Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
File: Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft (raw, json)
Hash identifier: 0K54jlcyJG3xCwz5ahvWxSeO7fTYB2HMWqatbKB6sdw=
Subject key identifier: 95:EE:AA:F1:5F:13:A2:4D:FE:7A:6B:05:B4:CC:15:4A:6E:5A:79:DA
Authority key identifier: 36:4D:48:8B:8C:73:1B:91:D4:A5:A2:B9:0A:66:6C:EE:BC:0E:18:C9
Certificate issuer: /CN=364d488b8c731b91d4a5a2b90a666ceebc0e18c9
Certificate serial: 0197B6A07BA57EC9C686B75947A5155A5D55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
Manifest number: C7
Signing time: Sat 28 Jun 2025 13:00:59 +0000
Manifest this update: Sat 28 Jun 2025 13:00:59 +0000
Manifest next update: Sun 29 Jun 2025 13:00:59 +0000
Files and hashes: 1: Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl (hash: z6bT2Jb+qhBUa71rlzSutC+CANbIjxcoc4aoA+CiVSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:7b:a5:7e:c9:c6:86:b7:59:47:a5:15:5a:5d:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=364d488b8c731b91d4a5a2b90a666ceebc0e18c9
Validity
Not Before: Jun 28 13:00:59 2025 GMT
Not After : Jun 29 13:00:59 2025 GMT
Subject: CN=95eeaaf15f13a24dfe7a6b05b4cc154a6e5a79da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e4:99:fe:bb:8f:e5:00:b5:5b:4f:80:12:41:
7d:a2:bb:00:e9:8c:a7:ba:98:0f:8e:87:aa:1e:cb:
b6:97:ab:0f:9b:ca:02:35:c7:96:ec:f5:f5:fe:d2:
73:d4:ec:88:91:f5:20:dc:ea:96:8d:54:a3:ce:28:
fe:2f:1d:f7:51:ed:e5:e6:42:d4:c0:db:0a:19:30:
c8:50:b4:f5:5b:1a:f6:ad:80:b5:04:16:6d:f0:83:
76:83:35:86:cb:d2:12:79:b7:43:3a:c1:31:62:4c:
a7:61:33:a6:7b:42:7f:e2:60:be:14:8f:52:0c:2d:
7b:f2:75:9d:61:5a:67:47:76:97:60:15:06:dc:4b:
1b:4f:5a:cf:5b:5c:cc:57:1f:72:36:a3:6a:de:96:
de:7e:1e:a0:39:1b:64:46:09:6b:9d:b8:6e:ee:4f:
a2:85:5a:90:cc:a8:af:76:b0:fd:d2:64:bb:74:8b:
06:61:00:9c:b5:01:b6:ba:00:ae:1e:f3:a3:88:17:
3c:16:0a:d6:45:43:3b:ec:7a:4b:58:b7:c0:dd:f1:
5c:dc:5c:59:e7:bb:74:31:99:c8:89:2d:f2:e5:58:
68:7e:ad:88:af:a0:ad:c3:18:b6:09:b8:cc:7d:60:
ac:ee:93:61:a5:2e:43:57:cf:1e:41:d9:5d:4a:71:
69:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:EE:AA:F1:5F:13:A2:4D:FE:7A:6B:05:B4:CC:15:4A:6E:5A:79:DA
X509v3 Authority Key Identifier:
keyid:36:4D:48:8B:8C:73:1B:91:D4:A5:A2:B9:0A:66:6C:EE:BC:0E:18:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:bb:dc:d9:aa:0b:04:5e:d7:81:82:10:78:1d:2f:46:e2:3f:
e9:d9:3c:78:95:71:24:64:05:83:8f:4a:7a:63:eb:35:df:db:
a9:d3:91:e7:14:e0:8a:f8:f7:94:9d:9b:f3:96:41:13:59:6d:
0c:2a:bc:1d:96:0d:56:53:ec:12:40:c3:16:2b:ba:64:20:e0:
4c:12:94:3d:ee:e1:95:6b:ea:8f:cc:46:ff:56:f8:ce:a4:d4:
76:60:e9:06:64:19:4b:c6:44:ad:19:19:30:14:96:56:71:8d:
11:2f:59:a2:dc:72:7a:1c:35:9a:50:10:ef:12:5a:fd:d3:a5:
4c:ef:59:b7:96:ec:b8:37:a9:77:a7:15:1d:f4:3d:56:3f:05:
33:c4:23:3c:9d:6c:3c:4e:53:30:0b:37:d4:ba:3e:a8:2a:11:
fd:72:cd:f3:f1:47:2d:33:2d:e0:ed:6f:c6:60:23:08:1e:7c:
57:e8:3b:7a:02:55:1b:6e:88:12:0e:4e:d2:4f:2d:4d:9d:99:
be:48:de:a4:64:ab:1f:a3:05:f0:6b:81:a7:7f:b1:25:d1:bf:
dd:a7:80:da:fb:76:1c:a0:5e:6b:39:73:5d:14:e7:99:65:ea:
24:fe:44:88:ff:94:3e:60:58:74:20:76:81:57:7a:63:19:d6:
85:28:35:32
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oHulfsnGhrdZR6UVWl1VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2NGQ0ODhiOGM3MzFiOTFkNGE1YTJiOTBhNjY2Y2VlYmMw
ZTE4YzkwHhcNMjUwNjI4MTMwMDU5WhcNMjUwNjI5MTMwMDU5WjAzMTEwLwYDVQQD
Eyg5NWVlYWFmMTVmMTNhMjRkZmU3YTZiMDViNGNjMTU0YTZlNWE3OWRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqOSZ/ruP5QC1W0+AEkF9orsA6Yyn
upgPjoeqHsu2l6sPm8oCNceW7PX1/tJz1OyIkfUg3OqWjVSjzij+Lx33Ue3l5kLU
wNsKGTDIULT1Wxr2rYC1BBZt8IN2gzWGy9ISebdDOsExYkynYTOme0J/4mC+FI9S
DC178nWdYVpnR3aXYBUG3EsbT1rPW1zMVx9yNqNq3pbefh6gORtkRglrnbhu7k+i
hVqQzKivdrD90mS7dIsGYQCctQG2ugCuHvOjiBc8FgrWRUM77HpLWLfA3fFc3FxZ
57t0MZnIiS3y5Vhofq2Ir6Ctwxi2CbjMfWCs7pNhpS5DV88eQdldSnFpEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJXuqvFfE6JN/nprBbTMFUpuWnnaMB8GA1UdIwQY
MBaAFDZNSIuMcxuR1KWiuQpmbO68DhjJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmsxSWk0eHpHNUhVcGFLNUNtWnM3cndPR01rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS84N2YyYTAtZTA3Zi00ZDEwLWFhOWIt
MmQwNmViN2YyOTlmLzEvTmsxSWk0eHpHNUhVcGFLNUNtWnM3cndPR01rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS84N2YyYTAtZTA3Zi00ZDEwLWFhOWItMmQwNmViN2YyOTlm
LzEvTmsxSWk0eHpHNUhVcGFLNUNtWnM3cndPR01rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB7vc2aoL
BF7XgYIQeB0vRuI/6dk8eJVxJGQFg49KemPrNd/bqdOR5xTgivj3lJ2b85ZBE1lt
DCq8HZYNVlPsEkDDFiu6ZCDgTBKUPe7hlWvqj8xG/1b4zqTUdmDpBmQZS8ZErRkZ
MBSWVnGNES9Zotxyehw1mlAQ7xJa/dOlTO9Zt5bsuDepd6cVHfQ9Vj8FM8QjPJ1s
PE5TMAs31Lo+qCoR/XLN8/FHLTMt4O1vxmAjCB58V+g7egJVG26IEg5O0k8tTZ2Z
vkjepGSrH6MF8GuBp3+xJdG/3aeA2vt2HKBeazlzXRTnmWXqJP5EiP+UPmBYdCB2
gVd6YxnWhSg1Mg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:05:10 2025 by rpki-client