Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
File: NHkVOIV45h2IaEmiHXC6B1FJwaE.mft (raw, json)
Hash identifier: qQcyyhZIRxs8rV0gaW+8+RPSI2jQ1esIRB5+NixmSpw=
Subject key identifier: DB:06:A2:09:28:90:1D:C7:97:BD:09:C6:79:33:65:18:9D:CE:10:FA
Authority key identifier: 34:79:15:38:85:78:E6:1D:88:68:49:A2:1D:70:BA:07:51:49:C1:A1
Certificate issuer: /CN=347915388578e61d886849a21d70ba075149c1a1
Certificate serial: 0198D65F9842114F23B26BCCA73B8DC53D9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHkVOIV45h2IaEmiHXC6B1FJwaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
Manifest number: 0BD6
Signing time: Sat 23 Aug 2025 10:00:45 +0000
Manifest this update: Sat 23 Aug 2025 10:00:45 +0000
Manifest next update: Sun 24 Aug 2025 10:00:45 +0000
Files and hashes: 1: NHkVOIV45h2IaEmiHXC6B1FJwaE.crl (hash: 3nD+h4YK3kVVkJUUrTFxwCxytAapIIzw4pcFoJ+kHKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/NHkVOIV45h2IaEmiHXC6B1FJwaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:98:42:11:4f:23:b2:6b:cc:a7:3b:8d:c5:3d:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347915388578e61d886849a21d70ba075149c1a1
Validity
Not Before: Aug 23 10:00:45 2025 GMT
Not After : Aug 24 10:00:45 2025 GMT
Subject: CN=db06a20928901dc797bd09c6793365189dce10fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:99:65:53:98:28:91:55:85:28:69:85:61:94:
27:d9:a8:62:31:a3:38:49:07:2c:f7:56:35:74:b9:
a6:aa:d7:f1:16:c9:cb:7d:76:1d:73:af:f7:f5:29:
e3:7f:95:3d:f2:f8:23:b5:58:08:17:a3:f5:a6:88:
a8:ce:2d:1f:cc:b8:ce:6a:52:f2:32:1b:1c:52:68:
e9:8d:9e:69:26:a3:db:3f:e2:fc:6a:bc:9b:ea:49:
2f:1b:d7:ac:bd:54:55:58:e1:e5:24:ce:80:ff:0d:
1c:0e:7e:5d:c5:0a:3d:5b:2b:f3:ac:2b:1e:5d:4e:
fb:be:87:1e:dc:41:fd:26:fe:ef:55:75:77:5c:bc:
bc:d7:23:31:6e:59:f4:28:9b:9d:23:19:8f:74:53:
52:52:d8:c9:dc:1b:b8:d7:49:be:e2:44:5f:7b:01:
d7:10:6c:48:dd:2a:8e:cb:96:b0:87:90:f6:fd:98:
1f:98:00:e1:b2:cc:a3:62:e5:32:57:89:1f:d1:80:
27:43:6c:89:f5:bc:91:7b:a0:fa:b3:78:c0:7f:d2:
8a:ba:0b:6b:e2:e0:09:4f:f9:6b:6b:13:49:27:63:
0f:ab:89:0f:af:47:65:97:97:2a:d7:65:7f:68:3b:
98:32:6a:08:a1:a6:b8:2b:c1:d2:8c:65:3f:60:c1:
cc:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:06:A2:09:28:90:1D:C7:97:BD:09:C6:79:33:65:18:9D:CE:10:FA
X509v3 Authority Key Identifier:
keyid:34:79:15:38:85:78:E6:1D:88:68:49:A2:1D:70:BA:07:51:49:C1:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHkVOIV45h2IaEmiHXC6B1FJwaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:6e:b9:e8:18:bb:d3:77:b3:9b:05:93:dc:85:1e:87:1f:1a:
a9:4b:43:c5:62:18:d5:ad:09:71:56:8b:15:ff:f6:2d:00:8d:
91:1a:84:c1:77:91:c0:81:9f:69:38:a5:6b:4c:98:f1:58:e0:
48:51:54:a7:90:b6:54:78:87:41:ec:89:e9:38:3f:e7:09:60:
4e:5a:cf:ef:9f:21:3a:04:24:ab:9c:2a:30:91:ac:27:4a:8a:
e0:35:2d:80:bf:c8:2d:9a:af:59:c6:93:7c:7d:e6:e4:17:93:
0d:8b:d4:e1:48:61:9e:02:a7:67:3f:e8:d3:fe:5d:75:de:b8:
b5:fe:e7:9a:84:30:24:84:88:ac:06:49:6a:1f:27:6e:65:ba:
99:0c:7c:33:3f:ac:71:db:13:0f:22:ae:c3:1f:11:0f:d6:91:
87:ff:7f:42:f0:ef:67:f7:ad:42:ee:71:13:50:06:1c:1b:fa:
f8:a2:c0:05:b7:bb:a8:e2:60:24:73:f3:19:28:62:ee:10:79:
8a:b1:fe:a4:93:4b:a0:d1:24:78:48:af:3a:12:de:7c:2a:a2:
87:d7:84:16:af:67:cc:d5:ef:d6:57:c6:50:93:7f:57:35:3e:
c9:45:33:91:57:44:5e:68:4a:b0:61:0f:d8:be:2f:34:e6:c9:
1f:15:5a:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX5hCEU8jsmvMpzuNxT2bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0NzkxNTM4ODU3OGU2MWQ4ODY4NDlhMjFkNzBiYTA3NTE0
OWMxYTEwHhcNMjUwODIzMTAwMDQ1WhcNMjUwODI0MTAwMDQ1WjAzMTEwLwYDVQQD
EyhkYjA2YTIwOTI4OTAxZGM3OTdiZDA5YzY3OTMzNjUxODlkY2UxMGZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkJllU5gokVWFKGmFYZQn2ahiMaM4
SQcs91Y1dLmmqtfxFsnLfXYdc6/39Snjf5U98vgjtVgIF6P1poiozi0fzLjOalLy
MhscUmjpjZ5pJqPbP+L8aryb6kkvG9esvVRVWOHlJM6A/w0cDn5dxQo9WyvzrCse
XU77voce3EH9Jv7vVXV3XLy81yMxbln0KJudIxmPdFNSUtjJ3Bu410m+4kRfewHX
EGxI3SqOy5awh5D2/ZgfmADhssyjYuUyV4kf0YAnQ2yJ9byRe6D6s3jAf9KKugtr
4uAJT/lraxNJJ2MPq4kPr0dll5cq12V/aDuYMmoIoaa4K8HSjGU/YMHMgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNsGogkokB3Hl70JxnkzZRidzhD6MB8GA1UdIwQY
MBaAFDR5FTiFeOYdiGhJoh1wugdRScGhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkhrVk9JVjQ1aDJJYUVtaUhYQzZCMUZKd2FFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny80ZWY2OWUtOTk3OC00MzZkLTkwYzkt
ODJkOTdjMDY5NTY2LzEvTkhrVk9JVjQ1aDJJYUVtaUhYQzZCMUZKd2FFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny80ZWY2OWUtOTk3OC00MzZkLTkwYzktODJkOTdjMDY5NTY2
LzEvTkhrVk9JVjQ1aDJJYUVtaUhYQzZCMUZKd2FFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ2656Bi7
03ezmwWT3IUehx8aqUtDxWIY1a0JcVaLFf/2LQCNkRqEwXeRwIGfaTila0yY8Vjg
SFFUp5C2VHiHQeyJ6Tg/5wlgTlrP758hOgQkq5wqMJGsJ0qK4DUtgL/ILZqvWcaT
fH3m5BeTDYvU4UhhngKnZz/o0/5ddd64tf7nmoQwJISIrAZJah8nbmW6mQx8Mz+s
cdsTDyKuwx8RD9aRh/9/QvDvZ/etQu5xE1AGHBv6+KLABbe7qOJgJHPzGShi7hB5
irH+pJNLoNEkeEivOhLefCqih9eEFq9nzNXv1lfGUJN/VzU+yUUzkVdEXmhKsGEP
2L4vNObJHxVaaQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:38:50 2025 by rpki-client