Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
File: NHkVOIV45h2IaEmiHXC6B1FJwaE.mft (raw, json)
Hash identifier: LJyK1KZOUE2LD0dqyQMjDhwxMIxUQ+3dtoUolcuJWDE=
Subject key identifier: 27:F0:66:D4:D5:3B:3A:02:A6:50:7B:22:9F:9B:96:A0:67:15:D8:99
Authority key identifier: 34:79:15:38:85:78:E6:1D:88:68:49:A2:1D:70:BA:07:51:49:C1:A1
Certificate issuer: /CN=347915388578e61d886849a21d70ba075149c1a1
Certificate serial: 019896A5529564E097A18CD280067AD66FA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHkVOIV45h2IaEmiHXC6B1FJwaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
Manifest number: 0BB5
Signing time: Mon 11 Aug 2025 01:01:13 +0000
Manifest this update: Mon 11 Aug 2025 01:01:13 +0000
Manifest next update: Tue 12 Aug 2025 01:01:13 +0000
Files and hashes: 1: NHkVOIV45h2IaEmiHXC6B1FJwaE.crl (hash: jLnnNNB3dbr65PzxXPVNrutQisditvUKURfCZjlRF/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/NHkVOIV45h2IaEmiHXC6B1FJwaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a5:52:95:64:e0:97:a1:8c:d2:80:06:7a:d6:6f:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347915388578e61d886849a21d70ba075149c1a1
Validity
Not Before: Aug 11 01:01:13 2025 GMT
Not After : Aug 12 01:01:13 2025 GMT
Subject: CN=27f066d4d53b3a02a6507b229f9b96a06715d899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9b:02:59:61:63:80:e0:58:86:1e:42:b4:61:
52:d8:f3:64:35:e1:52:0c:8c:ef:46:1c:ad:bb:08:
0b:83:98:dc:8c:85:18:70:52:56:54:29:06:cb:0c:
cc:60:0a:c8:6a:6b:d8:ba:b4:85:da:a1:07:4e:ca:
57:de:b2:4a:d3:e9:39:91:9a:90:43:d8:90:28:b0:
3b:2a:4a:0e:d6:08:10:a9:54:19:7a:5a:cb:58:0c:
81:10:a8:f2:3d:05:10:c7:14:1a:18:35:81:4a:23:
bd:e2:6d:a8:e1:a4:48:95:19:a9:0c:60:3c:45:65:
41:75:1f:73:d4:b3:b9:1a:46:37:f7:dd:c4:5e:a8:
32:95:73:76:0a:d6:04:f3:77:d3:24:dd:2e:48:26:
24:8f:a0:81:77:6f:77:ef:60:f0:88:b5:2a:ff:9d:
17:18:a4:19:f0:12:fd:92:8d:39:c4:1c:7c:48:11:
f8:27:97:8f:46:b0:5d:72:09:d3:95:73:b5:db:0a:
51:b4:cc:83:3a:fe:f6:10:3c:1d:0b:9c:6b:1b:e6:
95:80:b0:5f:12:09:ba:8e:f7:ec:85:e9:57:b9:8b:
b2:1d:4a:78:d3:42:9b:16:cb:80:13:93:cf:cd:94:
c1:6d:b9:7d:ed:36:8d:44:3e:68:ce:21:76:6a:c8:
4a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:F0:66:D4:D5:3B:3A:02:A6:50:7B:22:9F:9B:96:A0:67:15:D8:99
X509v3 Authority Key Identifier:
keyid:34:79:15:38:85:78:E6:1D:88:68:49:A2:1D:70:BA:07:51:49:C1:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHkVOIV45h2IaEmiHXC6B1FJwaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:45:5f:0f:97:d2:93:71:e9:5c:c6:82:e5:46:63:4c:9d:9d:
d0:5e:05:f3:4a:10:45:f0:b2:21:a3:46:b6:e6:1a:48:33:37:
fc:80:e1:04:b7:a6:eb:6c:18:ef:03:15:07:e5:90:ca:69:c5:
fe:4b:a7:a0:2b:e0:94:53:45:4e:9d:71:00:1f:3b:dc:a6:f5:
06:40:8c:6e:2a:da:87:98:38:96:33:23:f5:ba:1e:31:38:c0:
cf:c5:19:45:dd:71:bf:ba:eb:a2:4e:cb:27:8d:28:c4:e7:73:
dc:ce:8f:cf:60:4f:a6:0a:32:3d:86:05:02:fb:c7:f1:04:ff:
83:8a:f4:11:3a:d6:63:fa:75:6b:3e:c9:24:16:c1:da:b1:27:
11:09:4d:ae:1f:c5:8b:e0:90:da:1f:df:a9:c5:dc:a4:cf:24:
5b:62:54:be:6d:e5:29:f5:cf:14:85:c7:dc:b4:6b:56:00:68:
d4:90:7e:38:80:b5:0b:a3:c3:71:8d:29:c6:7e:a6:54:9d:97:
1c:e1:a4:5e:19:3d:aa:1b:f9:13:cf:0b:97:18:68:e6:98:76:
61:8c:d5:14:6c:25:1c:48:cc:91:40:83:b3:27:23:ee:cd:f9:
7b:75:b7:81:82:9e:c5:06:8c:3a:99:79:2d:11:37:8b:bb:4e:
b7:7d:33:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiWpVKVZOCXoYzSgAZ61m+lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0NzkxNTM4ODU3OGU2MWQ4ODY4NDlhMjFkNzBiYTA3NTE0
OWMxYTEwHhcNMjUwODExMDEwMTEzWhcNMjUwODEyMDEwMTEzWjAzMTEwLwYDVQQD
EygyN2YwNjZkNGQ1M2IzYTAyYTY1MDdiMjI5ZjliOTZhMDY3MTVkODk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApJsCWWFjgOBYhh5CtGFS2PNkNeFS
DIzvRhytuwgLg5jcjIUYcFJWVCkGywzMYArIamvYurSF2qEHTspX3rJK0+k5kZqQ
Q9iQKLA7KkoO1ggQqVQZelrLWAyBEKjyPQUQxxQaGDWBSiO94m2o4aRIlRmpDGA8
RWVBdR9z1LO5GkY3993EXqgylXN2CtYE83fTJN0uSCYkj6CBd29372DwiLUq/50X
GKQZ8BL9ko05xBx8SBH4J5ePRrBdcgnTlXO12wpRtMyDOv72EDwdC5xrG+aVgLBf
Egm6jvfshelXuYuyHUp400KbFsuAE5PPzZTBbbl97TaNRD5oziF2ashK+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCfwZtTVOzoCplB7Ip+blqBnFdiZMB8GA1UdIwQY
MBaAFDR5FTiFeOYdiGhJoh1wugdRScGhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkhrVk9JVjQ1aDJJYUVtaUhYQzZCMUZKd2FFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny80ZWY2OWUtOTk3OC00MzZkLTkwYzkt
ODJkOTdjMDY5NTY2LzEvTkhrVk9JVjQ1aDJJYUVtaUhYQzZCMUZKd2FFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny80ZWY2OWUtOTk3OC00MzZkLTkwYzktODJkOTdjMDY5NTY2
LzEvTkhrVk9JVjQ1aDJJYUVtaUhYQzZCMUZKd2FFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY0VfD5fS
k3HpXMaC5UZjTJ2d0F4F80oQRfCyIaNGtuYaSDM3/IDhBLem62wY7wMVB+WQymnF
/kunoCvglFNFTp1xAB873Kb1BkCMbirah5g4ljMj9boeMTjAz8UZRd1xv7rrok7L
J40oxOdz3M6Pz2BPpgoyPYYFAvvH8QT/g4r0ETrWY/p1az7JJBbB2rEnEQlNrh/F
i+CQ2h/fqcXcpM8kW2JUvm3lKfXPFIXH3LRrVgBo1JB+OIC1C6PDcY0pxn6mVJ2X
HOGkXhk9qhv5E88Llxho5ph2YYzVFGwlHEjMkUCDsycj7s35e3W3gYKexQaMOpl5
LRE3i7tOt30z2g==
-----END CERTIFICATE-----
Generated at Mon Aug 11 04:09:09 2025 by rpki-client