Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft
File: NmTkRiopAqUvgm2uOFZXMe_FvdM.mft (raw, json)
Hash identifier: gH+TqM/UyoiW80jRrrs+5BdYJCNRzU3SUQMp/GE4LbI=
Subject key identifier: C3:DF:7C:78:A2:35:4E:7F:24:5D:C3:25:03:36:F3:36:6A:3B:64:B7
Authority key identifier: 36:64:E4:46:2A:29:02:A5:2F:82:6D:AE:38:56:57:31:EF:C5:BD:D3
Certificate issuer: /CN=3664e4462a2902a52f826dae38565731efc5bdd3
Certificate serial: 0197B77BF36108F7208786190B4597FA600D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NmTkRiopAqUvgm2uOFZXMe_FvdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft
Manifest number: 1505
Signing time: Sat 28 Jun 2025 17:00:43 +0000
Manifest this update: Sat 28 Jun 2025 17:00:43 +0000
Manifest next update: Sun 29 Jun 2025 17:00:43 +0000
Files and hashes: 1: NmTkRiopAqUvgm2uOFZXMe_FvdM.crl (hash: eQ1rYjqPmHRyPeL9vvxrNzyJhdV+FE2Iv1gvvNIjjpw=)
2: bRSiH3Ltu0n345442eKdUINyK3s.roa (hash: WObRy2TpZce8N0K21ZTeL8NwUXrbmFADn/Y+S73z7rk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NmTkRiopAqUvgm2uOFZXMe_FvdM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7b:f3:61:08:f7:20:87:86:19:0b:45:97:fa:60:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3664e4462a2902a52f826dae38565731efc5bdd3
Validity
Not Before: Jun 28 17:00:43 2025 GMT
Not After : Jun 29 17:00:43 2025 GMT
Subject: CN=c3df7c78a2354e7f245dc3250336f3366a3b64b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8c:7e:09:4f:e3:c8:76:67:2f:b3:18:cc:2f:
61:b0:64:ef:87:95:0e:c3:e9:d6:2a:65:42:be:c7:
36:da:64:54:1a:42:16:dd:f1:bb:47:f8:dd:fd:c5:
5d:19:29:4f:b4:70:8c:32:70:bb:80:9d:97:1a:06:
af:4e:bf:04:cb:ac:c3:84:24:6a:b2:ad:a3:68:c2:
db:72:50:5e:a2:0f:fa:dd:9b:b9:f5:56:06:12:f9:
3d:10:c9:e9:7b:ac:22:0e:0e:e4:e7:2e:33:90:2b:
0a:0b:93:3b:55:b2:96:e2:5c:77:54:fd:80:6a:2e:
f2:29:97:0e:63:75:c0:66:1b:80:1b:64:13:35:b1:
a9:8b:0f:ae:9b:a8:60:64:f5:3d:43:f2:96:bd:28:
a2:c6:43:0a:fc:56:da:41:56:28:12:c1:d3:b0:d9:
49:9e:91:78:cd:ef:f8:19:18:75:4c:18:f2:27:44:
20:f5:7a:a3:26:92:78:43:7e:9c:dc:a5:0a:4d:14:
70:30:a3:db:a0:51:e4:2e:13:db:53:8a:f0:33:2a:
66:91:71:01:bd:e9:29:09:7d:21:07:7a:7f:4c:c9:
69:57:7c:2e:1d:57:b1:0d:71:d3:b2:c9:a1:4d:12:
57:54:7e:aa:a4:80:83:a0:56:e4:59:78:d6:13:a7:
8a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:DF:7C:78:A2:35:4E:7F:24:5D:C3:25:03:36:F3:36:6A:3B:64:B7
X509v3 Authority Key Identifier:
keyid:36:64:E4:46:2A:29:02:A5:2F:82:6D:AE:38:56:57:31:EF:C5:BD:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NmTkRiopAqUvgm2uOFZXMe_FvdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:20:06:03:4d:0f:c0:c3:d3:6a:cc:46:57:3d:45:78:70:64:
69:1e:19:3a:d3:4e:ea:d8:45:7b:7a:9b:82:5c:0e:99:b7:4f:
e8:7e:8f:67:16:15:51:d3:21:1f:ec:dc:7f:85:41:47:51:30:
47:34:8b:b7:dc:13:f0:a4:e1:98:ae:73:5d:2d:b2:48:50:36:
78:24:de:af:3c:0d:0b:2e:33:d5:72:0b:dd:b5:b7:72:a4:39:
63:a9:75:1d:a0:9d:86:5d:8c:27:bb:a9:86:58:57:be:a6:b3:
fa:ba:e5:b4:e3:c1:f4:7b:48:cf:c8:ad:e0:30:f2:c9:e4:8c:
92:92:8a:28:0c:ec:79:d1:1f:46:4d:e5:09:6f:44:87:4c:bc:
d1:33:85:66:81:a6:f0:ba:f5:67:06:a7:98:0d:4b:4a:54:7c:
ee:65:06:a2:82:59:26:03:f6:5e:aa:ed:d9:e8:85:29:b3:55:
1c:32:fd:d5:eb:81:05:8d:9c:72:d2:d4:0d:ab:6d:5d:82:50:
10:5e:83:8e:3b:30:42:61:aa:1f:83:81:b3:6c:49:49:ea:b4:
c9:67:84:18:6c:60:cc:46:65:09:80:4f:a5:dc:02:22:eb:8d:
36:92:3a:99:15:52:ea:73:3b:50:01:c8:be:57:db:96:70:6b:
58:bf:43:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3e/NhCPcgh4YZC0WX+mANMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2NjRlNDQ2MmEyOTAyYTUyZjgyNmRhZTM4NTY1NzMxZWZj
NWJkZDMwHhcNMjUwNjI4MTcwMDQzWhcNMjUwNjI5MTcwMDQzWjAzMTEwLwYDVQQD
EyhjM2RmN2M3OGEyMzU0ZTdmMjQ1ZGMzMjUwMzM2ZjMzNjZhM2I2NGI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlIx+CU/jyHZnL7MYzC9hsGTvh5UO
w+nWKmVCvsc22mRUGkIW3fG7R/jd/cVdGSlPtHCMMnC7gJ2XGgavTr8Ey6zDhCRq
sq2jaMLbclBeog/63Zu59VYGEvk9EMnpe6wiDg7k5y4zkCsKC5M7VbKW4lx3VP2A
ai7yKZcOY3XAZhuAG2QTNbGpiw+um6hgZPU9Q/KWvSiixkMK/FbaQVYoEsHTsNlJ
npF4ze/4GRh1TBjyJ0Qg9XqjJpJ4Q36c3KUKTRRwMKPboFHkLhPbU4rwMypmkXEB
vekpCX0hB3p/TMlpV3wuHVexDXHTssmhTRJXVH6qpICDoFbkWXjWE6eKwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMPffHiiNU5/JF3DJQM28zZqO2S3MB8GA1UdIwQY
MBaAFDZk5EYqKQKlL4JtrjhWVzHvxb3TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTm1Ua1Jpb3BBcVV2Z20ydU9GWlhNZV9GdmRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny9iYTAwODUtMzA2MC00Yzk2LTkwZGEt
YTQ1YjFhNGFjZTU2LzEvTm1Ua1Jpb3BBcVV2Z20ydU9GWlhNZV9GdmRNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny9iYTAwODUtMzA2MC00Yzk2LTkwZGEtYTQ1YjFhNGFjZTU2
LzEvTm1Ua1Jpb3BBcVV2Z20ydU9GWlhNZV9GdmRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqyAGA00P
wMPTasxGVz1FeHBkaR4ZOtNO6thFe3qbglwOmbdP6H6PZxYVUdMhH+zcf4VBR1Ew
RzSLt9wT8KThmK5zXS2ySFA2eCTerzwNCy4z1XIL3bW3cqQ5Y6l1HaCdhl2MJ7up
hlhXvqaz+rrltOPB9HtIz8it4DDyyeSMkpKKKAzsedEfRk3lCW9Eh0y80TOFZoGm
8Lr1ZwanmA1LSlR87mUGooJZJgP2Xqrt2eiFKbNVHDL91euBBY2cctLUDattXYJQ
EF6DjjswQmGqH4OBs2xJSeq0yWeEGGxgzEZlCYBPpdwCIuuNNpI6mRVS6nM7UAHI
vlfblnBrWL9DKQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:03:10 2025 by rpki-client