Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
File: nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft (raw, json)
Hash identifier: vRub8ayF7woarzgIguzw45NOCjh9QG7nom7pYW3AOFo=
Subject key identifier: B1:E5:03:FE:74:F7:BC:50:EA:5B:5D:46:5B:BF:F6:A7:CF:77:1C:C5
Authority key identifier: 9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
Certificate issuer: /CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Certificate serial: 01967C4603594E74F29C07E7FF27469AD536
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
Manifest number: 1514
Signing time: Mon 28 Apr 2025 12:01:25 +0000
Manifest this update: Mon 28 Apr 2025 12:01:25 +0000
Manifest next update: Tue 29 Apr 2025 12:01:25 +0000
Files and hashes: 1: CPqSq0ytAxDio98lkjeb_dYwRZ4.roa (hash: DBQ2P8ThG/7CNm8RF8WiO7psAqOGJ9hYf3OIiBNBEtw=)
2: nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl (hash: vif8uJZb6Wm5TwQDzLrHEd720uKVi8af4M/b9IQVTNU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:46:03:59:4e:74:f2:9c:07:e7:ff:27:46:9a:d5:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Validity
Not Before: Apr 28 12:01:25 2025 GMT
Not After : Apr 29 12:01:25 2025 GMT
Subject: CN=b1e503fe74f7bc50ea5b5d465bbff6a7cf771cc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d2:97:ed:34:8c:c0:06:aa:51:ad:c0:7c:b7:
ad:03:58:13:6d:32:de:b5:f2:62:c9:1c:4b:24:c1:
11:af:b4:2b:47:94:24:b8:71:29:bf:48:2f:22:37:
0b:02:2e:0e:53:55:75:2c:00:e9:2c:1e:19:81:22:
22:b5:51:dc:b8:43:a6:19:0f:69:58:f0:b7:eb:30:
05:d3:39:3d:34:31:ce:19:d3:b8:27:75:f7:cb:00:
18:eb:e8:95:4f:a7:b5:00:30:27:52:73:a7:15:97:
0d:d8:64:ee:86:0a:bd:e6:02:d6:9f:f2:61:73:5f:
07:31:25:c2:e5:31:ae:f3:0b:31:80:c3:34:cb:5e:
3a:59:1a:fd:a9:84:84:32:3a:02:a6:85:81:d4:3d:
04:5b:d0:ab:6a:fc:85:ec:b8:53:d2:33:95:00:43:
34:6d:97:73:05:b9:4a:ca:38:d8:0e:c9:1c:20:d4:
15:57:c9:49:bd:58:42:44:63:0a:07:1c:c7:83:00:
19:47:e5:87:14:f1:db:00:51:79:66:63:fa:c5:f4:
6c:58:a7:03:11:fc:83:04:1c:68:3a:4f:ee:e7:4d:
f0:97:8c:34:09:3b:1f:78:92:bb:3f:61:d2:a9:72:
e5:42:66:94:de:97:2c:9a:f7:88:17:16:e6:01:63:
87:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E5:03:FE:74:F7:BC:50:EA:5B:5D:46:5B:BF:F6:A7:CF:77:1C:C5
X509v3 Authority Key Identifier:
keyid:9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:66:bf:c1:95:ed:fa:75:21:fe:7f:5e:bc:61:a1:ba:08:c0:
f4:4e:f8:85:52:fd:51:3b:42:53:42:d0:bc:51:4b:52:e3:50:
72:da:63:64:d1:3d:59:e3:f2:9c:ee:5e:f6:9c:bd:c1:d7:2b:
3c:8c:1e:73:6b:b8:58:9b:d0:44:59:12:eb:17:62:40:9f:4f:
c3:10:b5:7c:ad:9a:df:ac:ed:6c:a3:83:cb:7a:84:28:ac:f5:
7c:73:8e:01:00:6a:77:ca:2f:a5:ad:80:c3:2f:3c:46:f3:12:
94:df:a5:39:9e:19:8e:38:04:77:bc:2c:d6:1e:58:05:80:77:
f0:18:b6:26:bd:40:a1:4a:15:9a:69:f9:ef:bf:df:b3:e2:93:
17:c6:78:67:47:7f:5f:45:ec:75:27:d1:ff:a1:2e:1e:f9:03:
c4:2a:49:fe:09:9e:47:da:25:75:a9:49:da:f7:32:2d:c8:43:
cc:28:b6:e2:1e:6d:2f:f8:6f:0b:6b:68:e3:5f:b1:a5:49:bb:
4e:07:32:0e:1d:ad:09:f1:ef:f7:bc:2f:80:fb:bd:30:ba:29:
77:6a:f7:fc:53:3f:21:cd:e8:4b:95:fd:20:fa:03:c7:1d:c6:
20:c0:b3:6d:53:98:42:60:ea:b4:76:6b:08:11:30:e5:75:ec:
7f:59:c7:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ8RgNZTnTynAfn/ydGmtU2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMjM5YzA4ZWFkOTRiYjA0ZmMzZTZiNGE2NWU2ZTFjN2Rj
ZjM4ZjQwHhcNMjUwNDI4MTIwMTI1WhcNMjUwNDI5MTIwMTI1WjAzMTEwLwYDVQQD
EyhiMWU1MDNmZTc0ZjdiYzUwZWE1YjVkNDY1YmJmZjZhN2NmNzcxY2M1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq9KX7TSMwAaqUa3AfLetA1gTbTLe
tfJiyRxLJMERr7QrR5QkuHEpv0gvIjcLAi4OU1V1LADpLB4ZgSIitVHcuEOmGQ9p
WPC36zAF0zk9NDHOGdO4J3X3ywAY6+iVT6e1ADAnUnOnFZcN2GTuhgq95gLWn/Jh
c18HMSXC5TGu8wsxgMM0y146WRr9qYSEMjoCpoWB1D0EW9CravyF7LhT0jOVAEM0
bZdzBblKyjjYDskcINQVV8lJvVhCRGMKBxzHgwAZR+WHFPHbAFF5ZmP6xfRsWKcD
EfyDBBxoOk/u503wl4w0CTsfeJK7P2HSqXLlQmaU3pcsmveIFxbmAWOH5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLHlA/5097xQ6ltdRlu/9qfPdxzFMB8GA1UdIwQY
MBaAFJ0jnAjq2UuwT8PmtKZebhx9zzj0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS8wNjA4NTktNzcwNy00MTJhLTk4MTAt
ZGJiMjkzMWEwZjY0LzEvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS8wNjA4NTktNzcwNy00MTJhLTk4MTAtZGJiMjkzMWEwZjY0
LzEvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVma/wZXt
+nUh/n9evGGhugjA9E74hVL9UTtCU0LQvFFLUuNQctpjZNE9WePynO5e9py9wdcr
PIwec2u4WJvQRFkS6xdiQJ9PwxC1fK2a36ztbKODy3qEKKz1fHOOAQBqd8ovpa2A
wy88RvMSlN+lOZ4ZjjgEd7ws1h5YBYB38Bi2Jr1AoUoVmmn577/fs+KTF8Z4Z0d/
X0XsdSfR/6EuHvkDxCpJ/gmeR9oldalJ2vcyLchDzCi24h5tL/hvC2to41+xpUm7
TgcyDh2tCfHv97wvgPu9MLopd2r3/FM/Ic3oS5X9IPoDxx3GIMCzbVOYQmDqtHZr
CBEw5XXsf1nHsg==
-----END CERTIFICATE-----
Generated at Mon Apr 28 15:03:42 2025 by rpki-client