Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
File: nHLoTFLlxJCdvHAqodIS1HiHX60.mft (raw, json)
Hash identifier: VOLbPpWwJI9gJXlIIY2EMbmG3VccTAjXxRv/VMREvYc=
Subject key identifier: 2D:4F:14:72:2B:4B:A0:54:AB:C9:39:DF:D0:B6:9E:D7:DE:94:4F:35
Authority key identifier: 9C:72:E8:4C:52:E5:C4:90:9D:BC:70:2A:A1:D2:12:D4:78:87:5F:AD
Certificate issuer: /CN=9c72e84c52e5c4909dbc702aa1d212d478875fad
Certificate serial: 0196AFFBDE7916A41453E417ADE21FCA8EAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
Manifest number: 0518
Signing time: Thu 08 May 2025 13:00:41 +0000
Manifest this update: Thu 08 May 2025 13:00:41 +0000
Manifest next update: Fri 09 May 2025 13:00:41 +0000
Files and hashes: 1: MJgreWjojTG3TWAm0IOsT3PX7yE.roa (hash: QQOCbVX4ydh8RHwVZnu9QI+n2Ns0Q1CadZGcMjFSReI=)
2: nHLoTFLlxJCdvHAqodIS1HiHX60.crl (hash: TuLQoDnLtb8n0mVAD4GJVhC3tyeq3uL++HS3j4FpQjI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 13:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:fb:de:79:16:a4:14:53:e4:17:ad:e2:1f:ca:8e:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c72e84c52e5c4909dbc702aa1d212d478875fad
Validity
Not Before: May 8 13:00:41 2025 GMT
Not After : May 9 13:00:41 2025 GMT
Subject: CN=2d4f14722b4ba054abc939dfd0b69ed7de944f35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:71:dc:7b:24:32:8e:89:f9:b8:d7:58:cd:73:
fd:06:57:93:c0:6c:1c:02:c9:be:0b:c6:09:81:98:
69:a6:d6:65:35:98:47:00:ff:4a:e6:8a:c2:cc:00:
a9:d0:1e:42:c6:e6:06:52:13:21:66:49:7c:37:09:
64:50:fe:5f:c3:4c:ed:52:34:99:6d:8f:08:b6:9d:
6e:8e:14:57:51:76:a1:4f:3b:2d:37:b7:71:02:b6:
e3:42:a8:6c:86:c2:e0:89:79:d8:c5:61:97:f9:4e:
f6:59:36:60:2b:1e:22:03:5f:1b:92:e4:56:c1:5d:
30:ab:74:0f:dd:e6:17:98:c3:b2:a5:8f:75:e4:53:
6d:40:e4:e9:fc:c8:3e:45:b8:99:ba:d0:30:07:75:
b5:e6:69:01:62:a9:71:cd:ea:62:6c:67:b9:3a:e3:
75:25:8e:d1:9a:8b:10:01:d8:2e:52:09:e7:f7:96:
00:d5:f0:53:f5:a1:02:dd:90:ed:2a:e0:bb:a6:a3:
22:b3:17:10:a7:5c:0d:14:33:d1:51:cc:f9:6a:a0:
c2:ee:59:14:85:df:a6:b8:ff:39:ff:df:e1:45:6d:
11:ce:6b:8a:43:b7:dc:1c:01:1d:a0:15:b0:c9:ac:
da:3f:0a:43:1f:36:dd:ff:21:ab:52:f0:5a:d2:ed:
0f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:4F:14:72:2B:4B:A0:54:AB:C9:39:DF:D0:B6:9E:D7:DE:94:4F:35
X509v3 Authority Key Identifier:
keyid:9C:72:E8:4C:52:E5:C4:90:9D:BC:70:2A:A1:D2:12:D4:78:87:5F:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:e5:ce:fa:84:dd:c7:a4:7d:6e:be:85:f6:c8:2b:be:0a:b7:
ae:05:11:4f:94:b6:20:73:d0:ab:7e:79:7c:69:30:48:89:99:
e5:26:14:79:f8:17:e7:dc:99:87:9c:1c:6e:e8:64:b4:72:c4:
60:ff:bf:ae:84:3d:5b:e0:8b:32:04:60:57:7a:3d:ed:7b:b5:
63:01:18:2d:ae:8d:93:0b:f2:49:b6:c8:14:a7:b8:f8:65:80:
e0:1a:98:67:28:20:4c:96:39:48:d2:48:09:28:ae:c7:54:e9:
b7:8f:4e:be:07:e9:1e:80:2c:01:d6:bc:44:25:b4:fd:6d:49:
c2:c5:f7:09:b8:e6:0d:5b:03:56:6e:93:36:58:68:75:d1:32:
4a:7d:e4:63:3d:58:9f:b7:2d:6c:8c:b7:4a:e9:6d:bc:ec:03:
84:c0:40:1d:f4:48:33:b9:66:b5:5f:86:17:a1:18:56:0b:0b:
90:e7:40:b1:f9:62:ee:93:12:bd:57:26:17:ba:3c:25:1a:e8:
44:60:20:7c:77:c1:8b:02:4d:1d:65:35:42:8a:51:8e:ed:44:
c3:c5:13:a3:7c:63:42:f4:af:b2:30:a3:15:0f:35:dc:70:8f:
16:95:83:5a:70:e2:a5:f5:a2:e8:2a:39:a9:f6:84:55:68:16:
0d:68:e0:f8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZav+955FqQUU+QXreIfyo6sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljNzJlODRjNTJlNWM0OTA5ZGJjNzAyYWExZDIxMmQ0Nzg4
NzVmYWQwHhcNMjUwNTA4MTMwMDQxWhcNMjUwNTA5MTMwMDQxWjAzMTEwLwYDVQQD
EygyZDRmMTQ3MjJiNGJhMDU0YWJjOTM5ZGZkMGI2OWVkN2RlOTQ0ZjM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsnHceyQyjon5uNdYzXP9BleTwGwc
Asm+C8YJgZhpptZlNZhHAP9K5orCzACp0B5CxuYGUhMhZkl8NwlkUP5fw0ztUjSZ
bY8Itp1ujhRXUXahTzstN7dxArbjQqhshsLgiXnYxWGX+U72WTZgKx4iA18bkuRW
wV0wq3QP3eYXmMOypY915FNtQOTp/Mg+RbiZutAwB3W15mkBYqlxzepibGe5OuN1
JY7RmosQAdguUgnn95YA1fBT9aEC3ZDtKuC7pqMisxcQp1wNFDPRUcz5aqDC7lkU
hd+muP85/9/hRW0RzmuKQ7fcHAEdoBWwyazaPwpDHzbd/yGrUvBa0u0PvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC1PFHIrS6BUq8k539C2ntfelE81MB8GA1UdIwQY
MBaAFJxy6ExS5cSQnbxwKqHSEtR4h1+tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkhMb1RGTGx4SkNkdkhBcW9kSVMxSGlIWDYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9kYWNjYzQtMzZjOC00ZDRjLThjNGUt
NTc2MGI1ZDU0ZGY5LzEvbkhMb1RGTGx4SkNkdkhBcW9kSVMxSGlIWDYwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9kYWNjYzQtMzZjOC00ZDRjLThjNGUtNTc2MGI1ZDU0ZGY5
LzEvbkhMb1RGTGx4SkNkdkhBcW9kSVMxSGlIWDYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC+XO+oTd
x6R9br6F9sgrvgq3rgURT5S2IHPQq355fGkwSImZ5SYUefgX59yZh5wcbuhktHLE
YP+/roQ9W+CLMgRgV3o97Xu1YwEYLa6NkwvySbbIFKe4+GWA4BqYZyggTJY5SNJI
CSiux1Tpt49OvgfpHoAsAda8RCW0/W1JwsX3CbjmDVsDVm6TNlhoddEySn3kYz1Y
n7ctbIy3SultvOwDhMBAHfRIM7lmtV+GF6EYVgsLkOdAsfli7pMSvVcmF7o8JRro
RGAgfHfBiwJNHWU1QopRju1Ew8UTo3xjQvSvsjCjFQ813HCPFpWDWnDipfWi6Co5
qfaEVWgWDWjg+A==
-----END CERTIFICATE-----
Generated at Thu May 8 22:27:07 2025 by rpki-client