Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
File: nY85NIPUicQp_Biwk0LXbQr-QkQ.mft (raw, json)
Hash identifier: bcGdLSbJoEGYg3aUxfAAF6uOPJCtpLWIClnWnB9iP30=
Subject key identifier: 45:D7:E2:0E:E0:96:A5:96:B2:2E:54:F0:2E:BE:99:AF:2E:92:9E:D5
Authority key identifier: 9D:8F:39:34:83:D4:89:C4:29:FC:18:B0:93:42:D7:6D:0A:FE:42:44
Certificate issuer: /CN=9d8f393483d489c429fc18b09342d76d0afe4244
Certificate serial: 0197B7EA4886599F32E7DB068D029D62A59E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
Manifest number: 119F
Signing time: Sat 28 Jun 2025 19:01:13 +0000
Manifest this update: Sat 28 Jun 2025 19:01:13 +0000
Manifest next update: Sun 29 Jun 2025 19:01:13 +0000
Files and hashes: 1: fCKBgjNaPgCYlEAaSC02t2TX-HQ.roa (hash: z50OwHqPJLgmTj1OD+z+QDtPxp5JJkD8lN3khIG3bwQ=)
2: nY85NIPUicQp_Biwk0LXbQr-QkQ.crl (hash: 0ozWymv6FlL4dKx6dyRAU3xhiRKUbi6X6sQaD2sCnts=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:48:86:59:9f:32:e7:db:06:8d:02:9d:62:a5:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d8f393483d489c429fc18b09342d76d0afe4244
Validity
Not Before: Jun 28 19:01:13 2025 GMT
Not After : Jun 29 19:01:13 2025 GMT
Subject: CN=45d7e20ee096a596b22e54f02ebe99af2e929ed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:33:25:c4:8f:3b:b6:3a:5b:00:28:e6:91:ea:
3a:7e:eb:80:ef:aa:6f:fe:a1:b7:c0:44:f3:df:57:
90:a9:c9:36:6c:3c:42:cf:cc:87:08:86:dc:70:e0:
8b:a6:20:84:f9:c6:0e:9d:9d:fe:83:13:b6:24:6c:
11:45:5f:c9:90:b2:0a:33:b4:1a:11:f8:43:6c:76:
f9:ab:01:82:2f:76:97:d4:3e:14:44:a6:d6:1e:74:
e8:29:80:0f:2d:2a:6a:f2:79:d2:ba:b3:95:16:45:
e4:b7:4c:03:d9:0b:45:a2:52:2c:a1:44:67:04:cc:
ad:50:f6:48:eb:98:36:57:ef:47:d0:66:f9:a6:04:
c2:6c:d8:d3:c7:87:4b:64:ec:39:60:53:32:5e:3c:
31:41:33:f2:17:33:be:05:30:49:64:3b:a7:f9:98:
22:bf:13:03:64:e0:0f:27:ec:88:c0:29:5a:ea:23:
f9:10:46:79:73:9a:9d:b8:45:18:2f:97:a8:7f:5c:
c5:a7:c2:af:7f:3d:f4:c2:aa:c6:45:b7:9e:27:a2:
c7:fe:7c:3c:80:90:b2:82:21:17:09:88:d1:b2:f7:
0d:09:04:40:5b:49:c3:10:fb:6f:4f:b6:1f:21:91:
b5:cb:51:e5:d9:53:32:55:66:5c:48:ba:01:6c:46:
38:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:D7:E2:0E:E0:96:A5:96:B2:2E:54:F0:2E:BE:99:AF:2E:92:9E:D5
X509v3 Authority Key Identifier:
keyid:9D:8F:39:34:83:D4:89:C4:29:FC:18:B0:93:42:D7:6D:0A:FE:42:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:54:14:61:fe:2f:45:47:2d:60:f8:6f:94:b5:66:b3:d0:54:
74:f4:ca:ed:55:36:d4:d5:ec:88:93:6f:7f:eb:d7:1b:db:22:
2c:e7:2d:ab:ee:4a:cb:c2:3b:a4:eb:46:09:0d:df:5a:ec:ac:
fb:a5:82:3e:46:38:33:b2:01:dd:6f:2c:f1:f2:b9:f6:06:dc:
87:a7:9f:44:27:5b:02:36:9f:af:bc:7e:20:97:7d:eb:8c:fa:
f7:46:50:2b:a4:d1:49:31:53:6c:2c:5a:75:38:ed:26:c6:7d:
2d:44:48:1e:15:ad:b6:e3:43:02:c3:df:4f:00:63:ae:4d:ee:
df:d7:19:a8:d1:b1:5a:89:3d:34:0c:cb:12:73:30:65:2a:6d:
07:77:4a:10:5f:03:87:86:37:b7:3b:32:ac:84:1b:0e:31:0c:
b9:38:45:19:06:65:50:38:c1:16:f2:b2:b6:09:23:b8:1b:8c:
54:b9:97:de:19:3d:04:b2:82:e3:f0:ce:c6:54:e6:d3:14:3a:
09:c0:45:29:89:52:ce:cc:c6:d8:eb:2f:93:cb:2c:d4:4e:01:
69:c3:db:75:e3:66:5e:53:83:14:d0:13:6a:ac:9b:f2:1d:18:
b3:18:37:e5:35:4d:0f:f7:35:38:07:04:75:9c:2c:af:81:54:
b4:28:10:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36kiGWZ8y59sGjQKdYqWeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkOGYzOTM0ODNkNDg5YzQyOWZjMThiMDkzNDJkNzZkMGFm
ZTQyNDQwHhcNMjUwNjI4MTkwMTEzWhcNMjUwNjI5MTkwMTEzWjAzMTEwLwYDVQQD
Eyg0NWQ3ZTIwZWUwOTZhNTk2YjIyZTU0ZjAyZWJlOTlhZjJlOTI5ZWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmzMlxI87tjpbACjmkeo6fuuA76pv
/qG3wETz31eQqck2bDxCz8yHCIbccOCLpiCE+cYOnZ3+gxO2JGwRRV/JkLIKM7Qa
EfhDbHb5qwGCL3aX1D4URKbWHnToKYAPLSpq8nnSurOVFkXkt0wD2QtFolIsoURn
BMytUPZI65g2V+9H0Gb5pgTCbNjTx4dLZOw5YFMyXjwxQTPyFzO+BTBJZDun+Zgi
vxMDZOAPJ+yIwCla6iP5EEZ5c5qduEUYL5eof1zFp8Kvfz30wqrGRbeeJ6LH/nw8
gJCygiEXCYjRsvcNCQRAW0nDEPtvT7YfIZG1y1Hl2VMyVWZcSLoBbEY4DwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEXX4g7glqWWsi5U8C6+ma8ukp7VMB8GA1UdIwQY
MBaAFJ2POTSD1InEKfwYsJNC120K/kJEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC85ZTgxNjYtMTYwZi00Y2UyLTkwMTct
MWUxNTFhYTFhZmRjLzEvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC85ZTgxNjYtMTYwZi00Y2UyLTkwMTctMWUxNTFhYTFhZmRj
LzEvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXFQUYf4v
RUctYPhvlLVms9BUdPTK7VU21NXsiJNvf+vXG9siLOctq+5Ky8I7pOtGCQ3fWuys
+6WCPkY4M7IB3W8s8fK59gbch6efRCdbAjafr7x+IJd964z690ZQK6TRSTFTbCxa
dTjtJsZ9LURIHhWttuNDAsPfTwBjrk3u39cZqNGxWok9NAzLEnMwZSptB3dKEF8D
h4Y3tzsyrIQbDjEMuThFGQZlUDjBFvKytgkjuBuMVLmX3hk9BLKC4/DOxlTm0xQ6
CcBFKYlSzszG2Osvk8ss1E4BacPbdeNmXlODFNATaqyb8h0Ysxg35TVND/c1OAcE
dZwsr4FUtCgQYA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:23:21 2025 by rpki-client