Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
File: nY85NIPUicQp_Biwk0LXbQr-QkQ.mft (raw, json)
Hash identifier: +MuMInJ/PQgCiV3PMLVr3A9bDGs/VNw/iZ/2QTdK54k=
Subject key identifier: 13:71:41:44:06:7D:92:F9:F2:85:E9:2F:F4:CA:75:F0:C3:0E:EA:6E
Authority key identifier: 9D:8F:39:34:83:D4:89:C4:29:FC:18:B0:93:42:D7:6D:0A:FE:42:44
Certificate issuer: /CN=9d8f393483d489c429fc18b09342d76d0afe4244
Certificate serial: 0196AB7A713EBDFA893B0D64968BEB306745
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
Manifest number: 1114
Signing time: Wed 07 May 2025 16:00:50 +0000
Manifest this update: Wed 07 May 2025 16:00:50 +0000
Manifest next update: Thu 08 May 2025 16:00:50 +0000
Files and hashes: 1: fCKBgjNaPgCYlEAaSC02t2TX-HQ.roa (hash: z50OwHqPJLgmTj1OD+z+QDtPxp5JJkD8lN3khIG3bwQ=)
2: nY85NIPUicQp_Biwk0LXbQr-QkQ.crl (hash: XZ4INPid7td8GcxpA3/d6yYd+KtYdX/6ZIsiMcW5Wqo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 16:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ab:7a:71:3e:bd:fa:89:3b:0d:64:96:8b:eb:30:67:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d8f393483d489c429fc18b09342d76d0afe4244
Validity
Not Before: May 7 16:00:50 2025 GMT
Not After : May 8 16:00:50 2025 GMT
Subject: CN=13714144067d92f9f285e92ff4ca75f0c30eea6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:03:d2:c7:2a:98:d6:6d:ce:ff:34:a0:41:d3:
dd:cd:92:e2:85:e7:95:23:79:9d:1c:99:0b:65:7a:
38:a8:97:94:e6:e0:af:b5:48:93:54:1c:00:ab:81:
55:8e:d2:0b:f4:ed:06:2f:a7:c2:6c:3a:0b:b4:e1:
f6:ef:4c:c3:3a:f0:a6:c2:8b:22:be:f9:0c:da:05:
03:f7:68:23:25:8e:b5:fc:af:2c:75:50:c1:4f:14:
27:c1:ac:af:d2:80:b4:e8:37:c0:af:e0:16:80:80:
6a:fe:f1:c5:5c:7a:1f:97:5b:2a:8c:23:6f:25:ad:
49:61:6b:f2:94:df:fa:f8:7d:e5:4b:a5:55:45:05:
b3:02:b1:ad:af:94:c3:77:c4:63:77:cc:6b:0e:b7:
1a:02:57:4c:a6:aa:5e:0e:44:10:40:8c:61:ca:42:
7b:b5:dd:3c:91:3c:65:d9:79:77:cd:00:aa:a6:e1:
68:15:5f:bb:0e:63:30:3c:63:25:f6:d7:44:e6:a6:
3d:10:dc:f3:7c:d0:d9:7f:f2:dc:d3:69:a1:30:7d:
5f:86:9f:3b:89:8f:65:dd:9f:1b:89:b8:94:4a:a9:
f4:2a:f4:4f:bd:05:74:5b:81:62:3b:77:cf:84:a6:
d8:7b:c7:b6:03:c8:ac:2e:1a:4b:7e:20:02:52:21:
a2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:71:41:44:06:7D:92:F9:F2:85:E9:2F:F4:CA:75:F0:C3:0E:EA:6E
X509v3 Authority Key Identifier:
keyid:9D:8F:39:34:83:D4:89:C4:29:FC:18:B0:93:42:D7:6D:0A:FE:42:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:4e:a3:46:9a:71:62:04:cb:3a:15:31:3d:2b:8f:82:d1:37:
a2:24:b6:05:b2:d4:b4:fd:e5:e8:41:19:b6:78:d8:b8:e6:55:
0b:30:9d:ff:fe:8b:8d:59:7a:18:3b:b3:a1:8c:eb:ac:18:76:
93:bd:e9:9a:87:b5:7a:5c:70:b5:03:ac:22:c7:97:28:1b:eb:
bf:d4:dc:33:dc:7a:ce:61:76:e3:8e:26:26:eb:1c:f8:38:4c:
56:0d:8f:49:ae:a4:ba:f4:4c:da:87:b2:be:02:2f:8d:a6:a5:
64:0b:10:f3:63:08:7e:e6:ac:4f:59:e3:52:c1:8e:7e:49:ca:
93:fc:f3:2b:18:70:6f:e4:55:b2:ca:3d:16:dc:ee:f0:b9:bd:
ab:09:11:54:bb:cf:6b:ce:05:5c:c1:0a:e3:06:47:45:e3:39:
dc:b4:ca:b3:7f:45:e6:4f:d3:a4:d1:9b:8b:fc:f2:07:ae:73:
da:5c:16:c5:ee:75:54:b5:df:fe:f0:ed:da:35:2d:57:d4:f8:
70:05:87:6f:d2:fb:4a:47:bf:b6:22:4b:1b:62:0a:a8:c9:09:
3d:2e:38:fd:da:23:ed:8a:81:60:a6:f9:6c:dc:94:bb:af:66:
53:70:bb:05:18:61:84:31:b6:b0:7a:5e:60:70:93:2d:61:e3:
95:a1:68:92
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZarenE+vfqJOw1klovrMGdFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkOGYzOTM0ODNkNDg5YzQyOWZjMThiMDkzNDJkNzZkMGFm
ZTQyNDQwHhcNMjUwNTA3MTYwMDUwWhcNMjUwNTA4MTYwMDUwWjAzMTEwLwYDVQQD
EygxMzcxNDE0NDA2N2Q5MmY5ZjI4NWU5MmZmNGNhNzVmMGMzMGVlYTZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyQPSxyqY1m3O/zSgQdPdzZLiheeV
I3mdHJkLZXo4qJeU5uCvtUiTVBwAq4FVjtIL9O0GL6fCbDoLtOH270zDOvCmwosi
vvkM2gUD92gjJY61/K8sdVDBTxQnwayv0oC06DfAr+AWgIBq/vHFXHofl1sqjCNv
Ja1JYWvylN/6+H3lS6VVRQWzArGtr5TDd8Rjd8xrDrcaAldMpqpeDkQQQIxhykJ7
td08kTxl2Xl3zQCqpuFoFV+7DmMwPGMl9tdE5qY9ENzzfNDZf/Lc02mhMH1fhp87
iY9l3Z8bibiUSqn0KvRPvQV0W4FiO3fPhKbYe8e2A8isLhpLfiACUiGiGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBNxQUQGfZL58oXpL/TKdfDDDupuMB8GA1UdIwQY
MBaAFJ2POTSD1InEKfwYsJNC120K/kJEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC85ZTgxNjYtMTYwZi00Y2UyLTkwMTct
MWUxNTFhYTFhZmRjLzEvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC85ZTgxNjYtMTYwZi00Y2UyLTkwMTctMWUxNTFhYTFhZmRj
LzEvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJE6jRppx
YgTLOhUxPSuPgtE3oiS2BbLUtP3l6EEZtnjYuOZVCzCd//6LjVl6GDuzoYzrrBh2
k73pmoe1elxwtQOsIseXKBvrv9TcM9x6zmF2444mJusc+DhMVg2PSa6kuvRM2oey
vgIvjaalZAsQ82MIfuasT1njUsGOfknKk/zzKxhwb+RVsso9Ftzu8Lm9qwkRVLvP
a84FXMEK4wZHReM53LTKs39F5k/TpNGbi/zyB65z2lwWxe51VLXf/vDt2jUtV9T4
cAWHb9L7Ske/tiJLG2IKqMkJPS44/doj7YqBYKb5bNyUu69mU3C7BRhhhDG2sHpe
YHCTLWHjlaFokg==
-----END CERTIFICATE-----
Generated at Thu May 8 02:27:47 2025 by rpki-client