Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
File: nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft (raw, json)
Hash identifier: hyOR0T/4lqsdbiMgQtMdChVDx8Se+H7RDTSW7GxduSw=
Subject key identifier: E3:6B:68:07:36:B5:C6:1B:C7:54:9B:7E:EB:66:4A:35:62:40:CB:5D
Authority key identifier: 9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
Certificate issuer: /CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Certificate serial: 019748FA0838B6793BC894B8E035E29725DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 06:00:35 +0000
Manifest this update: Sat 07 Jun 2025 06:00:35 +0000
Manifest next update: Sun 08 Jun 2025 06:00:35 +0000
Files and hashes: 1: CPqSq0ytAxDio98lkjeb_dYwRZ4.roa (hash: DBQ2P8ThG/7CNm8RF8WiO7psAqOGJ9hYf3OIiBNBEtw=)
2: nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl (hash: h3S9+Ur3sSCTOtCZAUuImED77g4DBl3zmFdIuANQj3A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:08:38:b6:79:3b:c8:94:b8:e0:35:e2:97:25:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Validity
Not Before: Jun 7 06:00:35 2025 GMT
Not After : Jun 8 06:00:35 2025 GMT
Subject: CN=e36b680736b5c61bc7549b7eeb664a356240cb5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:90:6c:95:c6:ed:9a:c5:92:17:12:1e:0d:39:
22:e7:91:58:d0:74:c7:d8:75:67:74:63:6b:c0:3c:
a2:6f:0c:9d:f7:c1:cd:86:76:4a:b1:6e:8c:b3:f5:
db:d4:bd:8b:8a:d8:d7:7c:8b:b7:35:62:b5:07:10:
17:16:59:a4:ef:98:59:40:d6:a4:b9:25:30:64:a6:
03:f7:31:01:b9:00:90:00:f2:d1:b7:b9:3b:fd:e4:
87:a4:c2:45:c3:d3:b9:b5:40:f7:d3:e1:e6:c4:ab:
fe:62:0c:a9:18:d0:d2:37:c2:18:3d:27:a0:c3:eb:
da:30:23:e6:e6:ad:70:2c:5d:d6:5c:ec:cb:f4:43:
42:65:fe:a4:a3:91:7f:9c:6b:01:50:bb:1f:a8:c5:
37:e2:d8:35:27:f5:ef:f3:3d:c7:01:ed:c0:5e:b7:
b7:89:c9:76:26:17:29:80:68:90:5d:f4:95:12:ce:
1b:7b:7f:04:dd:06:f9:f7:8b:03:28:ae:f5:53:ca:
70:c3:a6:92:c0:2d:97:ec:81:24:3a:24:b0:d9:d2:
ae:82:7b:ae:56:29:27:56:4c:fd:56:53:62:97:68:
0d:e4:2b:57:a3:8c:8f:b7:b8:ad:20:aa:97:e5:0c:
fb:90:d8:c5:07:7a:18:5d:2c:af:bc:07:79:86:1c:
97:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:6B:68:07:36:B5:C6:1B:C7:54:9B:7E:EB:66:4A:35:62:40:CB:5D
X509v3 Authority Key Identifier:
keyid:9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:63:39:1b:09:1e:8d:22:0b:6c:4b:1a:cf:2c:f6:2d:ce:a9:
1b:9e:c4:0c:09:89:e1:1f:c1:e8:65:11:d9:ee:9a:b5:45:89:
98:bb:95:19:88:f6:26:2f:61:a3:e6:07:c1:55:a6:ff:8d:76:
db:d7:9c:f0:41:54:39:61:be:57:37:d7:12:71:76:3b:8b:35:
1b:e9:df:b8:7d:4f:bf:44:93:96:7c:c1:d1:d6:72:29:55:03:
7b:fc:61:a6:29:07:2b:ea:78:00:48:2d:db:bb:44:ca:49:12:
09:6c:25:26:f9:7b:0d:80:93:fc:b5:50:20:26:43:cf:4d:b5:
85:1c:81:45:01:6b:b9:bb:cf:8f:48:aa:f7:e7:bf:32:8f:fd:
ba:10:00:95:94:2d:26:41:a8:9e:24:19:04:f1:7a:ba:2b:34:
68:e0:cf:0c:d7:78:50:90:7d:85:3e:46:f3:18:13:07:f2:e6:
6b:e9:74:76:6c:a1:1c:4c:44:70:9c:d9:90:e3:55:8f:47:62:
2a:2a:1b:23:e0:20:c5:d2:71:c4:e1:84:aa:4d:d3:82:de:de:
ec:a9:31:cf:b1:e3:70:1d:11:ba:2e:56:7f:c2:26:ce:8f:b4:
11:df:7f:2f:02:c2:14:61:28:41:a8:b6:2b:07:f3:44:68:7d:
8a:4c:e4:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdI+gg4tnk7yJS44DXilyXeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMjM5YzA4ZWFkOTRiYjA0ZmMzZTZiNGE2NWU2ZTFjN2Rj
ZjM4ZjQwHhcNMjUwNjA3MDYwMDM1WhcNMjUwNjA4MDYwMDM1WjAzMTEwLwYDVQQD
EyhlMzZiNjgwNzM2YjVjNjFiYzc1NDliN2VlYjY2NGEzNTYyNDBjYjVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxJBslcbtmsWSFxIeDTki55FY0HTH
2HVndGNrwDyibwyd98HNhnZKsW6Ms/Xb1L2LitjXfIu3NWK1BxAXFlmk75hZQNak
uSUwZKYD9zEBuQCQAPLRt7k7/eSHpMJFw9O5tUD30+HmxKv+YgypGNDSN8IYPSeg
w+vaMCPm5q1wLF3WXOzL9ENCZf6ko5F/nGsBULsfqMU34tg1J/Xv8z3HAe3AXre3
icl2JhcpgGiQXfSVEs4be38E3Qb594sDKK71U8pww6aSwC2X7IEkOiSw2dKugnuu
ViknVkz9VlNil2gN5CtXo4yPt7itIKqX5Qz7kNjFB3oYXSyvvAd5hhyXiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFONraAc2tcYbx1SbfutmSjViQMtdMB8GA1UdIwQY
MBaAFJ0jnAjq2UuwT8PmtKZebhx9zzj0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS8wNjA4NTktNzcwNy00MTJhLTk4MTAt
ZGJiMjkzMWEwZjY0LzEvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS8wNjA4NTktNzcwNy00MTJhLTk4MTAtZGJiMjkzMWEwZjY0
LzEvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYWM5Gwke
jSILbEsazyz2Lc6pG57EDAmJ4R/B6GUR2e6atUWJmLuVGYj2Ji9ho+YHwVWm/412
29ec8EFUOWG+VzfXEnF2O4s1G+nfuH1Pv0STlnzB0dZyKVUDe/xhpikHK+p4AEgt
27tEykkSCWwlJvl7DYCT/LVQICZDz021hRyBRQFrubvPj0iq9+e/Mo/9uhAAlZQt
JkGoniQZBPF6uis0aODPDNd4UJB9hT5G8xgTB/Lma+l0dmyhHExEcJzZkONVj0di
KiobI+AgxdJxxOGEqk3Tgt7e7Kkxz7HjcB0Rui5Wf8Imzo+0Ed9/LwLCFGEoQai2
KwfzRGh9ikzktQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 16:44:24 2025 by rpki-client