Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
File: nSh1M866BkWhSM8QyMJ-qachoJ0.mft (raw, json)
Hash identifier: Qa4MBZbS0Hof49zqBrshCLYxNwSut1Mkf0UkJEijyY4=
Subject key identifier: FD:A1:71:AD:FD:D1:61:DC:4B:C1:D9:F0:35:CD:E3:18:C2:86:13:F7
Authority key identifier: 9D:28:75:33:CE:BA:06:45:A1:48:CF:10:C8:C2:7E:A9:A7:21:A0:9D
Certificate issuer: /CN=9d287533ceba0645a148cf10c8c27ea9a721a09d
Certificate serial: 0197B70F4ADABB43CB23BFF4D44524BBC13F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 15:02:02 +0000
Manifest this update: Sat 28 Jun 2025 15:02:02 +0000
Manifest next update: Sun 29 Jun 2025 15:02:02 +0000
Files and hashes: 1: MEQtA-51-LVqFHEVZDRMjfjnudY.roa (hash: mP68hXGlyjMnNhpMDZaBlI/pFMVdjYCWoJ7Gpxv9o84=)
2: Re1CMq4a8GRTlVAhciRLdjmNzME.roa (hash: e1LlxuTfucQ1ynw/jUhK7unO/vlcuYPu64TBZ3UmBVk=)
3: nSh1M866BkWhSM8QyMJ-qachoJ0.crl (hash: 2zytZ9pB2hiNU+oPBsZwZ7SaPoCC8Py7fvgkS7KwAKA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:4a:da:bb:43:cb:23:bf:f4:d4:45:24:bb:c1:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d287533ceba0645a148cf10c8c27ea9a721a09d
Validity
Not Before: Jun 28 15:02:02 2025 GMT
Not After : Jun 29 15:02:02 2025 GMT
Subject: CN=fda171adfdd161dc4bc1d9f035cde318c28613f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:09:a8:37:71:09:e2:14:00:a2:34:75:7f:89:
9e:84:55:5a:70:64:80:26:fd:c6:51:d3:8e:de:3d:
ef:b7:70:62:05:c0:f4:18:50:b2:55:0d:66:04:ab:
66:00:b8:f2:b6:a6:b0:58:a7:7d:42:a9:38:b6:70:
59:c4:c0:6c:45:7b:01:3d:cc:e3:50:da:3f:ad:bc:
97:36:fc:34:69:8d:16:1d:c2:00:75:e2:15:3e:18:
dc:20:e9:79:91:a5:e8:16:57:8e:ff:34:a6:28:9f:
45:00:b4:7e:80:bb:7a:e1:4e:db:8d:df:14:de:bb:
4a:05:4e:18:ce:b7:7b:fc:47:53:bc:78:6a:b9:65:
bc:dc:5b:77:be:f6:d7:6c:a9:99:59:51:8d:61:18:
b9:c1:42:fb:23:ab:00:ba:ee:a6:63:fe:06:1c:9c:
c8:c8:16:be:f2:fb:2b:cb:95:86:69:db:17:a0:d1:
22:e8:f6:26:ac:a1:c7:98:84:6d:0a:f8:b4:bb:1b:
44:9d:d0:61:3e:75:6e:12:e5:00:c6:b8:27:26:d6:
9b:c0:8a:d2:aa:0c:ce:eb:27:87:b7:9e:14:35:50:
69:3f:43:bc:e8:45:78:82:ee:bb:6d:b1:2f:10:51:
b0:48:fd:33:0e:a7:33:ba:02:a3:13:df:04:da:3f:
e4:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:A1:71:AD:FD:D1:61:DC:4B:C1:D9:F0:35:CD:E3:18:C2:86:13:F7
X509v3 Authority Key Identifier:
keyid:9D:28:75:33:CE:BA:06:45:A1:48:CF:10:C8:C2:7E:A9:A7:21:A0:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:4c:6f:48:49:f6:74:7a:71:a4:a1:7c:d6:dc:a2:c8:44:32:
4e:b8:db:50:c7:41:40:21:74:76:aa:28:cb:b9:2b:30:03:10:
cd:d8:6b:b2:52:1f:6e:db:7a:b2:f1:3c:c4:25:90:31:18:55:
c4:23:2e:1a:a2:e1:8a:63:8e:20:be:af:58:ba:3b:3b:c3:d2:
2e:8e:e0:12:4d:e1:bf:f8:28:6e:2a:f3:99:3c:4f:20:ce:a6:
8c:ac:36:9c:9e:d6:09:5a:96:ad:c6:50:b0:cd:4d:0e:0f:0d:
53:8f:45:a9:43:d6:be:9e:7c:1c:6f:4f:96:94:6e:13:7b:69:
c7:0d:c6:56:35:b8:18:c4:d2:e9:b4:70:98:3f:0b:63:05:61:
22:55:10:59:8b:05:49:39:ac:17:c0:d3:10:d3:dc:84:65:08:
b6:94:a4:c4:d5:24:0e:5f:1a:63:af:40:c2:bb:24:0f:43:68:
30:84:91:35:26:58:c5:f0:08:fc:24:ec:e8:67:27:18:c8:40:
38:c3:51:59:48:84:98:75:dd:e4:e8:5d:a8:05:f3:37:ef:df:
ea:ea:6b:3c:31:ab:ef:e6:b0:cf:20:80:2e:6a:a5:0d:12:66:
dd:3b:a4:62:70:d6:5a:77:ab:52:4b:8f:4a:2a:75:23:33:65:
d6:7d:d6:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3D0rau0PLI7/01EUku8E/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMjg3NTMzY2ViYTA2NDVhMTQ4Y2YxMGM4YzI3ZWE5YTcy
MWEwOWQwHhcNMjUwNjI4MTUwMjAyWhcNMjUwNjI5MTUwMjAyWjAzMTEwLwYDVQQD
EyhmZGExNzFhZGZkZDE2MWRjNGJjMWQ5ZjAzNWNkZTMxOGMyODYxM2Y3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1gmoN3EJ4hQAojR1f4mehFVacGSA
Jv3GUdOO3j3vt3BiBcD0GFCyVQ1mBKtmALjytqawWKd9Qqk4tnBZxMBsRXsBPczj
UNo/rbyXNvw0aY0WHcIAdeIVPhjcIOl5kaXoFleO/zSmKJ9FALR+gLt64U7bjd8U
3rtKBU4Yzrd7/EdTvHhquWW83Ft3vvbXbKmZWVGNYRi5wUL7I6sAuu6mY/4GHJzI
yBa+8vsry5WGadsXoNEi6PYmrKHHmIRtCvi0uxtEndBhPnVuEuUAxrgnJtabwIrS
qgzO6yeHt54UNVBpP0O86EV4gu67bbEvEFGwSP0zDqczugKjE98E2j/kCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP2hca390WHcS8HZ8DXN4xjChhP3MB8GA1UdIwQY
MBaAFJ0odTPOugZFoUjPEMjCfqmnIaCdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNoMU04NjZCa1doU004UXlNSi1xYWNob0owLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC84YTY2OTItZjY0Ni00OWYwLTg4MjEt
MDIxMmIzZWFlOTdjLzEvblNoMU04NjZCa1doU004UXlNSi1xYWNob0owLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC84YTY2OTItZjY0Ni00OWYwLTg4MjEtMDIxMmIzZWFlOTdj
LzEvblNoMU04NjZCa1doU004UXlNSi1xYWNob0owLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANkxvSEn2
dHpxpKF81tyiyEQyTrjbUMdBQCF0dqooy7krMAMQzdhrslIfbtt6svE8xCWQMRhV
xCMuGqLhimOOIL6vWLo7O8PSLo7gEk3hv/gobirzmTxPIM6mjKw2nJ7WCVqWrcZQ
sM1NDg8NU49FqUPWvp58HG9PlpRuE3tpxw3GVjW4GMTS6bRwmD8LYwVhIlUQWYsF
STmsF8DTENPchGUItpSkxNUkDl8aY69AwrskD0NoMISRNSZYxfAI/CTs6GcnGMhA
OMNRWUiEmHXd5OhdqAXzN+/f6uprPDGr7+awzyCALmqlDRJm3TukYnDWWnerUkuP
Sip1IzNl1n3WEA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:46:38 2025 by rpki-client