Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/nQcEH-VVkeTiI2pA9DkA7ybvBF4.mft
File: nQcEH-VVkeTiI2pA9DkA7ybvBF4.mft (raw, json)
Hash identifier: 8kF4xXJ6Yh3kxzz7kQfo1jkUx03f7GaQrWAqB0swoEo=
Subject key identifier: 5A:59:C7:AC:14:7E:A9:36:D8:94:E6:44:05:58:B5:B2:70:7B:CD:04
Authority key identifier: 9D:07:04:1F:E5:55:91:E4:E2:23:6A:40:F4:39:00:EF:26:EF:04:5E
Certificate issuer: /CN=9d07041fe55591e4e2236a40f43900ef26ef045e
Certificate serial: 01987DC12F24C946EDF40444C7A534D285CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQcEH-VVkeTiI2pA9DkA7ybvBF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/nQcEH-VVkeTiI2pA9DkA7ybvBF4.mft
Manifest number: 02A8
Signing time: Wed 06 Aug 2025 05:01:09 +0000
Manifest this update: Wed 06 Aug 2025 05:01:09 +0000
Manifest next update: Thu 07 Aug 2025 05:01:09 +0000
Files and hashes: 1: bVoPO_kuGjJeQ_WdFTCc4Jx2oLw.roa (hash: EJPg3LL1a0LdpJ0FryPnZdGj4+/hRiOP31APEGYRAlc=)
2: nQcEH-VVkeTiI2pA9DkA7ybvBF4.crl (hash: kz5bNr3sw/6btR0Rs4gGXISndw3VX8g41KJLbgiVX6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/nQcEH-VVkeTiI2pA9DkA7ybvBF4.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/nQcEH-VVkeTiI2pA9DkA7ybvBF4.mft
rsync://rpki.ripe.net/repository/DEFAULT/nQcEH-VVkeTiI2pA9DkA7ybvBF4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 05:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:c1:2f:24:c9:46:ed:f4:04:44:c7:a5:34:d2:85:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d07041fe55591e4e2236a40f43900ef26ef045e
Validity
Not Before: Aug 6 05:01:09 2025 GMT
Not After : Aug 7 05:01:09 2025 GMT
Subject: CN=5a59c7ac147ea936d894e6440558b5b2707bcd04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:68:20:63:0c:06:eb:0c:66:e1:1b:d2:b9:0a:
a4:e0:0a:09:b9:2c:54:3e:05:b2:b6:44:45:05:a2:
ed:10:34:04:93:e1:e5:4a:99:8f:4d:80:6b:2a:09:
b5:12:55:29:ab:43:ba:53:76:0e:21:4b:74:f3:00:
20:3a:63:6f:a8:55:9d:6a:5f:d6:5d:49:5f:52:be:
20:b1:52:a6:52:68:96:e7:5d:40:ef:0b:9a:f6:86:
f7:cf:1f:1f:53:20:56:08:3a:5a:dd:31:62:03:37:
b7:4f:7e:4b:5d:8b:7b:e3:9b:dd:10:9a:67:d4:6d:
9a:c6:45:9e:8e:0d:e6:cf:59:7c:4f:e6:7e:06:b3:
8b:b6:0f:82:71:b1:d5:e1:21:46:57:11:92:22:c0:
15:de:c6:7e:c4:21:bf:93:ae:c8:47:47:33:89:ef:
22:61:38:e0:df:10:ab:51:ea:23:82:ed:bb:2c:28:
ba:9f:f7:13:65:5e:e4:ad:0e:a7:eb:5d:d6:78:32:
7d:c8:3f:e6:5b:16:47:c4:6d:dd:3f:41:1c:63:e0:
a4:86:5d:34:5e:9c:01:ee:67:42:54:8d:35:db:6c:
af:1b:e8:c9:ee:67:b8:d1:1b:a3:c5:f4:05:6d:4f:
df:79:a5:69:47:9b:65:16:67:d4:94:56:dd:49:f6:
fa:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:59:C7:AC:14:7E:A9:36:D8:94:E6:44:05:58:B5:B2:70:7B:CD:04
X509v3 Authority Key Identifier:
keyid:9D:07:04:1F:E5:55:91:E4:E2:23:6A:40:F4:39:00:EF:26:EF:04:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQcEH-VVkeTiI2pA9DkA7ybvBF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/nQcEH-VVkeTiI2pA9DkA7ybvBF4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/nQcEH-VVkeTiI2pA9DkA7ybvBF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:73:53:a8:3a:1d:8d:31:fe:f1:e5:3f:1e:6d:53:e9:bc:ae:
f4:11:08:cc:29:77:4d:38:dc:db:55:aa:b9:2a:6f:a2:44:49:
5c:53:b3:f0:3d:39:4c:14:9b:e3:f5:54:6a:b8:9f:d6:03:47:
cb:de:5a:79:67:26:d4:70:2a:88:fc:84:24:85:a7:b6:f3:a3:
ed:78:77:a5:15:ac:89:d2:a7:7d:b7:95:1b:b2:63:c7:6a:c3:
b2:e0:ed:d8:4f:16:0d:30:69:dc:24:7c:84:66:ff:c7:c8:aa:
a1:0d:98:92:cb:bd:66:fa:db:cb:db:28:4b:02:cb:b7:c9:d0:
22:75:a5:68:c7:5a:d8:1b:4a:99:98:f3:30:19:b7:fd:c5:02:
19:26:03:8d:54:95:d7:7a:e7:3a:fa:cd:d3:f8:c8:ed:ab:66:
7d:94:fb:f7:6e:d0:c2:80:9f:d3:d4:b2:d8:3e:99:e1:ba:a5:
fc:29:3d:d0:ce:f6:72:04:bd:5b:99:84:85:1f:67:91:bd:bf:
85:17:3c:af:f8:07:74:f9:a7:d2:47:08:e9:2e:d6:6f:56:92:
c2:8d:5f:8b:df:62:a1:42:a8:37:db:67:61:1a:e2:c7:2c:02:
dc:59:28:1b:f5:ae:ce:18:25:3b:82:dc:8d:62:a3:3f:33:d4:
5d:af:73:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh9wS8kyUbt9AREx6U00oXPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMDcwNDFmZTU1NTkxZTRlMjIzNmE0MGY0MzkwMGVmMjZl
ZjA0NWUwHhcNMjUwODA2MDUwMTA5WhcNMjUwODA3MDUwMTA5WjAzMTEwLwYDVQQD
Eyg1YTU5YzdhYzE0N2VhOTM2ZDg5NGU2NDQwNTU4YjViMjcwN2JjZDA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu2ggYwwG6wxm4RvSuQqk4AoJuSxU
PgWytkRFBaLtEDQEk+HlSpmPTYBrKgm1ElUpq0O6U3YOIUt08wAgOmNvqFWdal/W
XUlfUr4gsVKmUmiW511A7wua9ob3zx8fUyBWCDpa3TFiAze3T35LXYt745vdEJpn
1G2axkWejg3mz1l8T+Z+BrOLtg+CcbHV4SFGVxGSIsAV3sZ+xCG/k67IR0czie8i
YTjg3xCrUeojgu27LCi6n/cTZV7krQ6n613WeDJ9yD/mWxZHxG3dP0EcY+Ckhl00
XpwB7mdCVI0122yvG+jJ7me40RujxfQFbU/feaVpR5tlFmfUlFbdSfb6LQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFpZx6wUfqk22JTmRAVYtbJwe80EMB8GA1UdIwQY
MBaAFJ0HBB/lVZHk4iNqQPQ5AO8m7wReMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblFjRUgtVlZrZVRpSTJwQTlEa0E3eWJ2QkY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8xMzU2YTgtODkxYy00ZWUxLWI2ZDkt
NzQ3NDY5ODlhYzkyLzEvblFjRUgtVlZrZVRpSTJwQTlEa0E3eWJ2QkY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny8xMzU2YTgtODkxYy00ZWUxLWI2ZDktNzQ3NDY5ODlhYzky
LzEvblFjRUgtVlZrZVRpSTJwQTlEa0E3eWJ2QkY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARHNTqDod
jTH+8eU/Hm1T6byu9BEIzCl3TTjc21WquSpvokRJXFOz8D05TBSb4/VUarif1gNH
y95aeWcm1HAqiPyEJIWntvOj7Xh3pRWsidKnfbeVG7Jjx2rDsuDt2E8WDTBp3CR8
hGb/x8iqoQ2Yksu9Zvrby9soSwLLt8nQInWlaMda2BtKmZjzMBm3/cUCGSYDjVSV
13rnOvrN0/jI7atmfZT7927QwoCf09Sy2D6Z4bql/Ck90M72cgS9W5mEhR9nkb2/
hRc8r/gHdPmn0kcI6S7Wb1aSwo1fi99ioUKoN9tnYRrixywC3FkoG/WuzhglO4Lc
jWKjPzPUXa9zTg==
-----END CERTIFICATE-----
Generated at Wed Aug 6 11:17:50 2025 by rpki-client