Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/nQcEH-VVkeTiI2pA9DkA7ybvBF4.mft
File: nQcEH-VVkeTiI2pA9DkA7ybvBF4.mft (raw, json)
Hash identifier: cZrAjtaTGQ+dI+R1CDQ4iIbs0IDZm8oC32Vh7Qu6X2o=
Subject key identifier: 5B:EC:2F:D8:DE:AC:71:AF:93:D1:5C:39:1D:46:02:08:04:C7:DB:4F
Authority key identifier: 9D:07:04:1F:E5:55:91:E4:E2:23:6A:40:F4:39:00:EF:26:EF:04:5E
Certificate issuer: /CN=9d07041fe55591e4e2236a40f43900ef26ef045e
Certificate serial: 0196783152B7A11C5F05718AF148CA3FE37C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQcEH-VVkeTiI2pA9DkA7ybvBF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/nQcEH-VVkeTiI2pA9DkA7ybvBF4.mft
Manifest number: 019C
Signing time: Sun 27 Apr 2025 17:00:20 +0000
Manifest this update: Sun 27 Apr 2025 17:00:20 +0000
Manifest next update: Mon 28 Apr 2025 17:00:20 +0000
Files and hashes: 1: bVoPO_kuGjJeQ_WdFTCc4Jx2oLw.roa (hash: EJPg3LL1a0LdpJ0FryPnZdGj4+/hRiOP31APEGYRAlc=)
2: nQcEH-VVkeTiI2pA9DkA7ybvBF4.crl (hash: Ywuix+1cJnLVAkclNpyCTNyDLpc0O8v3GM2Fd6j1XGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/nQcEH-VVkeTiI2pA9DkA7ybvBF4.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/nQcEH-VVkeTiI2pA9DkA7ybvBF4.mft
rsync://rpki.ripe.net/repository/DEFAULT/nQcEH-VVkeTiI2pA9DkA7ybvBF4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:31:52:b7:a1:1c:5f:05:71:8a:f1:48:ca:3f:e3:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d07041fe55591e4e2236a40f43900ef26ef045e
Validity
Not Before: Apr 27 17:00:20 2025 GMT
Not After : Apr 28 17:00:20 2025 GMT
Subject: CN=5bec2fd8deac71af93d15c391d46020804c7db4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c1:4e:13:d1:06:40:14:1b:64:37:f6:a9:40:
51:4a:b5:46:9e:ff:77:d8:25:34:02:ae:af:da:12:
5a:55:97:8d:22:8a:e2:f7:51:a1:f1:57:d7:c2:c2:
f7:fd:67:b9:ba:8c:cb:f2:64:77:89:08:f6:7f:34:
7c:21:6f:b7:83:39:c8:02:a9:f9:1f:ee:fe:f4:ca:
b7:80:29:ed:ba:9b:f3:15:76:5f:e6:2e:9a:8d:23:
9d:a2:27:a5:77:b4:af:66:fa:91:08:87:5d:f9:21:
de:f2:41:06:9f:40:8e:f8:2d:fe:6a:30:df:05:de:
d4:69:b6:ea:ee:c5:b5:d9:07:f2:1a:e3:08:16:d2:
e5:fb:ad:a9:71:81:3f:de:32:e5:0f:be:d3:28:55:
ed:c7:07:a7:21:28:86:9b:9a:19:93:ee:5c:15:55:
aa:c5:67:89:43:ec:9a:fc:d1:98:77:0e:e3:cf:e0:
0a:16:ce:23:20:42:20:d8:ce:59:a7:89:13:fe:af:
2b:30:b3:0a:79:ab:34:8d:99:4a:e0:29:49:89:b0:
70:71:02:2d:31:28:ac:40:f2:86:2e:53:e6:89:51:
b3:53:02:61:86:e1:28:76:45:d1:3a:2b:10:fb:47:
5d:0d:29:95:b1:0a:1b:c2:f4:ea:88:e7:d2:f8:f7:
9d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:EC:2F:D8:DE:AC:71:AF:93:D1:5C:39:1D:46:02:08:04:C7:DB:4F
X509v3 Authority Key Identifier:
keyid:9D:07:04:1F:E5:55:91:E4:E2:23:6A:40:F4:39:00:EF:26:EF:04:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQcEH-VVkeTiI2pA9DkA7ybvBF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/nQcEH-VVkeTiI2pA9DkA7ybvBF4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/nQcEH-VVkeTiI2pA9DkA7ybvBF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:2c:b4:a7:7e:e2:0c:31:8c:0a:f0:91:d7:cb:96:a2:4f:48:
f1:4d:23:d1:79:82:66:9e:be:81:d9:3f:f1:9c:27:15:c9:72:
b0:84:b1:bd:68:30:4c:6a:33:a7:ef:f8:85:fb:28:34:0c:4b:
d8:1c:68:41:2a:5d:dd:bf:69:db:39:b4:d3:a3:82:ee:88:e8:
4c:2d:f8:69:9c:d9:69:aa:6a:63:94:e3:cb:96:58:39:2c:e0:
53:6a:a6:48:9b:e7:2f:c5:2f:5f:d8:51:78:1d:19:5e:39:ac:
20:14:68:fe:72:a0:3a:53:c8:d3:f2:c5:84:9a:c9:33:75:28:
ba:61:17:83:b5:e0:12:0c:ef:34:65:8e:f9:46:8d:1d:0f:86:
d6:35:da:ca:6d:56:95:08:5a:f4:87:aa:66:c7:a3:e4:5f:df:
cf:1b:57:2d:6e:90:ca:62:b3:49:48:ba:5a:2a:95:d6:3a:67:
30:19:4d:ed:fb:c1:55:df:8d:f6:34:9d:46:59:ab:28:36:76:
a5:1c:e1:44:19:36:b1:f3:18:17:e5:61:bf:65:dd:d3:72:17:
19:46:26:71:16:f1:45:82:92:c0:bf:04:41:6b:bf:a8:fc:65:
98:60:04:1b:f8:0e:bb:33:12:f0:07:b3:d8:08:5a:82:0c:39:
1d:3d:b1:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ4MVK3oRxfBXGK8UjKP+N8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMDcwNDFmZTU1NTkxZTRlMjIzNmE0MGY0MzkwMGVmMjZl
ZjA0NWUwHhcNMjUwNDI3MTcwMDIwWhcNMjUwNDI4MTcwMDIwWjAzMTEwLwYDVQQD
Eyg1YmVjMmZkOGRlYWM3MWFmOTNkMTVjMzkxZDQ2MDIwODA0YzdkYjRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8FOE9EGQBQbZDf2qUBRSrVGnv93
2CU0Aq6v2hJaVZeNIori91Gh8VfXwsL3/We5uozL8mR3iQj2fzR8IW+3gznIAqn5
H+7+9Mq3gCntupvzFXZf5i6ajSOdoield7SvZvqRCIdd+SHe8kEGn0CO+C3+ajDf
Bd7Uabbq7sW12QfyGuMIFtLl+62pcYE/3jLlD77TKFXtxwenISiGm5oZk+5cFVWq
xWeJQ+ya/NGYdw7jz+AKFs4jIEIg2M5Zp4kT/q8rMLMKeas0jZlK4ClJibBwcQIt
MSisQPKGLlPmiVGzUwJhhuEodkXROisQ+0ddDSmVsQobwvTqiOfS+PedhwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFvsL9jerHGvk9FcOR1GAggEx9tPMB8GA1UdIwQY
MBaAFJ0HBB/lVZHk4iNqQPQ5AO8m7wReMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblFjRUgtVlZrZVRpSTJwQTlEa0E3eWJ2QkY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8xMzU2YTgtODkxYy00ZWUxLWI2ZDkt
NzQ3NDY5ODlhYzkyLzEvblFjRUgtVlZrZVRpSTJwQTlEa0E3eWJ2QkY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny8xMzU2YTgtODkxYy00ZWUxLWI2ZDktNzQ3NDY5ODlhYzky
LzEvblFjRUgtVlZrZVRpSTJwQTlEa0E3eWJ2QkY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZyy0p37i
DDGMCvCR18uWok9I8U0j0XmCZp6+gdk/8ZwnFclysISxvWgwTGozp+/4hfsoNAxL
2BxoQSpd3b9p2zm006OC7ojoTC34aZzZaapqY5Tjy5ZYOSzgU2qmSJvnL8UvX9hR
eB0ZXjmsIBRo/nKgOlPI0/LFhJrJM3UoumEXg7XgEgzvNGWO+UaNHQ+G1jXaym1W
lQha9IeqZsej5F/fzxtXLW6QymKzSUi6WiqV1jpnMBlN7fvBVd+N9jSdRlmrKDZ2
pRzhRBk2sfMYF+Vhv2Xd03IXGUYmcRbxRYKSwL8EQWu/qPxlmGAEG/gOuzMS8Aez
2Ahaggw5HT2x7g==
-----END CERTIFICATE-----
Generated at Sun Apr 27 20:34:26 2025 by rpki-client