Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
File: NIMjF9JURDS2WeVpIHHY5MSTiwY.mft (raw, json)
Hash identifier: vG+KDrAWTR1FQ9FWVfyd6sOrcBwmt+A8HiYP/OSACj4=
Subject key identifier: 5D:B2:F8:C1:C0:F1:D0:1D:B4:DF:C3:F5:ED:D9:3A:1E:56:1F:FC:3D
Authority key identifier: 34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
Certificate issuer: /CN=34832317d2544434b659e5692071d8e4c4938b06
Certificate serial: 0197B70F392AF31ADF1B38420DF073263BED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
Manifest number: 0327
Signing time: Sat 28 Jun 2025 15:01:57 +0000
Manifest this update: Sat 28 Jun 2025 15:01:57 +0000
Manifest next update: Sun 29 Jun 2025 15:01:57 +0000
Files and hashes: 1: NIMjF9JURDS2WeVpIHHY5MSTiwY.crl (hash: 0jqHQDzYdaJ3gV+dX76vr+SDJX+j5W7vC+pMPEcIdPc=)
2: x2Xaez7Ra9vjvF4FG3Er4hO4ovk.roa (hash: T67Ch/iuLueDDibfJIFSKnLQW9UiEIt+71JVmL/jUzg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:39:2a:f3:1a:df:1b:38:42:0d:f0:73:26:3b:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34832317d2544434b659e5692071d8e4c4938b06
Validity
Not Before: Jun 28 15:01:57 2025 GMT
Not After : Jun 29 15:01:57 2025 GMT
Subject: CN=5db2f8c1c0f1d01db4dfc3f5edd93a1e561ffc3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7e:a8:a9:bc:12:aa:e7:76:09:09:04:bb:e9:
23:4c:4a:b8:5c:37:8c:6c:25:83:46:46:1b:54:c1:
fd:16:bc:22:61:6d:9a:df:5a:eb:d8:6c:ab:7d:63:
79:55:f7:8a:33:7f:e3:48:83:3a:0b:5f:45:d7:42:
42:59:be:4b:9a:e3:5c:e3:91:02:a9:32:aa:a9:99:
71:28:34:86:86:8a:da:71:70:c0:63:ee:8d:de:ea:
df:be:65:54:53:77:3b:ee:02:32:c4:40:a5:d7:67:
66:9d:f1:89:3e:c9:e6:4a:38:42:1e:57:08:1b:dd:
34:53:b8:e0:14:aa:e6:69:0b:11:25:fc:90:69:31:
60:9c:e9:be:9b:b5:b9:b7:6a:a5:4d:c8:b6:c3:79:
28:43:e8:a1:51:88:25:f8:a7:1d:a2:42:d0:1e:dd:
d1:f1:d3:81:0a:31:fb:e5:96:6b:db:d3:23:2f:b7:
43:ca:b2:46:b7:be:7f:c0:53:76:e1:0c:64:60:5b:
f2:29:fd:55:26:4e:cb:9d:58:d6:06:b7:53:96:1b:
3f:f8:33:8b:c2:8b:62:0f:64:2a:f6:14:ef:d0:5b:
ed:67:3a:06:38:7f:e7:98:74:9b:c6:79:3c:4a:54:
3d:25:02:04:ba:f1:c1:07:1f:8b:4d:35:ba:92:8b:
4d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:B2:F8:C1:C0:F1:D0:1D:B4:DF:C3:F5:ED:D9:3A:1E:56:1F:FC:3D
X509v3 Authority Key Identifier:
keyid:34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:9f:a7:96:7f:c9:75:af:fe:db:6e:e8:bb:4a:a4:d4:a9:2c:
29:28:4d:82:f3:f3:53:5f:cf:96:50:1b:89:5f:8e:c2:c8:38:
fa:d4:5e:76:18:e4:42:37:e8:a8:3a:7c:19:93:3e:e8:c0:83:
49:d6:71:43:4b:0a:c2:c4:1c:cb:01:0d:39:83:5f:c4:4d:84:
59:e9:df:3b:bc:99:28:f3:19:22:7e:a0:b5:48:93:99:ff:6f:
5d:ae:1d:7d:bb:a4:96:d8:a9:fe:37:6c:7a:65:dc:14:95:0a:
ba:af:bf:26:02:50:c5:26:57:4c:a4:d2:98:66:e5:8f:82:15:
1b:69:1c:f9:7e:37:1a:2b:8b:a1:c9:a2:12:a0:7a:67:11:b4:
13:27:94:3c:9e:e8:51:c8:d9:85:c0:3c:df:2d:d9:5b:be:f1:
df:e3:12:a6:3b:af:7f:46:db:e6:2c:a0:72:a4:cf:c1:e3:4a:
b6:5a:ea:35:08:40:5c:89:14:fb:dc:a5:42:5d:d1:a9:5a:44:
a0:e1:ff:ce:a7:e5:cf:7b:d9:de:c8:7f:3b:39:cc:2c:80:e5:
32:5c:18:09:de:ed:3f:94:9c:12:b8:af:d6:ab:82:79:15:9f:
bf:0f:f9:e1:86:79:ce:d6:8e:a4:fc:19:4d:50:00:12:78:aa:
32:fb:93:bf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3Dzkq8xrfGzhCDfBzJjvtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ODMyMzE3ZDI1NDQ0MzRiNjU5ZTU2OTIwNzFkOGU0YzQ5
MzhiMDYwHhcNMjUwNjI4MTUwMTU3WhcNMjUwNjI5MTUwMTU3WjAzMTEwLwYDVQQD
Eyg1ZGIyZjhjMWMwZjFkMDFkYjRkZmMzZjVlZGQ5M2ExZTU2MWZmYzNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzX6oqbwSqud2CQkEu+kjTEq4XDeM
bCWDRkYbVMH9FrwiYW2a31rr2GyrfWN5VfeKM3/jSIM6C19F10JCWb5LmuNc45EC
qTKqqZlxKDSGhoracXDAY+6N3urfvmVUU3c77gIyxECl12dmnfGJPsnmSjhCHlcI
G900U7jgFKrmaQsRJfyQaTFgnOm+m7W5t2qlTci2w3koQ+ihUYgl+KcdokLQHt3R
8dOBCjH75ZZr29MjL7dDyrJGt75/wFN24QxkYFvyKf1VJk7LnVjWBrdTlhs/+DOL
wotiD2Qq9hTv0FvtZzoGOH/nmHSbxnk8SlQ9JQIEuvHBBx+LTTW6kotNlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF2y+MHA8dAdtN/D9e3ZOh5WH/w9MB8GA1UdIwQY
MBaAFDSDIxfSVEQ0tlnlaSBx2OTEk4sGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTklNakY5SlVSRFMyV2VWcElISFk1TVNUaXdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS81YTJlZDktOGY4ZS00YzFkLWFhZjMt
MzBjNjVhZDgzMjkxLzEvTklNakY5SlVSRFMyV2VWcElISFk1TVNUaXdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS81YTJlZDktOGY4ZS00YzFkLWFhZjMtMzBjNjVhZDgzMjkx
LzEvTklNakY5SlVSRFMyV2VWcElISFk1TVNUaXdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0p+nln/J
da/+227ou0qk1KksKShNgvPzU1/PllAbiV+Owsg4+tRedhjkQjfoqDp8GZM+6MCD
SdZxQ0sKwsQcywENOYNfxE2EWenfO7yZKPMZIn6gtUiTmf9vXa4dfbukltip/jds
emXcFJUKuq+/JgJQxSZXTKTSmGblj4IVG2kc+X43GiuLocmiEqB6ZxG0EyeUPJ7o
UcjZhcA83y3ZW77x3+MSpjuvf0bb5iygcqTPweNKtlrqNQhAXIkU+9ylQl3RqVpE
oOH/zqflz3vZ3sh/OznMLIDlMlwYCd7tP5ScEriv1quCeRWfvw/54YZ5ztaOpPwZ
TVAAEniqMvuTvw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:42:23 2025 by rpki-client