Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft
File: n7bU2YfQBKAPopfmnCaOt189mkA.mft (raw, json)
Hash identifier: TDVyq/xuVJ0ULJKnaCfBPkNu1IRpoPwWQhS80FRAG5o=
Subject key identifier: A9:03:D5:FE:34:E0:B7:13:6F:CF:C3:22:43:01:5B:D4:5B:86:D0:F4
Authority key identifier: 9F:B6:D4:D9:87:D0:04:A0:0F:A2:97:E6:9C:26:8E:B7:5F:3D:9A:40
Certificate issuer: /CN=9fb6d4d987d004a00fa297e69c268eb75f3d9a40
Certificate serial: 0196C68348059BAAD34AE8858B5F4D049D08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft
Manifest number: 0D17
Signing time: Mon 12 May 2025 22:00:14 +0000
Manifest this update: Mon 12 May 2025 22:00:14 +0000
Manifest next update: Tue 13 May 2025 22:00:14 +0000
Files and hashes: 1: 5ZNOGBQ9w8dTp0XQhpuUk8zzApg.roa (hash: 1/+Fm1r/KA+hNLAy+y/H8/1fP0WyouANNJuTvhP3iNk=)
2: n7bU2YfQBKAPopfmnCaOt189mkA.crl (hash: LpcldPKjDriH1RtzXIU3TRM2gohu0FzO3EfgFLpv7CU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft
rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 22:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:83:48:05:9b:aa:d3:4a:e8:85:8b:5f:4d:04:9d:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fb6d4d987d004a00fa297e69c268eb75f3d9a40
Validity
Not Before: May 12 22:00:14 2025 GMT
Not After : May 13 22:00:14 2025 GMT
Subject: CN=a903d5fe34e0b7136fcfc32243015bd45b86d0f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d4:2a:c4:96:72:02:57:d2:60:67:a2:65:c5:
2a:82:73:33:46:df:4d:a8:6c:e2:49:a1:7f:ef:3a:
48:ae:ad:1a:da:9f:77:6e:70:06:02:9b:1a:2e:39:
6b:e8:9e:a8:3b:c4:a1:aa:9a:e0:b3:4a:33:48:51:
44:74:ad:2f:fb:d4:39:fc:14:df:64:57:01:ce:42:
a2:a1:87:ef:6a:bf:37:06:49:c2:4c:61:89:ff:00:
f8:fb:c0:60:b7:8e:61:35:d5:a2:4e:da:f2:b7:9e:
0a:1e:89:52:92:df:1d:ee:f5:34:fe:01:34:09:55:
d8:7d:06:97:70:c4:c9:88:77:41:1e:f0:3e:f7:3d:
b7:df:5a:f9:da:0e:c7:4a:e5:a2:12:41:a4:2a:06:
46:a1:65:7f:4d:9f:68:cf:93:5c:15:c3:d1:82:aa:
99:75:c5:89:86:5c:bf:31:10:89:8e:42:bb:51:ff:
66:e2:da:47:26:12:24:b8:6a:ed:4c:49:56:48:61:
f4:c2:6f:3d:98:98:02:7d:0d:44:37:2a:54:32:f5:
fb:70:d9:5c:10:ca:0a:9c:88:38:6c:0f:07:c3:4d:
c2:f6:69:7a:d7:c5:5d:c1:b7:87:0e:bf:95:d4:db:
61:9c:29:5f:fc:44:a5:eb:e2:0b:5d:12:b5:d3:80:
48:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:03:D5:FE:34:E0:B7:13:6F:CF:C3:22:43:01:5B:D4:5B:86:D0:F4
X509v3 Authority Key Identifier:
keyid:9F:B6:D4:D9:87:D0:04:A0:0F:A2:97:E6:9C:26:8E:B7:5F:3D:9A:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:0c:06:9f:d2:f5:2b:17:f5:bb:b6:4c:30:77:66:18:df:65:
f0:73:d5:f3:65:fd:3f:45:23:22:54:9b:7b:a7:94:24:50:1e:
6b:89:e3:93:8d:c0:f7:05:23:e8:98:cb:92:2f:18:a8:1c:e3:
72:c5:07:fc:64:ed:d8:1c:af:e5:72:6d:a6:6f:b1:46:3d:30:
1b:62:dc:f4:36:7d:09:e3:45:b5:65:31:fa:fe:16:36:b1:cc:
72:7f:3c:0b:d3:34:83:69:10:58:f2:42:f1:c3:17:ab:14:c2:
91:c7:2b:1d:45:58:86:88:45:aa:74:08:c3:c0:75:3a:43:2a:
98:16:bc:21:08:ff:f2:da:23:8c:25:a5:a8:07:7b:78:d0:0f:
91:7c:c1:92:75:77:b7:7c:eb:d2:d9:35:d8:fd:f9:86:61:a7:
1b:56:46:b1:eb:73:4b:f3:a4:07:89:ac:de:dd:48:d8:37:d7:
17:4d:d0:d3:c7:19:4e:c7:f4:ed:15:5a:a7:14:d7:c2:71:42:
b6:7c:d0:a4:99:c2:50:1f:4c:d4:59:0e:d1:0e:0e:2d:a3:f1:
df:47:d2:b8:c2:02:58:04:80:a4:1b:29:16:23:40:d7:9d:49:
06:50:d2:4c:e1:bb:5f:48:13:19:3f:5e:1a:67:9d:41:a7:c4:
c9:20:e0:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbGg0gFm6rTSuiFi19NBJ0IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmYjZkNGQ5ODdkMDA0YTAwZmEyOTdlNjljMjY4ZWI3NWYz
ZDlhNDAwHhcNMjUwNTEyMjIwMDE0WhcNMjUwNTEzMjIwMDE0WjAzMTEwLwYDVQQD
EyhhOTAzZDVmZTM0ZTBiNzEzNmZjZmMzMjI0MzAxNWJkNDViODZkMGY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAstQqxJZyAlfSYGeiZcUqgnMzRt9N
qGziSaF/7zpIrq0a2p93bnAGApsaLjlr6J6oO8Shqprgs0ozSFFEdK0v+9Q5/BTf
ZFcBzkKioYfvar83BknCTGGJ/wD4+8Bgt45hNdWiTtryt54KHolSkt8d7vU0/gE0
CVXYfQaXcMTJiHdBHvA+9z2331r52g7HSuWiEkGkKgZGoWV/TZ9oz5NcFcPRgqqZ
dcWJhly/MRCJjkK7Uf9m4tpHJhIkuGrtTElWSGH0wm89mJgCfQ1ENypUMvX7cNlc
EMoKnIg4bA8Hw03C9ml618VdwbeHDr+V1NthnClf/ESl6+ILXRK104BIaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKkD1f404LcTb8/DIkMBW9RbhtD0MB8GA1UdIwQY
MBaAFJ+21NmH0ASgD6KX5pwmjrdfPZpAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbjdiVTJZZlFCS0FQb3BmbW5DYU90MTg5bWtBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8wMjQwMGYtNzgwMi00NGU3LTg1Mjct
OGIyOTFlMjZkMWQ5LzEvbjdiVTJZZlFCS0FQb3BmbW5DYU90MTg5bWtBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC8wMjQwMGYtNzgwMi00NGU3LTg1MjctOGIyOTFlMjZkMWQ5
LzEvbjdiVTJZZlFCS0FQb3BmbW5DYU90MTg5bWtBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmAwGn9L1
Kxf1u7ZMMHdmGN9l8HPV82X9P0UjIlSbe6eUJFAea4njk43A9wUj6JjLki8YqBzj
csUH/GTt2Byv5XJtpm+xRj0wG2Lc9DZ9CeNFtWUx+v4WNrHMcn88C9M0g2kQWPJC
8cMXqxTCkccrHUVYhohFqnQIw8B1OkMqmBa8IQj/8tojjCWlqAd7eNAPkXzBknV3
t3zr0tk12P35hmGnG1ZGsetzS/OkB4ms3t1I2DfXF03Q08cZTsf07RVapxTXwnFC
tnzQpJnCUB9M1FkO0Q4OLaPx30fSuMICWASApBspFiNA151JBlDSTOG7X0gTGT9e
GmedQafEySDgfQ==
-----END CERTIFICATE-----
Generated at Tue May 13 06:37:36 2025 by rpki-client