Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft
File: NehMBjohgLI_X20xYqdbMJL1wY0.mft (raw, json)
Hash identifier: bS2aZt3BEO6BCMIzAFmb3640mf7L58FHggIx7Ha7+Ro=
Subject key identifier: 78:B8:5A:D1:4E:D2:0D:EA:DB:96:95:DA:9C:74:A2:06:42:6A:A5:6B
Authority key identifier: 35:E8:4C:06:3A:21:80:B2:3F:5F:6D:31:62:A7:5B:30:92:F5:C1:8D
Certificate issuer: /CN=35e84c063a2180b23f5f6d3162a75b3092f5c18d
Certificate serial: 0196C19402091CD83081F8B1D2CF3AF7B6BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NehMBjohgLI_X20xYqdbMJL1wY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft
Manifest number: 1534
Signing time: Sun 11 May 2025 23:00:24 +0000
Manifest this update: Sun 11 May 2025 23:00:24 +0000
Manifest next update: Mon 12 May 2025 23:00:24 +0000
Files and hashes: 1: NehMBjohgLI_X20xYqdbMJL1wY0.crl (hash: chUj3aI4KAN+aB9gh0audFXWDoQZhp8T0jTpstKOAP8=)
2: W3mDa3qMM3UMHKwdjXNmQQYwzCo.roa (hash: uhcnNrB9w8L6u9yOsZumoNimMZDsDc9Fp+1S6uVCDDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/NehMBjohgLI_X20xYqdbMJL1wY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 17:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:94:02:09:1c:d8:30:81:f8:b1:d2:cf:3a:f7:b6:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35e84c063a2180b23f5f6d3162a75b3092f5c18d
Validity
Not Before: May 11 23:00:24 2025 GMT
Not After : May 12 23:00:24 2025 GMT
Subject: CN=78b85ad14ed20deadb9695da9c74a206426aa56b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ec:89:42:7d:10:a9:75:a4:e6:b3:87:53:44:
5f:ee:2e:ac:06:75:ce:bd:f0:ae:a2:36:75:39:f0:
0a:f0:a5:f8:b7:36:3e:23:79:98:37:f5:c5:ef:73:
01:72:6b:a3:bb:92:1d:bd:c6:19:cd:13:74:7b:c2:
a2:99:72:a0:29:36:ad:a2:e6:de:f9:b1:c0:60:a6:
b1:df:bd:dd:6f:47:1d:11:f8:ce:0e:4d:55:f8:d8:
44:b8:2b:bf:f9:fd:b5:26:9f:b9:b1:3e:5f:27:34:
74:d2:a1:07:d9:c1:e1:23:4f:cc:7e:da:b7:b2:14:
22:6f:a0:0b:19:09:37:0e:52:ca:de:d0:3e:2e:47:
e4:0a:c1:e8:b8:b3:3a:1f:f7:43:98:c2:1e:85:6a:
c6:38:e6:13:e4:b6:48:6d:05:6e:95:13:81:52:1a:
99:4b:19:54:3d:d8:31:90:88:44:14:00:f4:12:ad:
2a:e0:73:63:ba:0d:7b:07:9e:b9:87:f1:46:fd:6c:
5f:04:6f:19:24:5d:85:7a:62:62:39:78:8b:8d:0b:
f2:ca:ae:7f:d2:02:95:69:b0:28:12:2a:f9:94:5d:
b2:34:5b:3e:62:4a:f7:9d:96:57:0e:d6:e3:4a:b3:
b0:e3:f4:ea:b2:19:76:5c:28:c2:81:db:17:08:7b:
ba:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:B8:5A:D1:4E:D2:0D:EA:DB:96:95:DA:9C:74:A2:06:42:6A:A5:6B
X509v3 Authority Key Identifier:
keyid:35:E8:4C:06:3A:21:80:B2:3F:5F:6D:31:62:A7:5B:30:92:F5:C1:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NehMBjohgLI_X20xYqdbMJL1wY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:29:e3:2d:6b:0a:03:c6:e9:23:cc:f9:66:55:2a:93:16:05:
f7:0d:bf:bb:ee:86:f3:f3:20:3f:5b:de:bb:04:88:74:4d:7d:
19:db:0c:02:f8:7c:ba:dc:3c:c2:bb:6b:26:26:ab:3d:73:a3:
2f:d4:da:5c:b4:d3:b6:34:31:a8:0d:5d:73:99:35:d8:51:54:
78:31:c7:65:36:54:6f:55:c8:16:cd:60:fc:c2:18:6c:d1:90:
06:e8:32:a6:34:04:e6:b6:1d:59:7f:57:ae:a5:b0:d9:c3:fb:
70:72:71:69:a4:43:df:8c:62:6d:4a:1b:01:c0:8b:39:e1:dd:
2b:e4:6a:ae:e3:3a:58:5c:bb:dd:05:64:d5:a3:fb:9a:3a:a3:
ef:90:63:3e:7d:22:46:b9:32:bb:32:3f:60:64:3b:2c:f1:ed:
a6:eb:33:ce:3c:90:27:4d:7e:88:0b:4a:8e:cc:4e:b0:c4:d6:
58:15:ec:18:4c:4a:f3:c1:c0:5f:dd:8d:a8:f1:f4:57:cf:7a:
dc:b9:8a:d9:02:10:57:60:85:a9:cd:2e:f9:86:76:01:27:4d:
12:63:58:dd:d1:6e:b0:b6:5a:e2:4b:2c:12:aa:2b:ef:bb:aa:
0d:53:36:44:a1:fd:74:98:5a:d7:e3:05:4e:dc:ee:28:3c:a6:
46:94:4c:e0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbBlAIJHNgwgfix0s8697a9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1ZTg0YzA2M2EyMTgwYjIzZjVmNmQzMTYyYTc1YjMwOTJm
NWMxOGQwHhcNMjUwNTExMjMwMDI0WhcNMjUwNTEyMjMwMDI0WjAzMTEwLwYDVQQD
Eyg3OGI4NWFkMTRlZDIwZGVhZGI5Njk1ZGE5Yzc0YTIwNjQyNmFhNTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+yJQn0QqXWk5rOHU0Rf7i6sBnXO
vfCuojZ1OfAK8KX4tzY+I3mYN/XF73MBcmuju5IdvcYZzRN0e8KimXKgKTatoube
+bHAYKax373db0cdEfjODk1V+NhEuCu/+f21Jp+5sT5fJzR00qEH2cHhI0/Mftq3
shQib6ALGQk3DlLK3tA+LkfkCsHouLM6H/dDmMIehWrGOOYT5LZIbQVulROBUhqZ
SxlUPdgxkIhEFAD0Eq0q4HNjug17B565h/FG/WxfBG8ZJF2FemJiOXiLjQvyyq5/
0gKVabAoEir5lF2yNFs+Ykr3nZZXDtbjSrOw4/Tqshl2XCjCgdsXCHu6SQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHi4WtFO0g3q25aV2px0ogZCaqVrMB8GA1UdIwQY
MBaAFDXoTAY6IYCyP19tMWKnWzCS9cGNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmVoTUJqb2hnTElfWDIweFlxZGJNSkwxd1kwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC82Y2E4NTItZWQ0Yi00MWQxLWE3YjYt
ODRhNzFjYzMyZDQ4LzEvTmVoTUJqb2hnTElfWDIweFlxZGJNSkwxd1kwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC82Y2E4NTItZWQ0Yi00MWQxLWE3YjYtODRhNzFjYzMyZDQ4
LzEvTmVoTUJqb2hnTElfWDIweFlxZGJNSkwxd1kwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAACnjLWsK
A8bpI8z5ZlUqkxYF9w2/u+6G8/MgP1veuwSIdE19GdsMAvh8utw8wrtrJiarPXOj
L9TaXLTTtjQxqA1dc5k12FFUeDHHZTZUb1XIFs1g/MIYbNGQBugypjQE5rYdWX9X
rqWw2cP7cHJxaaRD34xibUobAcCLOeHdK+RqruM6WFy73QVk1aP7mjqj75BjPn0i
RrkyuzI/YGQ7LPHtpuszzjyQJ01+iAtKjsxOsMTWWBXsGExK88HAX92NqPH0V896
3LmK2QIQV2CFqc0u+YZ2ASdNEmNY3dFusLZa4kssEqor77uqDVM2RKH9dJha1+MF
TtzuKDymRpRM4A==
-----END CERTIFICATE-----
Generated at Mon May 12 03:08:21 2025 by rpki-client