Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
File: NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft (raw, json)
Hash identifier: I7SNAMrA/GMJjOP6jA5OJBQoo66YxCDDhXUYmnVXPqo=
Subject key identifier: 36:30:F7:B8:CD:98:A3:93:41:40:BF:D9:9C:30:8A:EE:C7:1C:55:DA
Authority key identifier: 34:80:3A:2C:F2:90:B0:BD:C6:9A:DD:C0:03:D5:64:A2:34:AA:4F:76
Certificate issuer: /CN=34803a2cf290b0bdc69addc003d564a234aa4f76
Certificate serial: 01968134CB0D7057381B89D41BB1DCF502A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
Manifest number: 0FAA
Signing time: Tue 29 Apr 2025 11:00:42 +0000
Manifest this update: Tue 29 Apr 2025 11:00:42 +0000
Manifest next update: Wed 30 Apr 2025 11:00:42 +0000
Files and hashes: 1: JscmxGl_L2E7JnV0mfv32RHUpNw.roa (hash: 8j6EFW05T3ckFd0k6CAkZlDvS05KieVcVNbYKlWGlos=)
2: NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl (hash: LUYSt3leOIlfm7MMrr6EW1BtxJVsEZ6CIoG3+HnYL0M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:34:cb:0d:70:57:38:1b:89:d4:1b:b1:dc:f5:02:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34803a2cf290b0bdc69addc003d564a234aa4f76
Validity
Not Before: Apr 29 11:00:42 2025 GMT
Not After : Apr 30 11:00:42 2025 GMT
Subject: CN=3630f7b8cd98a3934140bfd99c308aeec71c55da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f2:dc:62:28:71:47:c5:81:1a:52:3f:36:c7:
cf:7e:fd:18:1d:39:49:91:62:1e:bf:60:6d:f7:c5:
a9:09:d3:a3:7f:58:52:52:c4:32:92:69:e6:74:4c:
be:6c:9a:55:0e:83:12:af:95:8c:fc:5a:44:60:45:
5d:d0:cf:23:9f:17:f6:90:b2:08:8a:b3:91:24:20:
98:b6:85:04:3a:23:ee:1b:dd:6d:f5:b6:4e:f0:79:
bd:b7:3b:58:42:21:d0:a7:bd:f9:b9:9e:27:cc:db:
fc:e8:1c:95:90:25:cf:98:6d:f7:ba:5a:95:7c:1d:
4a:da:e4:4f:7e:5b:65:cc:27:ca:26:fa:c8:e6:dc:
de:49:1f:b3:b2:2f:b7:3f:18:6f:05:8c:e0:79:51:
c2:5a:c6:0e:ff:d2:e1:3d:e7:59:25:42:77:2f:d2:
76:1e:36:b5:32:64:2c:ed:12:04:98:24:a9:3c:7e:
62:12:0c:7e:5f:ec:c1:d2:8c:66:f0:02:5a:f3:2e:
44:f0:0f:25:94:c5:0f:76:79:ed:c4:93:18:bb:19:
b5:38:44:cd:e3:15:f6:d7:15:51:97:3c:db:f9:65:
95:a1:7e:c7:89:3d:a3:e6:b6:9f:ea:ae:a6:fd:40:
50:76:5f:28:0e:cf:f0:12:e2:f8:af:53:98:66:d0:
88:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:30:F7:B8:CD:98:A3:93:41:40:BF:D9:9C:30:8A:EE:C7:1C:55:DA
X509v3 Authority Key Identifier:
keyid:34:80:3A:2C:F2:90:B0:BD:C6:9A:DD:C0:03:D5:64:A2:34:AA:4F:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:65:25:cc:58:d8:38:bf:1c:34:6b:a2:bd:8c:c2:57:4f:20:
de:7c:8d:f9:a4:d3:b0:8d:82:0b:62:e0:83:3c:15:6a:a1:fd:
a1:c4:7c:ac:e5:14:5f:8b:f0:d4:b7:db:60:05:c4:d1:0d:fa:
d2:37:17:60:d3:10:0f:fd:51:0b:51:62:8f:00:f5:d0:80:06:
ea:b6:4c:83:bd:3a:81:78:c9:8b:55:b2:14:f9:96:cd:54:be:
62:f2:be:dc:e3:4e:38:7f:f8:1d:27:ee:e4:03:2a:5e:01:61:
67:23:31:00:4f:ef:6d:59:38:04:03:5d:6a:52:01:7d:15:8e:
24:53:d4:52:e9:60:b0:11:b8:6d:dd:47:b8:48:47:99:85:8a:
59:6b:f9:e2:fe:33:17:6e:76:cf:12:b4:f6:b0:38:61:62:58:
35:2e:37:05:e3:c0:ec:b6:e9:13:ac:a7:33:d3:d5:23:a1:9c:
cf:5b:58:a2:51:a0:d4:b4:dd:5e:24:77:06:8e:d4:2e:2f:6d:
8e:d4:d1:c6:00:6d:cf:e4:c9:af:37:2e:c0:cf:33:69:88:bd:
63:8e:f2:1f:70:d6:23:ec:e0:e6:66:b5:fe:a2:33:db:4e:42:
4b:11:10:54:0b:8a:61:60:2d:9b:38:1c:fd:97:cd:0f:a0:d2:
ff:bc:88:88
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaBNMsNcFc4G4nUG7Hc9QKjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ODAzYTJjZjI5MGIwYmRjNjlhZGRjMDAzZDU2NGEyMzRh
YTRmNzYwHhcNMjUwNDI5MTEwMDQyWhcNMjUwNDMwMTEwMDQyWjAzMTEwLwYDVQQD
EygzNjMwZjdiOGNkOThhMzkzNDE0MGJmZDk5YzMwOGFlZWM3MWM1NWRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/LcYihxR8WBGlI/NsfPfv0YHTlJ
kWIev2Bt98WpCdOjf1hSUsQykmnmdEy+bJpVDoMSr5WM/FpEYEVd0M8jnxf2kLII
irORJCCYtoUEOiPuG91t9bZO8Hm9tztYQiHQp735uZ4nzNv86ByVkCXPmG33ulqV
fB1K2uRPfltlzCfKJvrI5tzeSR+zsi+3PxhvBYzgeVHCWsYO/9LhPedZJUJ3L9J2
Hja1MmQs7RIEmCSpPH5iEgx+X+zB0oxm8AJa8y5E8A8llMUPdnntxJMYuxm1OETN
4xX21xVRlzzb+WWVoX7HiT2j5raf6q6m/UBQdl8oDs/wEuL4r1OYZtCIpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDYw97jNmKOTQUC/2Zwwiu7HHFXaMB8GA1UdIwQY
MBaAFDSAOizykLC9xprdwAPVZKI0qk92MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTklBNkxQS1FzTDNHbXQzQUE5VmtvalNxVDNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9mZTYyMzQtNjQzNy00OTY3LWJhNjMt
ODVjM2ZhNzllYmMxLzEvTklBNkxQS1FzTDNHbXQzQUE5VmtvalNxVDNZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9mZTYyMzQtNjQzNy00OTY3LWJhNjMtODVjM2ZhNzllYmMx
LzEvTklBNkxQS1FzTDNHbXQzQUE5VmtvalNxVDNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ2UlzFjY
OL8cNGuivYzCV08g3nyN+aTTsI2CC2LggzwVaqH9ocR8rOUUX4vw1LfbYAXE0Q36
0jcXYNMQD/1RC1FijwD10IAG6rZMg706gXjJi1WyFPmWzVS+YvK+3ONOOH/4HSfu
5AMqXgFhZyMxAE/vbVk4BANdalIBfRWOJFPUUulgsBG4bd1HuEhHmYWKWWv54v4z
F252zxK09rA4YWJYNS43BePA7LbpE6ynM9PVI6Gcz1tYolGg1LTdXiR3Bo7ULi9t
jtTRxgBtz+TJrzcuwM8zaYi9Y47yH3DWI+zg5ma1/qIz205CSxEQVAuKYWAtmzgc
/ZfND6DS/7yIiA==
-----END CERTIFICATE-----
Generated at Tue Apr 29 14:37:29 2025 by rpki-client