Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.mft
File: nQhzWjV9MfqK2jHinxlYam_9lZI.mft (raw, json)
Hash identifier: 7016IoZBT0dfoegHbRQzgFJhgTOWmU0z4w3ThOdc7Y4=
Subject key identifier: AC:50:31:E6:E1:4E:76:77:88:BF:A6:EC:69:32:92:70:0D:9B:FE:B2
Authority key identifier: 9D:08:73:5A:35:7D:31:FA:8A:DA:31:E2:9F:19:58:6A:6F:FD:95:92
Certificate issuer: /CN=9d08735a357d31fa8ada31e29f19586a6ffd9592
Certificate serial: 0196C2A6CFED2A788D1E30B84152A7B64E79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQhzWjV9MfqK2jHinxlYam_9lZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.mft
Manifest number: 0485
Signing time: Mon 12 May 2025 04:00:34 +0000
Manifest this update: Mon 12 May 2025 04:00:34 +0000
Manifest next update: Tue 13 May 2025 04:00:34 +0000
Files and hashes: 1: nQhzWjV9MfqK2jHinxlYam_9lZI.crl (hash: 4sHfJsOO1HWm4qSCWubOsOc2WUNNoQ0GKm3znaaSyHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/nQhzWjV9MfqK2jHinxlYam_9lZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:a6:cf:ed:2a:78:8d:1e:30:b8:41:52:a7:b6:4e:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d08735a357d31fa8ada31e29f19586a6ffd9592
Validity
Not Before: May 12 04:00:34 2025 GMT
Not After : May 13 04:00:34 2025 GMT
Subject: CN=ac5031e6e14e767788bfa6ec693292700d9bfeb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:67:23:40:e9:ae:99:97:93:b0:13:95:12:ed:
f7:53:f3:ab:a6:0b:87:1e:c5:98:f3:97:16:99:4d:
d4:58:b1:b2:50:b9:12:ac:56:13:bb:42:ac:56:17:
37:47:1c:9b:99:38:65:ed:87:7e:70:ac:4e:66:a7:
00:70:8b:04:41:b9:54:50:31:ab:46:46:55:e9:b9:
e7:f9:24:24:44:ef:7f:07:d7:49:85:1f:07:9e:33:
27:42:2c:8d:09:7b:da:b9:00:9d:da:e8:d9:90:49:
31:70:1e:ce:91:c2:60:87:c6:5b:a1:d7:fb:11:6e:
98:54:15:86:49:96:5c:a9:5d:cb:57:58:8f:c1:59:
58:75:32:e5:0a:31:32:a5:7c:d4:56:75:df:3d:dd:
8c:9c:de:be:ba:58:21:e9:0c:d9:5e:b8:66:57:04:
c2:8c:12:29:54:91:d9:c6:ac:92:dd:96:46:da:1f:
8a:f2:23:b0:ad:cc:b1:f1:4a:a1:69:a8:cc:81:80:
08:10:d6:90:67:d7:3c:5f:35:73:86:f9:9f:04:0a:
5b:1d:07:75:51:30:3b:7a:81:6b:fe:71:4e:06:3e:
ff:d1:db:5e:0e:b5:2e:d3:3b:ff:7a:73:2d:b7:25:
c1:21:f1:e1:c4:15:39:5a:ae:47:a0:90:07:2f:2c:
aa:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:50:31:E6:E1:4E:76:77:88:BF:A6:EC:69:32:92:70:0D:9B:FE:B2
X509v3 Authority Key Identifier:
keyid:9D:08:73:5A:35:7D:31:FA:8A:DA:31:E2:9F:19:58:6A:6F:FD:95:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQhzWjV9MfqK2jHinxlYam_9lZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cf4d9e-59c9-4f9f-8f32-a348821ca1e0/1/nQhzWjV9MfqK2jHinxlYam_9lZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:68:64:7e:77:cb:73:fe:9c:3c:3c:79:a8:08:19:7e:16:d9:
2b:93:28:30:52:b2:d1:80:14:db:81:c5:81:6d:74:89:71:d7:
3b:b0:29:33:6e:f5:80:7c:67:f7:2f:15:42:cb:62:11:8e:de:
f5:a6:da:c1:cc:69:5e:d4:dc:0c:ee:81:c6:23:5f:e8:c2:2f:
7c:4d:26:fb:97:c2:95:92:fe:88:c1:a2:93:2c:89:0c:09:cb:
58:8d:b5:88:f7:18:b1:c6:ae:9d:3f:50:2e:c3:f0:64:c2:c7:
cf:5e:65:db:83:54:c7:33:b9:33:ae:e0:6f:f4:3b:83:28:a8:
51:a8:2c:62:f7:7d:f2:c6:d1:4c:f1:bf:d4:8d:e7:6f:64:ab:
b3:6c:b6:8b:47:e3:83:2e:fe:87:b2:ec:de:3f:6e:f0:64:48:
97:cf:89:7b:fa:f3:9b:06:58:47:98:ee:ef:bc:de:59:9e:ee:
40:a1:c4:fd:ab:06:79:75:ca:d5:79:85:71:7d:a7:78:7a:3d:
59:35:7f:cb:7e:51:61:ee:3d:fd:d4:41:aa:bc:ea:e6:ee:26:
12:1b:f4:20:ab:ac:8b:f3:b6:54:01:d0:b7:33:95:75:1b:64:
90:cf:33:4a:ea:0b:46:dd:19:a1:0d:dc:e2:f2:bf:36:2f:3a:
9f:c5:2a:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbCps/tKniNHjC4QVKntk55MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMDg3MzVhMzU3ZDMxZmE4YWRhMzFlMjlmMTk1ODZhNmZm
ZDk1OTIwHhcNMjUwNTEyMDQwMDM0WhcNMjUwNTEzMDQwMDM0WjAzMTEwLwYDVQQD
EyhhYzUwMzFlNmUxNGU3Njc3ODhiZmE2ZWM2OTMyOTI3MDBkOWJmZWIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0WcjQOmumZeTsBOVEu33U/OrpguH
HsWY85cWmU3UWLGyULkSrFYTu0KsVhc3RxybmThl7Yd+cKxOZqcAcIsEQblUUDGr
RkZV6bnn+SQkRO9/B9dJhR8HnjMnQiyNCXvauQCd2ujZkEkxcB7OkcJgh8Zbodf7
EW6YVBWGSZZcqV3LV1iPwVlYdTLlCjEypXzUVnXfPd2MnN6+ulgh6QzZXrhmVwTC
jBIpVJHZxqyS3ZZG2h+K8iOwrcyx8UqhaajMgYAIENaQZ9c8XzVzhvmfBApbHQd1
UTA7eoFr/nFOBj7/0dteDrUu0zv/enMttyXBIfHhxBU5Wq5HoJAHLyyq0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKxQMebhTnZ3iL+m7GkyknANm/6yMB8GA1UdIwQY
MBaAFJ0Ic1o1fTH6itox4p8ZWGpv/ZWSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblFoeldqVjlNZnFLMmpIaW54bFlhbV85bFpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9jZjRkOWUtNTljOS00ZjlmLThmMzIt
YTM0ODgyMWNhMWUwLzEvblFoeldqVjlNZnFLMmpIaW54bFlhbV85bFpJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS9jZjRkOWUtNTljOS00ZjlmLThmMzItYTM0ODgyMWNhMWUw
LzEvblFoeldqVjlNZnFLMmpIaW54bFlhbV85bFpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD2hkfnfL
c/6cPDx5qAgZfhbZK5MoMFKy0YAU24HFgW10iXHXO7ApM271gHxn9y8VQstiEY7e
9abawcxpXtTcDO6BxiNf6MIvfE0m+5fClZL+iMGikyyJDAnLWI21iPcYscaunT9Q
LsPwZMLHz15l24NUxzO5M67gb/Q7gyioUagsYvd98sbRTPG/1I3nb2Srs2y2i0fj
gy7+h7Ls3j9u8GRIl8+Je/rzmwZYR5ju77zeWZ7uQKHE/asGeXXK1XmFcX2neHo9
WTV/y35RYe49/dRBqrzq5u4mEhv0IKusi/O2VAHQtzOVdRtkkM8zSuoLRt0ZoQ3c
4vK/Ni86n8UqvA==
-----END CERTIFICATE-----
Generated at Mon May 12 11:10:58 2025 by rpki-client