Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
File: nTHCM8vSZtsCYgud65DQjkFpLmc.mft (raw, json)
Hash identifier: XANqqszS88ybcxsKGq/pJKtH3SQaeoW2wRGlcz4FmUY=
Subject key identifier: 5A:3F:ED:86:10:9F:5A:0F:F9:56:1B:3E:51:61:8D:37:38:51:1C:EC
Authority key identifier: 9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
Certificate issuer: /CN=9d31c233cbd266db02620b9deb90d08e41692e67
Certificate serial: 01978244FB988683B7C4EB41C2F09E456576
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
Manifest number: 0C7A
Signing time: Wed 18 Jun 2025 09:00:48 +0000
Manifest this update: Wed 18 Jun 2025 09:00:48 +0000
Manifest next update: Thu 19 Jun 2025 09:00:48 +0000
Files and hashes: 1: _rMAcV1Zh6HxKo_vwEpVhjFVwy8.roa (hash: r1imevw1h8qWVS0OoTwBJnDWSm49xN9+9T+LLaWUqWk=)
2: nTHCM8vSZtsCYgud65DQjkFpLmc.crl (hash: nqLyZZs+cf8QWxrySB3Eoz0HKQgM8foiEO/T4vQVu8E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:82:44:fb:98:86:83:b7:c4:eb:41:c2:f0:9e:45:65:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d31c233cbd266db02620b9deb90d08e41692e67
Validity
Not Before: Jun 18 09:00:48 2025 GMT
Not After : Jun 19 09:00:48 2025 GMT
Subject: CN=5a3fed86109f5a0ff9561b3e51618d3738511cec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:3a:b8:55:02:f2:2b:9d:71:f1:6f:d3:fa:01:
0a:81:f4:58:1b:6c:e1:93:53:42:02:c6:57:31:e7:
db:e0:2c:41:ef:a3:bc:3e:bf:e4:de:02:09:c0:d6:
72:e9:65:e0:57:8e:b1:e1:25:25:4e:94:8d:eb:a8:
e3:9e:22:d0:de:46:ac:7a:31:15:23:0e:47:9e:e5:
ce:a9:fb:f0:56:bd:32:d6:7c:1d:57:b9:5d:d5:2d:
90:c1:59:a6:6b:25:59:94:a6:5a:9d:b6:32:b6:43:
d2:4a:fc:f7:a7:c3:de:6f:fc:b6:21:6c:21:f2:a6:
15:0c:49:6a:f3:4e:be:e8:43:2f:37:9b:98:3d:b1:
da:c3:b4:95:02:06:3f:0d:2f:43:49:a9:9c:3d:8d:
43:90:19:81:66:0c:81:94:d7:e1:28:a0:87:ae:20:
87:ff:d3:86:f4:cc:08:6a:b6:b7:43:38:bb:17:a9:
02:a2:da:fa:9b:ff:aa:f7:e2:26:73:fe:c8:eb:10:
93:f5:db:50:0d:ae:81:82:d3:9e:9d:5f:79:19:c4:
1c:92:76:c1:78:10:a2:c8:20:82:8c:17:a8:52:37:
23:95:a4:78:ff:49:32:c8:b1:ab:0d:6e:a2:05:86:
8c:a8:21:ac:9a:1c:40:bd:42:36:88:a6:94:75:68:
82:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:3F:ED:86:10:9F:5A:0F:F9:56:1B:3E:51:61:8D:37:38:51:1C:EC
X509v3 Authority Key Identifier:
keyid:9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:d5:9b:c6:32:5f:08:de:8f:42:f7:b1:b9:df:50:9e:a3:37:
40:2e:58:66:5d:c2:4c:5d:8a:47:32:87:b5:fd:6a:f4:37:df:
f5:4c:20:20:b3:29:13:9a:2a:06:a7:6e:6b:6b:89:9c:da:da:
16:20:60:b2:85:4c:a5:36:3b:61:4b:1b:93:3e:b3:ff:9b:bb:
91:68:0c:6b:63:f9:9b:86:f4:73:d5:ac:c0:15:a0:79:f3:f4:
ef:b8:6b:73:56:8b:e9:5f:df:d9:ce:43:8b:6b:26:ab:c0:33:
67:7d:46:1a:b7:f1:d5:9f:c5:64:a9:30:2d:00:f5:d8:65:fc:
e5:8e:00:7d:e3:f3:36:17:4a:ae:f1:2e:48:0e:5f:bd:d5:d1:
82:5e:7b:38:2d:11:0a:1a:13:4f:76:21:6c:6a:45:c9:7b:f8:
a2:c0:49:32:c7:e2:c4:1c:64:65:cb:65:e7:a9:17:14:56:0f:
20:8d:b4:66:18:a3:55:c8:9c:98:15:2f:5d:49:1f:20:95:e4:
48:4c:12:e3:4a:ce:f5:79:21:99:cd:1a:38:ad:ef:6e:73:c0:
fa:f9:ac:dc:f6:9e:35:d1:04:72:d6:97:96:46:80:c6:d4:10:
21:6f:ac:3d:49:c3:2e:a2:12:66:87:a3:cd:78:04:24:ff:e1:
21:ae:09:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZeCRPuYhoO3xOtBwvCeRWV2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMzFjMjMzY2JkMjY2ZGIwMjYyMGI5ZGViOTBkMDhlNDE2
OTJlNjcwHhcNMjUwNjE4MDkwMDQ4WhcNMjUwNjE5MDkwMDQ4WjAzMTEwLwYDVQQD
Eyg1YTNmZWQ4NjEwOWY1YTBmZjk1NjFiM2U1MTYxOGQzNzM4NTExY2VjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Dq4VQLyK51x8W/T+gEKgfRYG2zh
k1NCAsZXMefb4CxB76O8Pr/k3gIJwNZy6WXgV46x4SUlTpSN66jjniLQ3kasejEV
Iw5HnuXOqfvwVr0y1nwdV7ld1S2QwVmmayVZlKZanbYytkPSSvz3p8Peb/y2IWwh
8qYVDElq806+6EMvN5uYPbHaw7SVAgY/DS9DSamcPY1DkBmBZgyBlNfhKKCHriCH
/9OG9MwIara3Qzi7F6kCotr6m/+q9+Imc/7I6xCT9dtQDa6BgtOenV95GcQcknbB
eBCiyCCCjBeoUjcjlaR4/0kyyLGrDW6iBYaMqCGsmhxAvUI2iKaUdWiCZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFo/7YYQn1oP+VYbPlFhjTc4URzsMB8GA1UdIwQY
MBaAFJ0xwjPL0mbbAmILneuQ0I5BaS5nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblRIQ004dlNadHNDWWd1ZDY1RFFqa0ZwTG1jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8zNDIyM2EtZTc3ZS00NTQ0LWEyMDct
ZmExNzI1MDM0NDkxLzEvblRIQ004dlNadHNDWWd1ZDY1RFFqa0ZwTG1jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy8zNDIyM2EtZTc3ZS00NTQ0LWEyMDctZmExNzI1MDM0NDkx
LzEvblRIQ004dlNadHNDWWd1ZDY1RFFqa0ZwTG1jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOtWbxjJf
CN6PQvexud9QnqM3QC5YZl3CTF2KRzKHtf1q9Dff9UwgILMpE5oqBqdua2uJnNra
FiBgsoVMpTY7YUsbkz6z/5u7kWgMa2P5m4b0c9WswBWgefP077hrc1aL6V/f2c5D
i2smq8AzZ31GGrfx1Z/FZKkwLQD12GX85Y4AfePzNhdKrvEuSA5fvdXRgl57OC0R
ChoTT3YhbGpFyXv4osBJMsfixBxkZctl56kXFFYPII20ZhijVcicmBUvXUkfIJXk
SEwS40rO9Xkhmc0aOK3vbnPA+vms3PaeNdEEctaXlkaAxtQQIW+sPUnDLqISZoej
zXgEJP/hIa4JGQ==
-----END CERTIFICATE-----
Generated at Wed Jun 18 11:31:17 2025 by rpki-client