Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft
File: pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft (raw, json)
Hash identifier: 0t3eszXQ1oVTDKY41/s1SL/QOuc9k29U40z/t+sxEdA=
Subject key identifier: 10:35:4E:EB:DD:25:5C:19:C0:52:F3:7F:A0:D3:70:82:8B:D8:E5:57
Authority key identifier: A4:D3:22:69:30:2E:1C:BC:CB:AA:C0:E0:E5:AF:8A:86:44:98:A1:35
Certificate issuer: /CN=a4d32269302e1cbccbaac0e0e5af8a864498a135
Certificate serial: 0196523666811FB02AA8D54074FE3304F0BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pNMiaTAuHLzLqsDg5a-KhkSYoTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft
Manifest number: 0DE2
Signing time: Sun 20 Apr 2025 08:00:18 +0000
Manifest this update: Sun 20 Apr 2025 08:00:18 +0000
Manifest next update: Mon 21 Apr 2025 08:00:18 +0000
Files and hashes: 1: WhtcuJJ0NSWsio8f8rQNMbqqeD8.roa (hash: uBIazeW9ZJrIEfawzpjRmH4sNuGdOT1AiFSbiZsPXDU=)
2: pNMiaTAuHLzLqsDg5a-KhkSYoTU.crl (hash: 8jseQ9NJAz7Aea0DsrDtNOk/XLpbPO/8mbGfaLcKNAo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/pNMiaTAuHLzLqsDg5a-KhkSYoTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:36:66:81:1f:b0:2a:a8:d5:40:74:fe:33:04:f0:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4d32269302e1cbccbaac0e0e5af8a864498a135
Validity
Not Before: Apr 20 08:00:18 2025 GMT
Not After : Apr 21 08:00:18 2025 GMT
Subject: CN=10354eebdd255c19c052f37fa0d370828bd8e557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:95:b6:ab:16:7c:a1:79:2f:5d:ac:87:a2:f1:
39:7f:cc:08:83:11:68:f3:d0:19:49:28:89:1e:24:
e3:83:7e:b4:88:50:a7:45:13:56:5d:27:61:31:fa:
92:59:5f:03:02:36:bd:7e:fd:1c:77:ef:2e:8a:e3:
ed:00:01:cf:fe:38:b2:98:39:27:c0:83:c0:1a:cd:
7b:af:23:29:7a:5f:bd:78:c0:e5:85:a5:fe:a6:b4:
33:d3:2a:34:63:3a:a8:43:70:54:f7:7c:cd:59:f4:
0a:74:67:38:fe:1a:ad:a3:d1:e3:c2:45:c2:a2:ba:
44:ba:cc:1c:b7:ca:1d:1e:c6:28:74:a0:d4:64:1c:
27:ec:f3:f4:05:1d:ba:7c:8c:80:92:65:52:b3:ba:
46:53:0c:71:4c:1d:50:51:08:99:d7:9e:05:dc:41:
b4:a6:b3:88:f1:19:92:ac:11:1e:be:e5:9a:56:3d:
c4:9d:04:e2:43:67:68:c2:ba:ef:d6:bd:26:05:f4:
34:eb:b7:0b:0e:11:90:65:c7:b5:72:17:d9:e3:a1:
c6:e8:fa:39:25:ad:87:50:ed:64:ed:c4:da:b9:c0:
2a:7b:9e:32:9c:19:01:d9:97:aa:4f:0f:f1:82:02:
f3:0e:d5:c7:29:e8:44:4d:a1:5d:85:e4:b6:0e:b7:
20:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:35:4E:EB:DD:25:5C:19:C0:52:F3:7F:A0:D3:70:82:8B:D8:E5:57
X509v3 Authority Key Identifier:
keyid:A4:D3:22:69:30:2E:1C:BC:CB:AA:C0:E0:E5:AF:8A:86:44:98:A1:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pNMiaTAuHLzLqsDg5a-KhkSYoTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:b0:7c:54:34:4a:8e:19:d2:cf:bc:7e:0a:ef:5e:45:60:02:
96:da:20:d5:6a:33:04:5c:f3:66:2c:85:d3:08:af:e1:ab:84:
3a:b5:15:84:68:31:d6:be:a7:b4:6a:f5:df:bc:11:a2:f0:e0:
71:48:3f:5d:4b:26:66:a3:55:cb:3d:87:f7:32:96:41:1c:19:
7e:96:58:82:84:39:eb:0d:a9:7f:eb:4f:aa:18:4f:e6:5e:e4:
48:1d:b3:d7:59:58:23:6b:10:30:75:6c:37:66:6b:e2:ee:bc:
3f:e6:a3:f0:64:96:6b:ca:6a:aa:23:d5:d5:7c:79:ba:80:58:
84:54:e6:00:32:be:98:59:5a:92:f8:fd:f8:d9:65:1e:ff:de:
1a:8b:20:32:8e:50:df:b8:bd:a5:8c:a7:11:41:a7:5b:59:15:
89:3a:8e:ed:7a:16:9b:fd:c6:bf:f1:78:37:5c:85:dd:e8:4d:
96:7b:66:8c:0c:7c:9b:d2:1b:31:43:b6:2f:e2:fa:05:e5:f5:
e0:f8:e3:e3:2b:52:21:c9:e1:99:1d:a3:d4:77:65:d5:c8:17:
56:bb:18:8b:38:6a:b5:cb:50:fa:39:bc:c2:0c:c3:c2:a2:37:
b2:7b:a9:13:c8:f6:b5:4e:c1:5d:bc:c7:36:80:a2:f8:90:6b:
4c:0f:2f:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZSNmaBH7AqqNVAdP4zBPC7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0ZDMyMjY5MzAyZTFjYmNjYmFhYzBlMGU1YWY4YTg2NDQ5
OGExMzUwHhcNMjUwNDIwMDgwMDE4WhcNMjUwNDIxMDgwMDE4WjAzMTEwLwYDVQQD
EygxMDM1NGVlYmRkMjU1YzE5YzA1MmYzN2ZhMGQzNzA4MjhiZDhlNTU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1JW2qxZ8oXkvXayHovE5f8wIgxFo
89AZSSiJHiTjg360iFCnRRNWXSdhMfqSWV8DAja9fv0cd+8uiuPtAAHP/jiymDkn
wIPAGs17ryMpel+9eMDlhaX+prQz0yo0YzqoQ3BU93zNWfQKdGc4/hqto9HjwkXC
orpEuswct8odHsYodKDUZBwn7PP0BR26fIyAkmVSs7pGUwxxTB1QUQiZ154F3EG0
prOI8RmSrBEevuWaVj3EnQTiQ2dowrrv1r0mBfQ067cLDhGQZce1chfZ46HG6Po5
Ja2HUO1k7cTaucAqe54ynBkB2ZeqTw/xggLzDtXHKehETaFdheS2Drcg1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBA1TuvdJVwZwFLzf6DTcIKL2OVXMB8GA1UdIwQY
MBaAFKTTImkwLhy8y6rA4OWvioZEmKE1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcE5NaWFUQXVITHpMcXNEZzVhLUtoa1NZb1RVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi85NjE2ZWUtMzgxZC00YWZlLTg5MGMt
NmVlNTE0YjI5MTE1LzEvcE5NaWFUQXVITHpMcXNEZzVhLUtoa1NZb1RVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi85NjE2ZWUtMzgxZC00YWZlLTg5MGMtNmVlNTE0YjI5MTE1
LzEvcE5NaWFUQXVITHpMcXNEZzVhLUtoa1NZb1RVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs7B8VDRK
jhnSz7x+Cu9eRWACltog1WozBFzzZiyF0wiv4auEOrUVhGgx1r6ntGr137wRovDg
cUg/XUsmZqNVyz2H9zKWQRwZfpZYgoQ56w2pf+tPqhhP5l7kSB2z11lYI2sQMHVs
N2Zr4u68P+aj8GSWa8pqqiPV1Xx5uoBYhFTmADK+mFlakvj9+NllHv/eGosgMo5Q
37i9pYynEUGnW1kViTqO7XoWm/3Gv/F4N1yF3ehNlntmjAx8m9IbMUO2L+L6BeX1
4Pjj4ytSIcnhmR2j1Hdl1cgXVrsYizhqtctQ+jm8wgzDwqI3snupE8j2tU7BXbzH
NoCi+JBrTA8v6A==
-----END CERTIFICATE-----
Generated at Sun Apr 20 12:59:42 2025 by rpki-client