Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
File: nB7k05z6obOseZwX94grjOTigSA.mft (raw, json)
Hash identifier: UDHA2i6auEFExbwWqgTdgpsiR01Oh8S0Tn2A7JyCyfU=
Subject key identifier: 22:71:C7:9E:D3:41:F3:CF:08:F1:44:1C:A6:75:06:73:86:6D:5F:E8
Authority key identifier: 9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
Certificate issuer: /CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Certificate serial: 01976BBD760089B4850CC3AA7E1C1EC27B9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
Manifest number: 0841
Signing time: Sat 14 Jun 2025 00:01:07 +0000
Manifest this update: Sat 14 Jun 2025 00:01:07 +0000
Manifest next update: Sun 15 Jun 2025 00:01:07 +0000
Files and hashes: 1: egM_lo5hkg5KA7_uP-5h7pmD4BM.roa (hash: LWEk9cOjEXdGtew0n3bgwHhe3Zn8McfotK81AHI+3M0=)
2: nB7k05z6obOseZwX94grjOTigSA.crl (hash: u9avm8vA4C+ClGT0zzHComAl9oZ/S4lXeKo2oJW3WKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:76:00:89:b4:85:0c:c3:aa:7e:1c:1e:c2:7b:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Validity
Not Before: Jun 14 00:01:07 2025 GMT
Not After : Jun 15 00:01:07 2025 GMT
Subject: CN=2271c79ed341f3cf08f1441ca6750673866d5fe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1e:de:29:3c:78:f8:e2:e8:1c:11:3b:2b:84:
fe:35:bc:5b:d6:2d:83:b6:72:4d:7a:d3:a3:16:c9:
b6:c0:20:78:28:18:3a:6f:f5:ee:7c:12:0d:27:b3:
e8:70:9f:c1:c8:30:28:4f:b4:15:93:a4:d5:12:94:
70:c1:0a:fe:98:da:e6:72:cc:b7:80:92:64:48:67:
0b:4a:73:b2:b6:18:de:b3:5b:03:17:79:ad:44:b0:
49:95:17:2b:43:55:05:28:0f:3b:83:82:50:17:77:
57:f3:95:f5:fd:c7:f8:74:92:b6:74:a4:5e:56:93:
92:d9:84:ad:18:aa:24:f2:92:eb:7b:0e:19:03:f3:
cb:48:83:60:f1:1c:b0:b4:2a:85:4e:80:48:fb:0d:
83:93:ab:c0:d1:fa:33:f7:43:21:d7:9d:7f:82:5e:
bd:5c:eb:52:08:ae:2c:cd:b2:da:ab:b5:2a:b0:c8:
b4:77:3e:93:52:da:a2:96:42:30:47:a5:36:fc:11:
8f:74:4f:5a:7d:7c:9d:84:9e:af:53:5b:a0:44:42:
1f:43:ca:3e:50:6e:d7:06:9e:f4:59:55:fd:e8:83:
2a:51:75:d2:99:8e:4b:9a:33:da:47:60:e3:ce:2e:
c9:47:d0:6d:00:42:47:cf:13:cb:a0:82:9b:57:b7:
d2:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:71:C7:9E:D3:41:F3:CF:08:F1:44:1C:A6:75:06:73:86:6D:5F:E8
X509v3 Authority Key Identifier:
keyid:9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:d7:e7:07:c5:e8:98:3b:52:12:8d:f3:88:fc:2d:29:0b:45:
ca:35:14:94:a7:b2:3d:c1:6e:55:56:44:b8:23:d2:0b:64:27:
29:95:51:19:20:44:96:ca:e2:f9:57:cf:ee:dd:f6:9e:18:db:
f0:3c:44:ac:13:17:82:35:e6:d6:46:06:80:9d:80:55:56:a1:
f4:b9:55:a0:d0:52:48:03:28:19:05:f2:af:2f:65:70:18:13:
2f:e3:b5:57:6b:70:72:a5:a4:fa:37:44:e1:af:b3:53:20:7c:
c3:81:d7:b2:3b:e4:1d:ec:52:e8:52:ae:85:be:a0:07:3b:22:
a5:0b:55:21:04:e4:9e:93:30:33:b4:41:c8:f1:4a:15:b6:fe:
dc:14:75:9e:df:55:a7:5a:a5:81:84:fa:d7:68:0c:74:ed:0f:
5b:fb:b2:91:37:74:58:4c:cf:03:ea:65:67:f1:b1:67:f9:91:
6f:47:35:9c:a5:8a:d2:1c:f5:d5:cb:fa:06:df:d8:0a:02:45:
81:aa:d7:83:be:1b:4e:80:89:4e:e6:37:0f:24:7d:d7:21:ea:
27:34:1b:8b:ca:f3:b0:2d:04:e3:1a:f7:e2:67:18:ad:ea:86:
58:b2:9f:b0:cc:a0:ba:b0:a0:6e:95:36:2e:cf:06:e0:db:b1:
20:51:d8:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdrvXYAibSFDMOqfhwewnueMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljMWVlNGQzOWNmYWExYjNhYzc5OWMxN2Y3ODgyYjhjZTRl
MjgxMjAwHhcNMjUwNjE0MDAwMTA3WhcNMjUwNjE1MDAwMTA3WjAzMTEwLwYDVQQD
EygyMjcxYzc5ZWQzNDFmM2NmMDhmMTQ0MWNhNjc1MDY3Mzg2NmQ1ZmU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyx7eKTx4+OLoHBE7K4T+Nbxb1i2D
tnJNetOjFsm2wCB4KBg6b/XufBINJ7PocJ/ByDAoT7QVk6TVEpRwwQr+mNrmcsy3
gJJkSGcLSnOythjes1sDF3mtRLBJlRcrQ1UFKA87g4JQF3dX85X1/cf4dJK2dKRe
VpOS2YStGKok8pLrew4ZA/PLSINg8RywtCqFToBI+w2Dk6vA0foz90Mh151/gl69
XOtSCK4szbLaq7UqsMi0dz6TUtqilkIwR6U2/BGPdE9afXydhJ6vU1ugREIfQ8o+
UG7XBp70WVX96IMqUXXSmY5LmjPaR2Djzi7JR9BtAEJHzxPLoIKbV7fSWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCJxx57TQfPPCPFEHKZ1BnOGbV/oMB8GA1UdIwQY
MBaAFJwe5NOc+qGzrHmcF/eIK4zk4oEgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkI3azA1ejZvYk9zZVp3WDk0Z3JqT1RpZ1NBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9iYjk3ZDktN2I4MS00NDlmLTkwNjAt
YmQ0NjVjZTcxMWJiLzEvbkI3azA1ejZvYk9zZVp3WDk0Z3JqT1RpZ1NBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi9iYjk3ZDktN2I4MS00NDlmLTkwNjAtYmQ0NjVjZTcxMWJi
LzEvbkI3azA1ejZvYk9zZVp3WDk0Z3JqT1RpZ1NBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHdfnB8Xo
mDtSEo3ziPwtKQtFyjUUlKeyPcFuVVZEuCPSC2QnKZVRGSBElsri+VfP7t32nhjb
8DxErBMXgjXm1kYGgJ2AVVah9LlVoNBSSAMoGQXyry9lcBgTL+O1V2twcqWk+jdE
4a+zUyB8w4HXsjvkHexS6FKuhb6gBzsipQtVIQTknpMwM7RByPFKFbb+3BR1nt9V
p1qlgYT612gMdO0PW/uykTd0WEzPA+plZ/GxZ/mRb0c1nKWK0hz11cv6Bt/YCgJF
garXg74bToCJTuY3DyR91yHqJzQbi8rzsC0E4xr34mcYreqGWLKfsMygurCgbpU2
Ls8G4NuxIFHYmw==
-----END CERTIFICATE-----
Generated at Sat Jun 14 08:41:25 2025 by rpki-client