Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
File: NTPUOQNczcXww50bP7FhlbVV_KM.mft (raw, json)
Hash identifier: 1j8RAPZVXiuIWKNNoakXlP2cP3s/6gNmTmCfvmf8jrk=
Subject key identifier: 94:E9:F1:C1:58:73:39:E4:E5:2E:2F:94:0C:09:4B:57:7C:B1:5A:CD
Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Certificate serial: 0196C615B063DDCC13C34C49F06A342B3274
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
Manifest number: 0A2E
Signing time: Mon 12 May 2025 20:00:32 +0000
Manifest this update: Mon 12 May 2025 20:00:32 +0000
Manifest next update: Tue 13 May 2025 20:00:32 +0000
Files and hashes: 1: NTPUOQNczcXww50bP7FhlbVV_KM.crl (hash: efZQzTY2xGU+85uHwxfB9L83FA0yFEX9oUi2/qomcgw=)
2: rAVoUvT6eIAoJ9DaPocwQDvvkoc.roa (hash: 1BFZOwvrkIRFql6imBqxsdk52Ly1yvo/6JadLNNcDZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 20:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:15:b0:63:dd:cc:13:c3:4c:49:f0:6a:34:2b:32:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Validity
Not Before: May 12 20:00:32 2025 GMT
Not After : May 13 20:00:32 2025 GMT
Subject: CN=94e9f1c1587339e4e52e2f940c094b577cb15acd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:8e:a6:26:40:b7:ba:3e:a7:9c:c4:8e:5e:73:
27:29:f3:ac:90:4f:e7:46:a4:2f:87:61:67:63:57:
14:41:5d:01:d6:3e:cb:82:f5:e4:31:6c:6c:41:35:
1d:50:12:f8:18:e6:05:79:89:94:57:ca:3f:4b:61:
33:5d:3f:42:8a:0c:a0:ee:27:c4:ec:b3:ac:ab:dc:
d3:48:93:18:70:98:1f:fd:81:b5:be:d1:f2:e9:09:
91:33:65:ff:0b:62:bc:71:77:c9:d7:b1:64:23:03:
c6:6a:58:06:b7:86:fb:6b:c4:5b:e4:22:88:54:70:
25:2d:b0:eb:e0:6b:3d:be:61:cb:b0:3d:13:be:99:
4c:4f:26:15:e6:85:04:f1:12:1f:3d:06:4a:f7:5f:
11:55:74:ec:d7:de:89:3e:17:a9:fd:9c:38:da:0a:
7e:99:d1:10:9a:ee:99:bf:8d:40:a6:f4:89:38:45:
4b:c5:c2:43:bc:e0:a6:a7:d8:6e:ca:e7:a0:7b:7e:
67:14:09:31:79:07:5f:38:7c:bf:32:00:13:03:4e:
34:70:7a:5f:7d:6b:9a:27:3c:c8:ab:79:5e:6c:bc:
d7:2a:f6:da:cf:d2:a6:8c:6a:39:1a:96:df:4a:dc:
ce:40:3f:8d:fb:e3:4a:7a:e7:bf:2d:a9:0d:7d:2e:
1f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:E9:F1:C1:58:73:39:E4:E5:2E:2F:94:0C:09:4B:57:7C:B1:5A:CD
X509v3 Authority Key Identifier:
keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:fb:e3:90:ea:96:b1:ce:c1:3f:bb:50:fd:dd:54:4a:a1:8d:
da:09:68:c3:1c:d9:c6:7a:83:fb:b2:88:35:aa:a3:eb:4a:6c:
de:54:3e:59:9d:a0:a6:7c:ab:e1:44:01:c6:07:7d:01:e3:9a:
38:64:75:0a:72:54:9b:f5:8a:58:7f:74:5e:ff:00:c4:32:f2:
2e:0c:b9:42:c3:0f:77:1c:2f:eb:d0:cb:4e:13:27:9e:e5:d9:
61:30:6e:66:c0:16:43:93:ef:ae:52:fe:66:97:4f:8d:a6:24:
82:2a:de:a5:89:01:f6:39:69:d2:eb:5e:de:16:36:1d:d4:b7:
bb:9e:43:b4:21:82:5d:fc:5e:95:fb:e3:d3:4d:a6:87:e2:4b:
8e:92:73:29:d8:99:17:ea:03:47:1f:38:4b:a1:b4:29:31:c2:
54:06:f1:33:d4:eb:1f:11:05:7a:ab:25:0c:07:fb:77:aa:4c:
51:32:fd:c2:22:7e:92:84:48:9b:c2:f2:a9:3e:57:15:09:b2:
5e:bb:77:e9:cf:15:50:d7:16:3b:67:04:84:5f:1e:a5:5e:46:
ff:38:c2:59:df:e0:f2:f2:d5:46:30:f2:df:cb:9c:e8:3b:57:
a9:61:87:ab:2e:65:b5:95:1c:22:29:4d:95:15:dd:be:4d:1e:
d1:33:f1:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbGFbBj3cwTw0xJ8Go0KzJ0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1MzNkNDM5MDM1Y2NkYzVmMGMzOWQxYjNmYjE2MTk1YjU1
NWZjYTMwHhcNMjUwNTEyMjAwMDMyWhcNMjUwNTEzMjAwMDMyWjAzMTEwLwYDVQQD
Eyg5NGU5ZjFjMTU4NzMzOWU0ZTUyZTJmOTQwYzA5NGI1NzdjYjE1YWNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7I6mJkC3uj6nnMSOXnMnKfOskE/n
RqQvh2FnY1cUQV0B1j7LgvXkMWxsQTUdUBL4GOYFeYmUV8o/S2EzXT9Cigyg7ifE
7LOsq9zTSJMYcJgf/YG1vtHy6QmRM2X/C2K8cXfJ17FkIwPGalgGt4b7a8Rb5CKI
VHAlLbDr4Gs9vmHLsD0TvplMTyYV5oUE8RIfPQZK918RVXTs196JPhep/Zw42gp+
mdEQmu6Zv41ApvSJOEVLxcJDvOCmp9huyuege35nFAkxeQdfOHy/MgATA040cHpf
fWuaJzzIq3lebLzXKvbaz9KmjGo5GpbfStzOQD+N++NKeue/LakNfS4fCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJTp8cFYcznk5S4vlAwJS1d8sVrNMB8GA1UdIwQY
MBaAFDUz1DkDXM3F8MOdGz+xYZW1VfyjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy84Y2YyYTYtNDUyOS00M2Q5LWI3ODIt
MzZlODVhYmU1MmZmLzEvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy84Y2YyYTYtNDUyOS00M2Q5LWI3ODItMzZlODVhYmU1MmZm
LzEvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArPvjkOqW
sc7BP7tQ/d1USqGN2glowxzZxnqD+7KINaqj60ps3lQ+WZ2gpnyr4UQBxgd9AeOa
OGR1CnJUm/WKWH90Xv8AxDLyLgy5QsMPdxwv69DLThMnnuXZYTBuZsAWQ5PvrlL+
ZpdPjaYkgirepYkB9jlp0ute3hY2HdS3u55DtCGCXfxelfvj002mh+JLjpJzKdiZ
F+oDRx84S6G0KTHCVAbxM9TrHxEFeqslDAf7d6pMUTL9wiJ+koRIm8LyqT5XFQmy
Xrt36c8VUNcWO2cEhF8epV5G/zjCWd/g8vLVRjDy38uc6DtXqWGHqy5ltZUcIilN
lRXdvk0e0TPxqw==
-----END CERTIFICATE-----
Generated at Tue May 13 04:32:50 2025 by rpki-client