Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
File: nY85NIPUicQp_Biwk0LXbQr-QkQ.mft (raw, json)
Hash identifier: c1/swhTQioZ2elOqaIlaSKtoEKEdpp5HfEBo8bCImSE=
Subject key identifier: F3:5A:C9:96:F2:2C:F7:E3:0C:44:23:27:9D:68:51:D7:C6:65:3F:B8
Authority key identifier: 9D:8F:39:34:83:D4:89:C4:29:FC:18:B0:93:42:D7:6D:0A:FE:42:44
Certificate issuer: /CN=9d8f393483d489c429fc18b09342d76d0afe4244
Certificate serial: 019747E7540CAC0D32DD8C511F451142B061
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
Manifest number: 1165
Signing time: Sat 07 Jun 2025 01:00:31 +0000
Manifest this update: Sat 07 Jun 2025 01:00:31 +0000
Manifest next update: Sun 08 Jun 2025 01:00:31 +0000
Files and hashes: 1: fCKBgjNaPgCYlEAaSC02t2TX-HQ.roa (hash: z50OwHqPJLgmTj1OD+z+QDtPxp5JJkD8lN3khIG3bwQ=)
2: nY85NIPUicQp_Biwk0LXbQr-QkQ.crl (hash: dUo4ojBeSkjubrch0GlXmkSoybt5WhNfTb646tkSOlE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:e7:54:0c:ac:0d:32:dd:8c:51:1f:45:11:42:b0:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d8f393483d489c429fc18b09342d76d0afe4244
Validity
Not Before: Jun 7 01:00:31 2025 GMT
Not After : Jun 8 01:00:31 2025 GMT
Subject: CN=f35ac996f22cf7e30c4423279d6851d7c6653fb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:06:c2:46:78:8e:6c:0c:35:b8:6e:aa:6e:76:
36:30:aa:e9:ea:25:a8:34:67:0d:41:82:ca:81:cb:
8c:02:11:6e:05:1c:58:df:ab:13:82:3e:9c:05:8d:
c3:01:35:44:9d:1c:b8:6f:2a:47:08:06:4c:1a:56:
d3:9a:a6:57:72:d8:39:e4:26:d2:e0:6d:a3:83:ef:
0d:a8:95:9e:b3:f9:23:9f:93:28:b5:61:7c:81:f4:
96:95:2e:13:69:0b:36:a7:fd:9e:75:ff:ec:7b:f4:
16:fa:04:64:03:15:d5:c9:e0:b6:e9:b8:d6:f6:03:
0b:60:8a:25:d6:c8:94:a4:ff:bd:93:24:72:11:24:
4c:62:fb:69:af:ef:25:bc:17:92:46:37:56:58:8f:
87:11:9d:4b:86:53:73:f9:88:6f:ca:a9:69:ad:e0:
35:2a:ff:66:de:c3:79:7d:db:fa:cb:b4:45:df:c1:
ff:2c:8c:c1:2b:3c:9d:e4:72:6d:28:2f:41:b1:9d:
54:ee:26:79:b5:a3:63:56:e2:b8:e7:0c:a8:59:06:
72:80:1b:e4:af:c1:0a:e0:c4:b7:89:1e:f3:49:70:
bd:f4:54:ab:62:0f:80:85:94:7f:d1:41:b9:d1:ec:
c8:41:e4:05:ca:f1:99:93:9e:7c:b0:62:f6:17:d6:
52:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:5A:C9:96:F2:2C:F7:E3:0C:44:23:27:9D:68:51:D7:C6:65:3F:B8
X509v3 Authority Key Identifier:
keyid:9D:8F:39:34:83:D4:89:C4:29:FC:18:B0:93:42:D7:6D:0A:FE:42:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:c7:ce:2b:29:12:0f:d6:38:88:03:ec:76:b4:db:bd:a2:6d:
59:65:f1:33:ec:7e:14:d8:07:2f:20:17:89:98:3e:59:ca:4c:
3a:ae:2e:30:94:4a:3a:84:6b:50:5d:3b:43:32:8e:bb:6a:d7:
b1:84:54:1a:f9:71:14:e5:0b:a1:5c:74:62:97:ca:59:d5:52:
06:53:9b:41:72:52:b1:05:9c:af:5b:a1:77:6f:5e:26:6f:e7:
20:47:4f:15:64:0c:1c:9a:c4:9a:4c:2e:dd:38:da:99:4c:df:
9d:1b:85:7a:eb:22:1f:fd:71:7d:fc:2d:11:ec:47:ac:92:8a:
6d:86:30:e9:a1:0c:a8:b2:9b:88:23:f1:77:3c:36:be:29:1c:
bd:9e:81:df:aa:b0:52:1e:2d:4d:83:b6:88:dd:bf:5d:90:ce:
be:33:d7:e3:79:5d:38:42:fe:73:f4:07:ba:64:6a:fb:1d:d6:
3b:f4:e4:c5:23:3e:d6:50:c4:9f:2b:6e:38:85:3c:f3:68:36:
fe:2f:e1:22:7a:49:4d:17:74:02:86:88:7d:c8:45:3f:2d:f5:
a1:5b:99:1b:c1:8f:bc:43:c2:b3:a1:d4:06:5e:eb:b1:03:74:
a3:8a:27:fd:c9:94:52:f8:10:53:73:23:5d:0d:6e:a4:8c:ae:
8d:fa:97:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdH51QMrA0y3YxRH0URQrBhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkOGYzOTM0ODNkNDg5YzQyOWZjMThiMDkzNDJkNzZkMGFm
ZTQyNDQwHhcNMjUwNjA3MDEwMDMxWhcNMjUwNjA4MDEwMDMxWjAzMTEwLwYDVQQD
EyhmMzVhYzk5NmYyMmNmN2UzMGM0NDIzMjc5ZDY4NTFkN2M2NjUzZmI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgbCRniObAw1uG6qbnY2MKrp6iWo
NGcNQYLKgcuMAhFuBRxY36sTgj6cBY3DATVEnRy4bypHCAZMGlbTmqZXctg55CbS
4G2jg+8NqJWes/kjn5MotWF8gfSWlS4TaQs2p/2edf/se/QW+gRkAxXVyeC26bjW
9gMLYIol1siUpP+9kyRyESRMYvtpr+8lvBeSRjdWWI+HEZ1LhlNz+YhvyqlpreA1
Kv9m3sN5fdv6y7RF38H/LIzBKzyd5HJtKC9BsZ1U7iZ5taNjVuK45wyoWQZygBvk
r8EK4MS3iR7zSXC99FSrYg+AhZR/0UG50ezIQeQFyvGZk558sGL2F9ZS2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPNayZbyLPfjDEQjJ51oUdfGZT+4MB8GA1UdIwQY
MBaAFJ2POTSD1InEKfwYsJNC120K/kJEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC85ZTgxNjYtMTYwZi00Y2UyLTkwMTct
MWUxNTFhYTFhZmRjLzEvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC85ZTgxNjYtMTYwZi00Y2UyLTkwMTctMWUxNTFhYTFhZmRj
LzEvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU8fOKykS
D9Y4iAPsdrTbvaJtWWXxM+x+FNgHLyAXiZg+WcpMOq4uMJRKOoRrUF07QzKOu2rX
sYRUGvlxFOULoVx0YpfKWdVSBlObQXJSsQWcr1uhd29eJm/nIEdPFWQMHJrEmkwu
3TjamUzfnRuFeusiH/1xffwtEexHrJKKbYYw6aEMqLKbiCPxdzw2vikcvZ6B36qw
Uh4tTYO2iN2/XZDOvjPX43ldOEL+c/QHumRq+x3WO/TkxSM+1lDEnytuOIU882g2
/i/hInpJTRd0AoaIfchFPy31oVuZG8GPvEPCs6HUBl7rsQN0o4on/cmUUvgQU3Mj
XQ1upIyujfqXSw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 10:38:15 2025 by rpki-client