Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
File: NZ8eO4BVHpihb8K7y33YfJoO_iU.mft (raw, json)
Hash identifier: iYLwm4ncPxOiM8+AZQ0Ba72COImMmXE0gZgjSu+k+0Y=
Subject key identifier: 6D:23:6E:D2:97:2E:9E:2F:5D:C0:A5:EB:BC:57:85:76:6C:44:6D:B5
Authority key identifier: 35:9F:1E:3B:80:55:1E:98:A1:6F:C2:BB:CB:7D:D8:7C:9A:0E:FE:25
Certificate issuer: /CN=359f1e3b80551e98a16fc2bbcb7dd87c9a0efe25
Certificate serial: 0196CD98BBF1A7B5050DFB31F55D1F0BD59B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8eO4BVHpihb8K7y33YfJoO_iU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
Manifest number: 0C68
Signing time: Wed 14 May 2025 07:01:00 +0000
Manifest this update: Wed 14 May 2025 07:01:00 +0000
Manifest next update: Thu 15 May 2025 07:01:00 +0000
Files and hashes: 1: NZ8eO4BVHpihb8K7y33YfJoO_iU.crl (hash: YNQbyxSAwSY2l/fCpBFTefy+3ZW3FEUDzhjCxPCm3H8=)
2: WQDK9xlCqpMVg3-ZBWFZfqNRgDU.roa (hash: 5EEZG5yrAU7W8n0dqk+GpepBnaLmDeUxI+tSTrknSrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZ8eO4BVHpihb8K7y33YfJoO_iU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 07:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cd:98:bb:f1:a7:b5:05:0d:fb:31:f5:5d:1f:0b:d5:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f1e3b80551e98a16fc2bbcb7dd87c9a0efe25
Validity
Not Before: May 14 07:01:00 2025 GMT
Not After : May 15 07:01:00 2025 GMT
Subject: CN=6d236ed2972e9e2f5dc0a5ebbc5785766c446db5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d6:87:ad:08:f3:a0:9b:1e:b6:f7:7d:bf:72:
2e:0a:a8:1f:06:07:9e:4b:ad:0d:11:38:b2:e5:f9:
09:ee:7e:fb:10:99:0e:5f:cd:d7:dd:dd:f7:9f:1b:
90:48:75:99:d2:9d:2e:e5:48:77:12:29:a1:cd:9f:
8a:ad:f1:8b:aa:02:92:25:9a:32:88:44:a0:34:26:
4e:07:7b:cb:ae:1c:19:41:a8:63:af:47:93:0a:92:
3b:fd:5f:61:43:46:5d:85:c8:ea:e2:aa:1a:f9:3b:
6d:a8:5c:66:81:90:81:5f:3b:cb:02:9f:2f:90:fb:
45:17:bc:9e:8b:88:a2:6b:a3:b1:ee:f5:6a:a2:79:
ec:6d:f5:34:c6:aa:e2:d9:65:0d:2b:df:2b:04:df:
0c:d5:86:e1:da:9b:e1:b5:9f:db:9b:45:91:28:3c:
ea:99:d3:f6:aa:c9:d9:2f:f2:be:17:a1:0d:16:2d:
9a:9c:ac:2d:b3:fb:75:fa:c5:99:ce:df:ea:eb:b8:
aa:01:4f:7e:62:d2:e0:ef:99:51:f1:7b:b9:90:9b:
43:25:c0:22:68:31:11:49:05:90:5a:1a:24:81:9c:
19:a5:cd:35:f0:90:11:04:b8:8b:d2:f8:8e:1c:51:
3a:d1:a2:6d:74:96:4d:61:18:32:ed:af:48:e5:8e:
b3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:23:6E:D2:97:2E:9E:2F:5D:C0:A5:EB:BC:57:85:76:6C:44:6D:B5
X509v3 Authority Key Identifier:
keyid:35:9F:1E:3B:80:55:1E:98:A1:6F:C2:BB:CB:7D:D8:7C:9A:0E:FE:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8eO4BVHpihb8K7y33YfJoO_iU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:66:38:b1:93:89:0e:a2:6a:cb:dd:f5:da:ff:ad:68:76:d0:
a9:26:55:7d:28:fb:4a:e8:82:77:b0:ce:fd:3f:2c:de:63:f9:
f8:01:cd:5d:52:ba:5b:36:bc:ab:70:8f:3b:83:87:f7:96:ef:
a3:9c:90:bd:b6:68:c6:36:19:7c:11:d1:9f:92:1f:2a:72:65:
d7:f1:c6:fc:7a:7f:86:ff:f0:04:9e:d3:5a:0c:c7:87:b6:94:
12:5b:33:e6:44:45:9e:aa:97:5a:02:d2:37:84:79:71:bb:a0:
62:12:a2:6b:de:85:86:90:b2:d9:db:d9:6c:84:50:b7:9e:47:
fe:89:5d:e0:56:78:9b:73:25:d5:1e:57:6b:cf:0f:94:ab:ea:
e2:7f:1a:7a:05:d4:bf:52:bc:82:d3:06:8b:24:20:7d:a9:fb:
55:bf:1f:a7:58:b8:3f:50:63:53:62:0a:1a:85:43:74:8d:67:
c6:5f:28:d6:5a:62:49:82:b3:03:92:dc:ef:d1:57:05:5b:fd:
70:23:3f:d4:89:2e:58:07:96:41:24:89:05:01:c3:7c:3a:b2:
e6:e0:9a:41:51:50:81:9f:5b:62:ea:b4:b0:dc:ad:70:32:c7:
5c:c0:95:74:1e:44:20:d8:78:8b:7d:61:90:32:fa:86:60:c4:
64:e7:7b:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbNmLvxp7UFDfsx9V0fC9WbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1OWYxZTNiODA1NTFlOThhMTZmYzJiYmNiN2RkODdjOWEw
ZWZlMjUwHhcNMjUwNTE0MDcwMTAwWhcNMjUwNTE1MDcwMTAwWjAzMTEwLwYDVQQD
Eyg2ZDIzNmVkMjk3MmU5ZTJmNWRjMGE1ZWJiYzU3ODU3NjZjNDQ2ZGI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwNaHrQjzoJsetvd9v3IuCqgfBgee
S60NETiy5fkJ7n77EJkOX83X3d33nxuQSHWZ0p0u5Uh3EimhzZ+KrfGLqgKSJZoy
iESgNCZOB3vLrhwZQahjr0eTCpI7/V9hQ0Zdhcjq4qoa+TttqFxmgZCBXzvLAp8v
kPtFF7yei4iia6Ox7vVqonnsbfU0xqri2WUNK98rBN8M1Ybh2pvhtZ/bm0WRKDzq
mdP2qsnZL/K+F6ENFi2anKwts/t1+sWZzt/q67iqAU9+YtLg75lR8Xu5kJtDJcAi
aDERSQWQWhokgZwZpc018JARBLiL0viOHFE60aJtdJZNYRgy7a9I5Y6ztwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG0jbtKXLp4vXcCl67xXhXZsRG21MB8GA1UdIwQY
MBaAFDWfHjuAVR6YoW/Cu8t92HyaDv4lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlo4ZU80QlZIcGloYjhLN3kzM1lmSm9PX2lVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS84OWZkNDMtNTRmMC00YTE1LWIyYjEt
M2YzYTAyNzQ4YzJhLzEvTlo4ZU80QlZIcGloYjhLN3kzM1lmSm9PX2lVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS84OWZkNDMtNTRmMC00YTE1LWIyYjEtM2YzYTAyNzQ4YzJh
LzEvTlo4ZU80QlZIcGloYjhLN3kzM1lmSm9PX2lVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmGY4sZOJ
DqJqy9312v+taHbQqSZVfSj7SuiCd7DO/T8s3mP5+AHNXVK6Wza8q3CPO4OH95bv
o5yQvbZoxjYZfBHRn5IfKnJl1/HG/Hp/hv/wBJ7TWgzHh7aUElsz5kRFnqqXWgLS
N4R5cbugYhKia96FhpCy2dvZbIRQt55H/old4FZ4m3Ml1R5Xa88PlKvq4n8aegXU
v1K8gtMGiyQgfan7Vb8fp1i4P1BjU2IKGoVDdI1nxl8o1lpiSYKzA5Lc79FXBVv9
cCM/1IkuWAeWQSSJBQHDfDqy5uCaQVFQgZ9bYuq0sNytcDLHXMCVdB5EINh4i31h
kDL6hmDEZOd72A==
-----END CERTIFICATE-----
Generated at Wed May 14 17:15:06 2025 by rpki-client