFzPxWjQLmGM7VvNtrNJM5YeH49XsmOW7yMTD86Wx8iranaDd1jR5O
KAEuUrXD/iescw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 15:34:25 2025 by rpki-client