Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.mft
File: NM-cB0OwPV4EX0bprPToAKnxio4.mft (raw, json)
Hash identifier: CS0iRJQJjhd93nUYvvHqPTMlJfO5fR4U7NXDqFH4ZTw=
Subject key identifier: 5C:FB:50:38:E2:BC:A3:5C:C3:17:E5:D5:1A:D3:9C:AD:1A:05:35:31
Authority key identifier: 34:CF:9C:07:43:B0:3D:5E:04:5F:46:E9:AC:F4:E8:00:A9:F1:8A:8E
Certificate issuer: /CN=34cf9c0743b03d5e045f46e9acf4e800a9f18a8e
Certificate serial: 0197B70EE1CEDA7A59CFABA308AFA9DE3749
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NM-cB0OwPV4EX0bprPToAKnxio4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.mft
Manifest number: 0AC1
Signing time: Sat 28 Jun 2025 15:01:35 +0000
Manifest this update: Sat 28 Jun 2025 15:01:35 +0000
Manifest next update: Sun 29 Jun 2025 15:01:35 +0000
Files and hashes: 1: NM-cB0OwPV4EX0bprPToAKnxio4.crl (hash: A8dUpVVzXDX0RVFyhU/Awrxr2FhOMkx9Md1+XJk3roM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NM-cB0OwPV4EX0bprPToAKnxio4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:e1:ce:da:7a:59:cf:ab:a3:08:af:a9:de:37:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34cf9c0743b03d5e045f46e9acf4e800a9f18a8e
Validity
Not Before: Jun 28 15:01:35 2025 GMT
Not After : Jun 29 15:01:35 2025 GMT
Subject: CN=5cfb5038e2bca35cc317e5d51ad39cad1a053531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6b:89:13:97:bf:65:f8:47:21:97:82:8d:f3:
2e:cd:3e:84:b1:89:e0:dc:d2:7b:0e:f1:92:4a:50:
1d:f2:6f:27:02:45:2b:4b:11:8d:af:24:f0:3d:73:
fa:b7:00:9d:d2:dc:7b:df:ea:a6:71:31:dc:12:1e:
ed:3e:de:93:19:95:0e:0d:9a:99:89:9c:03:85:2d:
c3:7b:e8:6e:d9:a2:81:4b:fb:43:f2:ea:0d:99:29:
ba:fc:7a:56:76:3d:15:c9:48:06:a9:f1:02:b3:9a:
6e:f5:34:e0:fe:6f:a2:95:57:f1:45:57:9c:79:89:
5c:40:10:c7:86:e9:92:d7:63:a6:d8:7e:ef:e2:c1:
48:69:84:22:77:46:db:36:31:be:07:a0:c2:fa:f4:
e3:35:c7:ea:75:9c:ad:17:2b:89:2c:e1:cc:eb:13:
16:c9:ac:6e:dd:61:8c:73:89:89:6d:bf:35:2f:1e:
7e:31:25:35:27:d4:83:c5:a3:58:df:cb:e7:85:82:
78:a5:3e:4d:e4:7d:48:3b:2e:05:7a:85:60:6f:78:
e9:d5:f2:87:b3:c9:a0:46:c9:f2:61:e4:24:af:86:
62:00:30:27:d7:79:f9:ea:2c:cd:f2:c8:38:a9:29:
7e:6f:29:62:5e:c3:ab:d1:e1:fb:18:ba:0e:e6:dc:
f3:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:FB:50:38:E2:BC:A3:5C:C3:17:E5:D5:1A:D3:9C:AD:1A:05:35:31
X509v3 Authority Key Identifier:
keyid:34:CF:9C:07:43:B0:3D:5E:04:5F:46:E9:AC:F4:E8:00:A9:F1:8A:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NM-cB0OwPV4EX0bprPToAKnxio4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:77:10:00:27:7c:df:dc:1e:68:33:7c:33:78:77:1e:fa:af:
47:87:93:01:5b:b3:79:19:b3:52:d2:89:dc:28:fa:58:9e:f1:
b4:0c:a7:0b:c4:7a:ad:65:ec:21:67:f3:2f:16:bd:a2:ba:6a:
29:7e:d2:16:bc:6b:60:4c:8c:87:40:5b:99:6f:21:ce:71:71:
9d:f0:f4:4c:2a:51:61:21:07:a7:a7:d7:51:a9:1b:e2:98:aa:
69:8f:41:41:32:38:27:29:ed:b0:18:94:84:75:e5:96:2e:a0:
ff:e1:2e:ce:db:9d:c7:c7:32:5c:d7:ab:68:f3:49:ed:0a:15:
9b:09:78:d9:26:ab:66:48:83:fd:f1:98:a0:7b:45:e2:b3:b5:
d3:e5:54:86:d4:73:fc:1a:de:e2:b9:aa:10:07:b3:85:4a:d4:
c8:cf:f6:3c:7a:76:4d:63:66:db:5d:e5:9a:ad:6b:6f:c1:53:
4b:35:49:28:78:84:d4:0f:7e:5a:f8:4b:8f:46:58:a4:01:46:
02:b4:1c:23:79:54:87:4d:dd:4c:0d:b1:0b:62:3d:bb:33:b8:
c7:66:8b:78:09:2c:c4:d9:c8:e7:63:ae:c9:51:49:a2:c1:eb:
03:d6:83:de:53:ac:d5:84:37:f2:20:09:68:f7:65:d0:ae:b4:
42:6d:d5:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DuHO2npZz6ujCK+p3jdJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0Y2Y5YzA3NDNiMDNkNWUwNDVmNDZlOWFjZjRlODAwYTlm
MThhOGUwHhcNMjUwNjI4MTUwMTM1WhcNMjUwNjI5MTUwMTM1WjAzMTEwLwYDVQQD
Eyg1Y2ZiNTAzOGUyYmNhMzVjYzMxN2U1ZDUxYWQzOWNhZDFhMDUzNTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAomuJE5e/ZfhHIZeCjfMuzT6EsYng
3NJ7DvGSSlAd8m8nAkUrSxGNryTwPXP6twCd0tx73+qmcTHcEh7tPt6TGZUODZqZ
iZwDhS3De+hu2aKBS/tD8uoNmSm6/HpWdj0VyUgGqfECs5pu9TTg/m+ilVfxRVec
eYlcQBDHhumS12Om2H7v4sFIaYQid0bbNjG+B6DC+vTjNcfqdZytFyuJLOHM6xMW
yaxu3WGMc4mJbb81Lx5+MSU1J9SDxaNY38vnhYJ4pT5N5H1IOy4FeoVgb3jp1fKH
s8mgRsnyYeQkr4ZiADAn13n56izN8sg4qSl+byliXsOr0eH7GLoO5tzzAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFz7UDjivKNcwxfl1RrTnK0aBTUxMB8GA1UdIwQY
MBaAFDTPnAdDsD1eBF9G6az06ACp8YqOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTk0tY0IwT3dQVjRFWDBicHJQVG9BS254aW80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi80NWU0ZTAtZGExOS00Y2I5LThjOGMt
ZWU4MDM1YmJiNGMxLzEvTk0tY0IwT3dQVjRFWDBicHJQVG9BS254aW80Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi80NWU0ZTAtZGExOS00Y2I5LThjOGMtZWU4MDM1YmJiNGMx
LzEvTk0tY0IwT3dQVjRFWDBicHJQVG9BS254aW80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfHcQACd8
39weaDN8M3h3HvqvR4eTAVuzeRmzUtKJ3Cj6WJ7xtAynC8R6rWXsIWfzLxa9orpq
KX7SFrxrYEyMh0BbmW8hznFxnfD0TCpRYSEHp6fXUakb4piqaY9BQTI4JyntsBiU
hHXlli6g/+Euztudx8cyXNeraPNJ7QoVmwl42SarZkiD/fGYoHtF4rO10+VUhtRz
/Bre4rmqEAezhUrUyM/2PHp2TWNm213lmq1rb8FTSzVJKHiE1A9+WvhLj0ZYpAFG
ArQcI3lUh03dTA2xC2I9uzO4x2aLeAksxNnI52OuyVFJosHrA9aD3lOs1YQ38iAJ
aPdl0K60Qm3VBg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:08:33 2025 by rpki-client