Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
File: nhuhZT_KfIAXI8pG_0Qua6wekaA.mft (raw, json)
Hash identifier: X/k8jSTVL9N2xSdDBAj3sf1A+3H2/o1PC1BpOLY4ZEg=
Subject key identifier: 09:21:94:7A:DD:F5:F2:9E:0D:1F:65:77:61:DB:2D:F6:56:2D:59:DC
Authority key identifier: 9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
Certificate issuer: /CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Certificate serial: 0197D5867C80A3FB0FF0AF3D66765E59A761
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
Manifest number: 083D
Signing time: Fri 04 Jul 2025 13:00:50 +0000
Manifest this update: Fri 04 Jul 2025 13:00:50 +0000
Manifest next update: Sat 05 Jul 2025 13:00:50 +0000
Files and hashes: 1: cb8dWgekdgTmGEn_puzoSrtajs0.roa (hash: klMt7aeT4NJnkoShXspgSHaq5Jk7n53EuU54bLRTaLc=)
2: nhuhZT_KfIAXI8pG_0Qua6wekaA.crl (hash: LYwNWJ8kvdVj5Zxp1kRGwyPEmL0UZphJrRRpceEA7zI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 13:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d5:86:7c:80:a3:fb:0f:f0:af:3d:66:76:5e:59:a7:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Validity
Not Before: Jul 4 13:00:50 2025 GMT
Not After : Jul 5 13:00:50 2025 GMT
Subject: CN=0921947addf5f29e0d1f657761db2df6562d59dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8d:e0:b1:06:db:3f:fa:eb:aa:4c:56:e5:0e:
60:1c:8a:a7:a7:f7:19:91:dc:77:4c:e2:a2:ba:20:
94:9d:f0:c7:24:5c:70:32:be:eb:12:88:b4:8a:3f:
2f:ec:8b:c5:4f:c9:ae:96:b3:54:9a:be:59:69:9d:
32:c3:7b:62:0a:bc:9e:ab:54:3a:78:79:72:86:5f:
52:95:d1:e0:3b:12:bf:05:94:db:32:83:aa:d6:e5:
8a:ff:01:60:2d:36:31:d8:c7:a9:25:e7:6b:c4:42:
81:a7:a2:d4:c7:77:74:4b:de:c6:97:a6:77:ec:ff:
d2:88:25:6f:dc:dc:65:b4:74:85:14:b9:7b:ba:8b:
55:78:15:80:ec:b7:46:04:48:97:ba:33:33:b7:65:
ff:72:d1:d4:54:04:7b:9e:52:e3:59:ba:bc:7d:88:
48:17:95:c9:f6:8c:a2:fe:63:bc:c0:a4:95:a1:9d:
b3:f8:47:50:be:c1:7f:f2:af:b7:86:e6:ea:18:a0:
ba:97:37:4b:f4:d3:9a:ea:07:e3:a1:0a:e7:98:91:
70:d6:ab:90:7b:bb:05:d4:63:f9:34:08:17:6e:56:
11:6a:22:01:a8:eb:62:41:54:0f:c6:bd:32:45:b7:
a1:93:f5:c3:e6:2d:4e:32:cb:29:6a:85:e1:32:a8:
23:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:21:94:7A:DD:F5:F2:9E:0D:1F:65:77:61:DB:2D:F6:56:2D:59:DC
X509v3 Authority Key Identifier:
keyid:9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:55:4d:d8:da:c2:85:14:ca:26:63:26:11:28:e0:18:82:6c:
ce:1d:72:04:b2:aa:ec:1e:da:c4:3f:28:19:5e:b8:43:fb:88:
a4:71:9c:92:d0:e6:83:32:43:30:8c:75:db:70:19:92:7c:aa:
ad:fb:5f:28:c3:cc:cd:c7:e6:05:7b:f0:81:aa:21:32:ce:c8:
50:60:6b:9b:04:b0:00:96:97:16:e0:bc:3e:09:33:f9:38:1e:
80:0c:e8:4d:6b:f0:60:e0:c9:22:50:d1:27:5d:27:82:76:83:
d2:18:18:28:4e:cf:fc:1f:e0:4f:21:2d:8b:cd:a4:79:2c:e0:
9a:42:db:0a:49:a5:1f:b0:05:7f:e0:9e:1b:75:fe:de:ad:4a:
a8:a7:ab:04:05:f3:4c:f6:f0:73:54:c0:8b:7e:ad:0b:c4:d3:
f6:26:11:1d:fe:70:a1:13:46:33:44:0b:64:91:6e:aa:82:c5:
b2:46:d3:1b:6e:9b:7a:86:d7:fc:9f:f0:13:29:d9:a1:66:47:
16:3e:b7:af:5c:b8:c8:08:a9:32:74:e2:fe:da:9b:9e:51:b1:
3a:5c:bb:9d:8e:02:92:1e:c1:08:92:b5:45:c1:51:c6:38:4b:
d6:21:6d:db:3f:ce:f3:67:03:aa:b1:c8:b1:76:26:30:87:55:
75:09:74:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfVhnyAo/sP8K89ZnZeWadhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllMWJhMTY1M2ZjYTdjODAxNzIzY2E0NmZmNDQyZTZiYWMx
ZTkxYTAwHhcNMjUwNzA0MTMwMDUwWhcNMjUwNzA1MTMwMDUwWjAzMTEwLwYDVQQD
EygwOTIxOTQ3YWRkZjVmMjllMGQxZjY1Nzc2MWRiMmRmNjU2MmQ1OWRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqY3gsQbbP/rrqkxW5Q5gHIqnp/cZ
kdx3TOKiuiCUnfDHJFxwMr7rEoi0ij8v7IvFT8mulrNUmr5ZaZ0yw3tiCryeq1Q6
eHlyhl9SldHgOxK/BZTbMoOq1uWK/wFgLTYx2MepJedrxEKBp6LUx3d0S97Gl6Z3
7P/SiCVv3NxltHSFFLl7uotVeBWA7LdGBEiXujMzt2X/ctHUVAR7nlLjWbq8fYhI
F5XJ9oyi/mO8wKSVoZ2z+EdQvsF/8q+3hubqGKC6lzdL9NOa6gfjoQrnmJFw1quQ
e7sF1GP5NAgXblYRaiIBqOtiQVQPxr0yRbehk/XD5i1OMsspaoXhMqgjyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAkhlHrd9fKeDR9ld2HbLfZWLVncMB8GA1UdIwQY
MBaAFJ4boWU/ynyAFyPKRv9ELmusHpGgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8zODk0MjQtYWFiYS00NDkxLTlmYmEt
ZmNiNDNkNGY2NzE0LzEvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy8zODk0MjQtYWFiYS00NDkxLTlmYmEtZmNiNDNkNGY2NzE0
LzEvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMlVN2NrC
hRTKJmMmESjgGIJszh1yBLKq7B7axD8oGV64Q/uIpHGcktDmgzJDMIx123AZknyq
rftfKMPMzcfmBXvwgaohMs7IUGBrmwSwAJaXFuC8Pgkz+TgegAzoTWvwYODJIlDR
J10ngnaD0hgYKE7P/B/gTyEti82keSzgmkLbCkmlH7AFf+CeG3X+3q1KqKerBAXz
TPbwc1TAi36tC8TT9iYRHf5woRNGM0QLZJFuqoLFskbTG26beobX/J/wEynZoWZH
Fj63r1y4yAipMnTi/tqbnlGxOly7nY4Ckh7BCJK1RcFRxjhL1iFt2z/O82cDqrHI
sXYmMIdVdQl08Q==
-----END CERTIFICATE-----
Generated at Fri Jul 4 22:17:08 2025 by rpki-client