Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft
File: nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft (raw, json)
Hash identifier: Uco4KB1PetG/0+71igZ+qQwJp3E1cUSRegxkXjjj644=
Subject key identifier: A1:74:E4:07:58:D7:EF:DA:22:1A:EC:93:5F:DF:9A:C7:9E:1E:FE:DB
Authority key identifier: 9E:74:13:5B:B0:7C:65:40:CD:30:7B:DA:08:CA:06:74:BC:84:C9:39
Certificate issuer: /CN=9e74135bb07c6540cd307bda08ca0674bc84c939
Certificate serial: 0197B933B7E9EAECA86CE6845DD3AAEB1D03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft
Manifest number: 15B9
Signing time: Sun 29 Jun 2025 01:01:03 +0000
Manifest this update: Sun 29 Jun 2025 01:01:03 +0000
Manifest next update: Mon 30 Jun 2025 01:01:03 +0000
Files and hashes: 1: 1-T1wzl3TUKiA8m5iaH9QZh9hjp0.roa (hash: JRA15qBJeMepq09VmhJeTzptT8oyDdYWsjobeMnNOAk=)
2: nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl (hash: snRDTHUK5/bGPyZ5pEJbNGD0JDWqDnYpFX27pO45JWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:33:b7:e9:ea:ec:a8:6c:e6:84:5d:d3:aa:eb:1d:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e74135bb07c6540cd307bda08ca0674bc84c939
Validity
Not Before: Jun 29 01:01:03 2025 GMT
Not After : Jun 30 01:01:03 2025 GMT
Subject: CN=a174e40758d7efda221aec935fdf9ac79e1efedb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:88:55:90:65:9f:42:bb:db:71:63:f7:f5:cb:
8e:60:94:32:6b:ed:9c:8c:6a:d6:7b:46:2d:3f:3d:
b7:2f:e8:da:8b:73:38:fd:a1:2e:08:47:cb:92:85:
3f:c9:f5:f4:59:01:94:6f:14:50:26:1a:a4:d8:5c:
7a:9a:05:c0:a6:47:ac:2a:f3:b4:fd:0a:12:ec:58:
38:5d:b6:91:83:83:30:55:5b:79:97:78:88:2b:5e:
94:2b:b0:69:d1:16:f7:88:eb:1d:72:09:69:35:ac:
c5:c2:78:61:d9:00:ac:c4:91:bf:04:ee:6b:ca:a5:
68:cb:40:57:10:fb:5e:ad:39:10:cd:19:19:84:75:
37:61:e2:6f:5d:e5:69:32:59:72:16:42:3f:c2:8d:
34:e7:d9:28:41:3d:0b:09:c2:55:24:20:5e:43:bc:
c9:f0:0a:6a:0b:6f:ca:d2:ce:22:23:8b:92:9d:76:
4b:fa:79:2e:9d:dd:65:ee:e6:2c:85:dd:31:c9:90:
de:43:99:6d:f3:b5:9e:0c:2e:74:e0:d8:ee:7d:52:
5b:59:f8:21:c4:0f:b3:98:6b:6b:b4:db:18:b3:80:
f8:fa:28:93:e1:3f:5f:a0:38:17:8b:2a:ab:36:01:
d8:07:a8:e0:5d:91:48:5a:4f:94:73:79:c4:dc:b7:
a3:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:74:E4:07:58:D7:EF:DA:22:1A:EC:93:5F:DF:9A:C7:9E:1E:FE:DB
X509v3 Authority Key Identifier:
keyid:9E:74:13:5B:B0:7C:65:40:CD:30:7B:DA:08:CA:06:74:BC:84:C9:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:c2:0b:54:bf:83:63:f1:b0:04:3b:40:69:35:bc:e7:62:ad:
c7:a5:1e:04:2a:d8:13:dd:82:46:85:92:91:ab:b2:1e:e0:b8:
ba:9f:30:8e:9d:b3:8f:df:a1:40:98:a1:2a:e4:d6:30:bc:b8:
8c:43:ec:b8:5f:c3:e9:ef:fa:c1:ab:21:0b:36:89:22:ba:09:
b0:30:65:87:5c:8c:59:54:a8:52:03:e8:02:58:39:f9:9c:33:
de:36:84:43:d0:af:71:2c:ff:4e:ba:bd:4a:fb:91:c4:06:bf:
e2:98:da:02:ee:07:ca:64:d4:ad:70:92:10:59:5c:a4:78:8f:
2c:8b:5d:e2:60:8f:37:40:8a:e0:66:bd:ed:60:2d:b9:b7:b5:
6c:04:b4:c5:c0:d4:79:c2:fa:89:fc:6c:66:c3:68:b2:7b:db:
7f:62:61:fc:be:91:59:0d:a5:fa:24:12:c5:18:1b:ce:cc:5c:
96:2f:6e:67:b6:45:21:2b:23:d3:6e:3c:84:e3:8b:13:43:4b:
0b:8a:12:db:66:3d:9c:2c:1e:b4:e0:4a:7c:91:78:f6:df:07:
f5:e9:0f:24:52:e1:6b:19:4f:fc:4e:0a:fd:42:94:25:dc:37:
99:3f:46:c7:c8:81:a6:6d:0e:b3:15:b4:ef:fc:1c:bb:36:99:
21:c4:c4:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe5M7fp6uyobOaEXdOq6x0DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllNzQxMzViYjA3YzY1NDBjZDMwN2JkYTA4Y2EwNjc0YmM4
NGM5MzkwHhcNMjUwNjI5MDEwMTAzWhcNMjUwNjMwMDEwMTAzWjAzMTEwLwYDVQQD
EyhhMTc0ZTQwNzU4ZDdlZmRhMjIxYWVjOTM1ZmRmOWFjNzllMWVmZWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ohVkGWfQrvbcWP39cuOYJQya+2c
jGrWe0YtPz23L+jai3M4/aEuCEfLkoU/yfX0WQGUbxRQJhqk2Fx6mgXApkesKvO0
/QoS7Fg4XbaRg4MwVVt5l3iIK16UK7Bp0Rb3iOsdcglpNazFwnhh2QCsxJG/BO5r
yqVoy0BXEPterTkQzRkZhHU3YeJvXeVpMllyFkI/wo0059koQT0LCcJVJCBeQ7zJ
8ApqC2/K0s4iI4uSnXZL+nkund1l7uYshd0xyZDeQ5lt87WeDC504NjufVJbWfgh
xA+zmGtrtNsYs4D4+iiT4T9foDgXiyqrNgHYB6jgXZFIWk+Uc3nE3LejDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKF05AdY1+/aIhrsk1/fmseeHv7bMB8GA1UdIwQY
MBaAFJ50E1uwfGVAzTB72gjKBnS8hMk5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbm5RVFc3QjhaVUROTUh2YUNNb0dkTHlFeVRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS81ZTc4ZjYtMjUzYS00MTE1LWFlNWQt
NWRjODBmYWVkMmRjLzEvbm5RVFc3QjhaVUROTUh2YUNNb0dkTHlFeVRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS81ZTc4ZjYtMjUzYS00MTE1LWFlNWQtNWRjODBmYWVkMmRj
LzEvbm5RVFc3QjhaVUROTUh2YUNNb0dkTHlFeVRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZMILVL+D
Y/GwBDtAaTW852Ktx6UeBCrYE92CRoWSkauyHuC4up8wjp2zj9+hQJihKuTWMLy4
jEPsuF/D6e/6washCzaJIroJsDBlh1yMWVSoUgPoAlg5+Zwz3jaEQ9CvcSz/Trq9
SvuRxAa/4pjaAu4HymTUrXCSEFlcpHiPLItd4mCPN0CK4Ga97WAtube1bAS0xcDU
ecL6ifxsZsNosnvbf2Jh/L6RWQ2l+iQSxRgbzsxcli9uZ7ZFISsj0248hOOLE0NL
C4oS22Y9nCwetOBKfJF49t8H9ekPJFLhaxlP/E4K/UKUJdw3mT9Gx8iBpm0OsxW0
7/wcuzaZIcTEdg==
-----END CERTIFICATE-----
Generated at Sun Jun 29 04:40:50 2025 by rpki-client