Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
File: NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft (raw, json)
Hash identifier: +JrVnp2l6lUQA9SZc5X7RBhuLNVjDt9i2om3rY+chIM=
Subject key identifier: 09:10:A6:8E:71:77:A0:11:79:AC:26:7C:2A:3F:B3:36:BA:EF:9F:43
Authority key identifier: 34:80:3A:2C:F2:90:B0:BD:C6:9A:DD:C0:03:D5:64:A2:34:AA:4F:76
Certificate issuer: /CN=34803a2cf290b0bdc69addc003d564a234aa4f76
Certificate serial: 019778662D2A9967E354CE0C4323BF6942EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
Manifest number: 102A
Signing time: Mon 16 Jun 2025 11:00:51 +0000
Manifest this update: Mon 16 Jun 2025 11:00:51 +0000
Manifest next update: Tue 17 Jun 2025 11:00:51 +0000
Files and hashes: 1: JscmxGl_L2E7JnV0mfv32RHUpNw.roa (hash: 8j6EFW05T3ckFd0k6CAkZlDvS05KieVcVNbYKlWGlos=)
2: NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl (hash: KOy83tKJM7zniUlgBnVZIbjTheqVCz2V1bsw56QkGXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 11:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:66:2d:2a:99:67:e3:54:ce:0c:43:23:bf:69:42:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34803a2cf290b0bdc69addc003d564a234aa4f76
Validity
Not Before: Jun 16 11:00:51 2025 GMT
Not After : Jun 17 11:00:51 2025 GMT
Subject: CN=0910a68e7177a01179ac267c2a3fb336baef9f43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:04:1e:47:3b:a3:8f:24:df:9f:9c:83:76:4c:
d6:54:0e:9f:25:13:e3:dc:63:db:14:e6:11:70:39:
bb:fb:da:ad:9c:f0:b0:f8:e3:58:d1:18:da:10:c7:
17:dd:eb:ad:75:dd:f8:72:9f:36:e1:a6:21:db:80:
4e:12:9e:6d:2e:f4:94:c1:a6:d4:5a:b6:a3:2d:86:
af:cc:5e:05:15:df:bf:78:eb:4b:40:8f:ae:7a:c6:
b9:35:dc:c4:fa:2a:8e:2e:04:53:70:e3:2b:79:b5:
6e:76:f4:bf:11:de:15:a5:49:bd:74:9c:ea:e4:70:
74:86:02:aa:e2:e0:a5:46:99:51:bd:60:46:38:49:
55:6c:e6:1e:af:1b:f8:f7:aa:9e:f6:e7:ef:fd:37:
7b:19:8d:65:5c:bb:ea:5d:45:46:c5:5a:41:e6:c5:
4d:bd:85:8c:fd:81:3a:80:a0:2e:0b:7c:88:a3:4c:
1a:a2:fe:02:86:18:36:4a:14:48:37:16:6e:7c:eb:
fb:fe:b0:89:82:17:dc:db:2f:05:92:dc:bc:91:e6:
d0:ba:05:16:95:d2:5a:af:ce:1b:c4:e6:4f:c2:6f:
f6:c4:80:61:b7:be:8c:86:a1:b9:21:13:1f:3d:7b:
f0:f7:37:f0:7c:31:bf:45:92:49:ef:2a:62:62:43:
6c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:10:A6:8E:71:77:A0:11:79:AC:26:7C:2A:3F:B3:36:BA:EF:9F:43
X509v3 Authority Key Identifier:
keyid:34:80:3A:2C:F2:90:B0:BD:C6:9A:DD:C0:03:D5:64:A2:34:AA:4F:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:58:35:91:36:0b:c8:09:c1:58:61:32:0a:ac:41:7d:47:50:
2e:8b:6d:72:c2:6c:f9:82:11:1b:ee:7a:c2:05:a1:58:6d:37:
5a:60:5c:b7:62:86:41:b9:88:7c:c8:cf:85:34:48:fa:17:25:
01:40:bd:83:4f:9b:01:2f:67:f4:04:aa:1c:6d:6a:64:92:d1:
72:1d:d2:4e:96:8b:a7:bd:a3:34:37:bd:1d:21:fa:29:e5:f3:
a6:eb:44:21:ad:a8:df:35:ea:a5:ba:5b:78:8b:fb:4a:bc:d4:
85:5e:98:d0:54:ac:d8:14:5a:48:0b:1d:19:92:71:2e:8f:f1:
27:cd:b7:35:9e:1b:88:74:93:a7:0c:19:fd:00:12:ed:6a:5f:
b6:20:25:06:79:ee:44:49:8f:ac:ca:54:52:b4:34:d7:d1:c7:
91:c5:95:73:02:8a:5a:7f:89:13:ea:59:20:9d:e9:85:f8:ae:
1c:3e:f9:39:cf:a5:8f:a7:5e:76:86:3f:1d:28:36:16:a3:d2:
a0:64:bf:7c:f0:23:e4:ba:e2:33:05:63:75:14:02:49:92:8a:
df:be:93:f7:57:51:74:35:2f:1e:fd:eb:b7:a9:5f:b0:15:92:
ec:32:65:ab:eb:22:8c:8c:45:1e:cb:8f:10:de:fb:6a:77:ec:
56:b3:51:3c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd4Zi0qmWfjVM4MQyO/aULsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ODAzYTJjZjI5MGIwYmRjNjlhZGRjMDAzZDU2NGEyMzRh
YTRmNzYwHhcNMjUwNjE2MTEwMDUxWhcNMjUwNjE3MTEwMDUxWjAzMTEwLwYDVQQD
EygwOTEwYTY4ZTcxNzdhMDExNzlhYzI2N2MyYTNmYjMzNmJhZWY5ZjQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4gQeRzujjyTfn5yDdkzWVA6fJRPj
3GPbFOYRcDm7+9qtnPCw+ONY0RjaEMcX3eutdd34cp824aYh24BOEp5tLvSUwabU
WrajLYavzF4FFd+/eOtLQI+uesa5NdzE+iqOLgRTcOMrebVudvS/Ed4VpUm9dJzq
5HB0hgKq4uClRplRvWBGOElVbOYerxv496qe9ufv/Td7GY1lXLvqXUVGxVpB5sVN
vYWM/YE6gKAuC3yIo0waov4Chhg2ShRINxZufOv7/rCJghfc2y8Fkty8kebQugUW
ldJar84bxOZPwm/2xIBht76MhqG5IRMfPXvw9zfwfDG/RZJJ7ypiYkNsjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAkQpo5xd6AReawmfCo/sza6759DMB8GA1UdIwQY
MBaAFDSAOizykLC9xprdwAPVZKI0qk92MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTklBNkxQS1FzTDNHbXQzQUE5VmtvalNxVDNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9mZTYyMzQtNjQzNy00OTY3LWJhNjMt
ODVjM2ZhNzllYmMxLzEvTklBNkxQS1FzTDNHbXQzQUE5VmtvalNxVDNZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9mZTYyMzQtNjQzNy00OTY3LWJhNjMtODVjM2ZhNzllYmMx
LzEvTklBNkxQS1FzTDNHbXQzQUE5VmtvalNxVDNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAblg1kTYL
yAnBWGEyCqxBfUdQLottcsJs+YIRG+56wgWhWG03WmBct2KGQbmIfMjPhTRI+hcl
AUC9g0+bAS9n9ASqHG1qZJLRch3STpaLp72jNDe9HSH6KeXzputEIa2o3zXqpbpb
eIv7SrzUhV6Y0FSs2BRaSAsdGZJxLo/xJ823NZ4biHSTpwwZ/QAS7WpftiAlBnnu
REmPrMpUUrQ019HHkcWVcwKKWn+JE+pZIJ3phfiuHD75Oc+lj6dedoY/HSg2FqPS
oGS/fPAj5LriMwVjdRQCSZKK376T91dRdDUvHv3rt6lfsBWS7DJlq+sijIxFHsuP
EN77anfsVrNRPA==
-----END CERTIFICATE-----
Generated at Mon Jun 16 15:58:35 2025 by rpki-client