Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
File: nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft (raw, json)
Hash identifier: GlTyaSt7IRBMJIICCfbcQvzvbqfiHXa5N95HFpPYeAU=
Subject key identifier: 06:AA:0D:D4:F8:E6:C0:66:4E:F6:F1:1A:78:66:8F:D3:C6:F6:2A:5A
Authority key identifier: 9D:43:03:A0:A9:99:D8:11:8B:BC:7E:96:AD:38:EF:BB:14:49:6E:A2
Certificate issuer: /CN=9d4303a0a999d8118bbc7e96ad38efbb14496ea2
Certificate serial: 01976BBD9307A33AF8959E3CC7E36CD2E611
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
Manifest number: 0722
Signing time: Sat 14 Jun 2025 00:01:15 +0000
Manifest this update: Sat 14 Jun 2025 00:01:15 +0000
Manifest next update: Sun 15 Jun 2025 00:01:15 +0000
Files and hashes: 1: bre9O2wrDggeCO-gClQtVcXHgMs.roa (hash: TZRQyZuvSyRj0lGzf2b/FG9R/6ZAoSht1L/fXzqCZUg=)
2: nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl (hash: h1pYN7PcSPasK8Qa/20Sc2fX+GsURXLnHiO3zURa4wM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:93:07:a3:3a:f8:95:9e:3c:c7:e3:6c:d2:e6:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d4303a0a999d8118bbc7e96ad38efbb14496ea2
Validity
Not Before: Jun 14 00:01:15 2025 GMT
Not After : Jun 15 00:01:15 2025 GMT
Subject: CN=06aa0dd4f8e6c0664ef6f11a78668fd3c6f62a5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:37:9f:ce:9c:8e:63:b6:bc:05:af:e8:56:07:
24:8f:41:df:9e:64:5e:a1:0b:a9:eb:0d:f5:0b:db:
0c:c7:9c:e8:e6:df:82:f9:c4:13:ef:40:00:7e:3b:
85:09:1c:51:22:1a:9c:c4:7a:0b:4b:fa:90:15:6b:
34:bb:13:28:a5:9f:7b:c7:d5:17:c6:5b:c4:a0:e9:
9e:23:75:e9:d1:d8:84:fd:9c:8a:3e:19:aa:27:06:
c7:93:59:b9:a5:e5:39:fe:76:08:58:1c:4a:f5:a9:
d6:44:cc:5f:e6:5a:1d:ee:f2:91:5e:17:d7:ba:0c:
b8:44:b2:bc:f3:0d:d4:9e:d7:f7:7a:bb:46:fe:72:
4a:a5:d6:e6:e6:f1:34:c5:f7:b9:22:a8:37:4a:ed:
0d:b4:0d:56:9f:45:5d:cb:e7:9d:e7:14:ad:83:34:
b2:76:06:e6:33:c5:ae:de:54:45:06:fd:49:57:0b:
11:f5:9c:41:7f:f0:0a:22:89:33:45:b8:ab:52:4a:
73:cc:11:37:14:57:68:c8:51:37:e1:1a:68:36:7c:
98:1d:19:04:3e:8b:90:4e:97:20:9b:ce:f9:96:93:
5a:7f:39:e5:c9:37:b2:1d:57:59:49:03:0b:34:22:
58:46:c2:9f:be:03:d7:92:8b:19:14:ad:b2:e6:d1:
9a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:AA:0D:D4:F8:E6:C0:66:4E:F6:F1:1A:78:66:8F:D3:C6:F6:2A:5A
X509v3 Authority Key Identifier:
keyid:9D:43:03:A0:A9:99:D8:11:8B:BC:7E:96:AD:38:EF:BB:14:49:6E:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:38:b5:ef:99:13:bc:a0:6c:d0:07:40:70:d4:04:17:23:6d:
57:93:62:bd:e4:8f:3c:b4:cc:fc:00:2f:d0:ad:3a:b3:2b:10:
06:8c:83:05:6f:70:5d:a6:e7:45:30:a5:91:bb:e3:89:89:ac:
1e:9c:c7:f9:05:7a:b8:a2:47:0a:86:b9:ef:45:85:ff:d7:55:
18:a0:4b:74:00:39:42:cd:ce:96:1d:b5:43:ca:41:19:ed:cd:
27:5d:47:7e:af:7d:f8:75:72:b4:ef:50:1d:cb:80:7e:20:41:
db:f8:b0:9a:5b:29:c0:62:fb:2a:da:6b:cc:d6:da:3f:6a:42:
92:95:0c:eb:dc:32:7b:69:0d:48:7c:7f:78:c8:99:da:7d:13:
ef:93:80:60:8b:57:c4:11:78:e3:a0:42:44:86:07:cc:15:5b:
a3:0b:c0:99:e5:5a:3e:a0:c1:e2:a2:65:8a:be:80:84:94:f1:
60:67:c8:41:a9:a6:38:11:b0:82:d4:4f:c8:29:58:d0:8f:a5:
61:0c:0b:05:8c:16:e2:aa:f4:6a:d1:f4:d9:ae:4d:70:ee:2f:
97:93:7c:bf:b8:d7:12:13:b7:79:2f:21:c4:1b:7f:08:07:73:
60:51:9c:b7:3b:1a:ff:f2:04:1a:3a:ff:aa:fd:d5:a5:0c:46:
07:e8:94:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdrvZMHozr4lZ48x+Ns0uYRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkNDMwM2EwYTk5OWQ4MTE4YmJjN2U5NmFkMzhlZmJiMTQ0
OTZlYTIwHhcNMjUwNjE0MDAwMTE1WhcNMjUwNjE1MDAwMTE1WjAzMTEwLwYDVQQD
EygwNmFhMGRkNGY4ZTZjMDY2NGVmNmYxMWE3ODY2OGZkM2M2ZjYyYTVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxzefzpyOY7a8Ba/oVgckj0HfnmRe
oQup6w31C9sMx5zo5t+C+cQT70AAfjuFCRxRIhqcxHoLS/qQFWs0uxMopZ97x9UX
xlvEoOmeI3Xp0diE/ZyKPhmqJwbHk1m5peU5/nYIWBxK9anWRMxf5lod7vKRXhfX
ugy4RLK88w3Untf3ertG/nJKpdbm5vE0xfe5Iqg3Su0NtA1Wn0Vdy+ed5xStgzSy
dgbmM8Wu3lRFBv1JVwsR9ZxBf/AKIokzRbirUkpzzBE3FFdoyFE34RpoNnyYHRkE
PouQTpcgm875lpNafznlyTeyHVdZSQMLNCJYRsKfvgPXkosZFK2y5tGa6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAaqDdT45sBmTvbxGnhmj9PG9ipaMB8GA1UdIwQY
MBaAFJ1DA6CpmdgRi7x+lq0477sUSW6iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblVNRG9LbVoyQkdMdkg2V3JUanZ1eFJKYnFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9iZDllMDItYzQyNC00ZTE0LWFhYjct
Mzk0NjFhYWE1YmU3LzEvblVNRG9LbVoyQkdMdkg2V3JUanZ1eFJKYnFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi9iZDllMDItYzQyNC00ZTE0LWFhYjctMzk0NjFhYWE1YmU3
LzEvblVNRG9LbVoyQkdMdkg2V3JUanZ1eFJKYnFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALDi175kT
vKBs0AdAcNQEFyNtV5NiveSPPLTM/AAv0K06sysQBoyDBW9wXabnRTClkbvjiYms
HpzH+QV6uKJHCoa570WF/9dVGKBLdAA5Qs3Olh21Q8pBGe3NJ11Hfq99+HVytO9Q
HcuAfiBB2/iwmlspwGL7KtprzNbaP2pCkpUM69wye2kNSHx/eMiZ2n0T75OAYItX
xBF446BCRIYHzBVbowvAmeVaPqDB4qJlir6AhJTxYGfIQammOBGwgtRPyClY0I+l
YQwLBYwW4qr0atH02a5NcO4vl5N8v7jXEhO3eS8hxBt/CAdzYFGctzsa//IEGjr/
qv3VpQxGB+iUdg==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:12:56 2025 by rpki-client