Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.mft
File: nyhBEXAEkqsL4RDoIaG85z-ApWU.mft (raw, json)
Hash identifier: V/ZVvVbfVJ3nCnp4E5dNjhkfkL4lwrzg/j09PRCnyTc=
Subject key identifier: 43:4A:3E:07:33:32:EC:F1:F3:B5:F3:DC:1A:08:2A:C7:03:A2:94:50
Authority key identifier: 9F:28:41:11:70:04:92:AB:0B:E1:10:E8:21:A1:BC:E7:3F:80:A5:65
Certificate issuer: /CN=9f284111700492ab0be110e821a1bce73f80a565
Certificate serial: 01974B1FC1D67BF7FBE22AF5644A55F66B73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyhBEXAEkqsL4RDoIaG85z-ApWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.mft
Manifest number: 125C
Signing time: Sat 07 Jun 2025 16:01:01 +0000
Manifest this update: Sat 07 Jun 2025 16:01:01 +0000
Manifest next update: Sun 08 Jun 2025 16:01:01 +0000
Files and hashes: 1: T7vd5c8yN7dKoGTcsEPGaB0GoJI.roa (hash: RdeAevZDp8XmGqqAvK8gJZd85NjETWsjIIExe3sxUXY=)
2: nyhBEXAEkqsL4RDoIaG85z-ApWU.crl (hash: VCqhpBUFEe+/bF0qfRv0uAdENYx6OPtTxGWsNN7MJow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/nyhBEXAEkqsL4RDoIaG85z-ApWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 16:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:c1:d6:7b:f7:fb:e2:2a:f5:64:4a:55:f6:6b:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f284111700492ab0be110e821a1bce73f80a565
Validity
Not Before: Jun 7 16:01:01 2025 GMT
Not After : Jun 8 16:01:01 2025 GMT
Subject: CN=434a3e073332ecf1f3b5f3dc1a082ac703a29450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c0:94:6d:04:08:d2:64:eb:80:1a:0b:0c:d9:
d8:81:89:7c:14:63:a7:47:59:d8:ef:d0:44:83:e5:
4a:9d:64:1e:b5:a1:64:0e:f1:02:4b:fa:1d:4c:7e:
85:7e:e3:c2:d3:8f:cf:41:f7:dc:54:73:11:c1:c4:
61:f9:2e:a8:4c:ee:5d:7d:25:a2:4d:ab:68:7c:f3:
2a:0b:22:91:fd:c6:1c:05:1d:e2:0b:4a:05:c4:c6:
b4:b9:63:3c:7d:df:73:d7:ed:a5:9a:24:98:c2:b7:
6d:0d:b7:56:34:2e:a6:05:cc:6d:af:80:dd:63:00:
25:54:0d:c4:4e:b4:11:df:55:e1:08:be:1b:65:f3:
86:6a:4f:5d:f0:2b:ba:a0:ea:fa:ac:b8:8d:24:e1:
a1:b3:4e:a0:6a:f6:b2:ae:cc:af:a5:10:97:f1:3c:
29:83:6b:88:06:7b:bc:aa:49:3e:95:89:12:7c:3d:
aa:75:c7:38:ee:15:09:09:0a:70:1a:1c:83:6d:e7:
d0:09:d7:e6:7f:03:e8:55:ee:9f:ba:67:83:10:a6:
2c:4c:1f:13:50:7f:97:66:38:23:90:da:e9:c5:47:
47:8b:68:14:17:a9:77:a1:7b:21:51:9b:9c:93:49:
79:54:fd:88:47:61:ab:bd:1e:00:9e:a8:52:65:66:
71:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:4A:3E:07:33:32:EC:F1:F3:B5:F3:DC:1A:08:2A:C7:03:A2:94:50
X509v3 Authority Key Identifier:
keyid:9F:28:41:11:70:04:92:AB:0B:E1:10:E8:21:A1:BC:E7:3F:80:A5:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyhBEXAEkqsL4RDoIaG85z-ApWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:5a:56:ed:bd:ee:9f:da:13:b1:d3:1e:c4:8e:3f:27:b2:7d:
00:62:9c:39:91:03:4c:57:b3:25:9e:19:c5:a3:87:5b:d3:66:
74:86:07:ec:b8:bd:c9:48:2e:d7:8b:aa:c1:c3:cf:bc:80:ae:
e3:74:d0:d6:23:98:c4:aa:48:b1:d1:e5:5b:97:5b:76:66:29:
c9:df:72:ca:a5:50:2c:f7:60:db:9b:62:bd:f4:8f:ff:7c:66:
7a:9d:a5:02:15:68:dc:c8:3b:a6:e7:ac:4c:dd:ed:32:0d:91:
9e:38:8b:ce:c6:7a:bb:85:1b:83:12:fd:11:c8:1b:f2:7d:cd:
11:fc:61:d9:88:b2:2c:82:54:24:ce:01:f7:0d:58:2d:3a:e3:
ae:50:2d:7f:3a:9a:62:fd:65:f6:99:0a:64:84:54:85:07:2b:
d8:f0:84:5c:20:93:f3:c7:90:f6:be:b2:49:49:92:46:c0:59:
ac:a0:56:35:09:d8:86:28:cc:a4:4f:bf:f1:cb:b8:c4:c5:37:
21:84:02:a9:1b:73:61:2c:9e:31:b5:4b:cb:ad:1c:fb:e2:23:
66:15:48:12:35:24:98:7c:68:aa:56:06:1f:3a:5e:35:c7:c7:
0e:13:02:cc:f7:c7:33:55:81:06:53:5b:b0:c5:ff:88:3d:a4:
5a:d1:72:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLH8HWe/f74ir1ZEpV9mtzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMjg0MTExNzAwNDkyYWIwYmUxMTBlODIxYTFiY2U3M2Y4
MGE1NjUwHhcNMjUwNjA3MTYwMTAxWhcNMjUwNjA4MTYwMTAxWjAzMTEwLwYDVQQD
Eyg0MzRhM2UwNzMzMzJlY2YxZjNiNWYzZGMxYTA4MmFjNzAzYTI5NDUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxsCUbQQI0mTrgBoLDNnYgYl8FGOn
R1nY79BEg+VKnWQetaFkDvECS/odTH6FfuPC04/PQffcVHMRwcRh+S6oTO5dfSWi
TatofPMqCyKR/cYcBR3iC0oFxMa0uWM8fd9z1+2lmiSYwrdtDbdWNC6mBcxtr4Dd
YwAlVA3ETrQR31XhCL4bZfOGak9d8Cu6oOr6rLiNJOGhs06gavayrsyvpRCX8Twp
g2uIBnu8qkk+lYkSfD2qdcc47hUJCQpwGhyDbefQCdfmfwPoVe6fumeDEKYsTB8T
UH+XZjgjkNrpxUdHi2gUF6l3oXshUZuck0l5VP2IR2GrvR4AnqhSZWZxnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFENKPgczMuzx87Xz3BoIKscDopRQMB8GA1UdIwQY
MBaAFJ8oQRFwBJKrC+EQ6CGhvOc/gKVlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnloQkVYQUVrcXNMNFJEb0lhRzg1ei1BcFdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8yZDBlOGYtY2Q4YS00ZDM4LWFjNTEt
NmY1MjNmOTYwMDczLzEvbnloQkVYQUVrcXNMNFJEb0lhRzg1ei1BcFdVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni8yZDBlOGYtY2Q4YS00ZDM4LWFjNTEtNmY1MjNmOTYwMDcz
LzEvbnloQkVYQUVrcXNMNFJEb0lhRzg1ei1BcFdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASlpW7b3u
n9oTsdMexI4/J7J9AGKcOZEDTFezJZ4ZxaOHW9NmdIYH7Li9yUgu14uqwcPPvICu
43TQ1iOYxKpIsdHlW5dbdmYpyd9yyqVQLPdg25tivfSP/3xmep2lAhVo3Mg7pues
TN3tMg2RnjiLzsZ6u4UbgxL9Ecgb8n3NEfxh2YiyLIJUJM4B9w1YLTrjrlAtfzqa
Yv1l9pkKZIRUhQcr2PCEXCCT88eQ9r6ySUmSRsBZrKBWNQnYhijMpE+/8cu4xMU3
IYQCqRtzYSyeMbVLy60c++IjZhVIEjUkmHxoqlYGHzpeNcfHDhMCzPfHM1WBBlNb
sMX/iD2kWtFyBg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 22:28:46 2025 by rpki-client