Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.mft
File: NkITiw7v_lajLMuqWNb_5u3D8p4.mft (raw, json)
Hash identifier: KMqkMp+5V5hPQjdU2N622CDbudOQlciRToxuTovx3To=
Subject key identifier: CD:8C:E7:09:E9:D4:23:55:E2:5C:7F:F8:0F:E5:4D:95:31:46:61:D9
Authority key identifier: 36:42:13:8B:0E:EF:FE:56:A3:2C:CB:AA:58:D6:FF:E6:ED:C3:F2:9E
Certificate issuer: /CN=3642138b0eeffe56a32ccbaa58d6ffe6edc3f29e
Certificate serial: 01977309C0B7801100D67E25C823AA4E11A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NkITiw7v_lajLMuqWNb_5u3D8p4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.mft
Manifest number: 0496
Signing time: Sun 15 Jun 2025 10:01:48 +0000
Manifest this update: Sun 15 Jun 2025 10:01:48 +0000
Manifest next update: Mon 16 Jun 2025 10:01:48 +0000
Files and hashes: 1: NkITiw7v_lajLMuqWNb_5u3D8p4.crl (hash: i5WoYs1MXVyGcfXi5JiheSdq2Aj/5DThUSEJqlIlgDQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NkITiw7v_lajLMuqWNb_5u3D8p4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:73:09:c0:b7:80:11:00:d6:7e:25:c8:23:aa:4e:11:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3642138b0eeffe56a32ccbaa58d6ffe6edc3f29e
Validity
Not Before: Jun 15 10:01:48 2025 GMT
Not After : Jun 16 10:01:48 2025 GMT
Subject: CN=cd8ce709e9d42355e25c7ff80fe54d95314661d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f2:7e:15:28:8f:93:1c:47:b9:85:b5:92:f7:
aa:77:46:72:c6:b3:8f:c3:48:6e:78:e4:66:5a:29:
04:3a:f4:3e:76:40:20:62:4d:c3:6a:0e:8f:5e:04:
b1:02:bd:81:50:c1:42:ee:a3:0c:3a:20:9b:d0:18:
b8:28:c0:e9:ba:85:24:98:c7:79:7d:f0:4a:32:4a:
bf:e3:a0:e8:47:0b:84:3c:14:55:b1:9c:62:8a:71:
44:ac:35:47:19:dd:bf:82:da:fc:82:13:93:69:87:
be:1f:a9:5f:ec:f1:16:56:95:14:3c:ea:75:48:08:
25:9f:50:f7:4b:68:38:54:52:2a:80:59:fb:8e:f0:
67:cd:e3:a5:76:a9:83:53:e4:61:d7:31:16:b8:44:
82:05:84:87:61:60:17:6a:d6:35:0a:bb:03:a3:b0:
99:59:d1:ab:35:9a:8e:54:3e:3c:29:c2:36:50:6d:
48:10:bb:92:ab:00:57:e0:52:bd:91:c4:f4:fa:0d:
ca:e5:bc:87:3a:01:9b:d6:0c:55:8c:5e:76:f8:b8:
62:2c:ec:75:21:e0:86:a1:86:8e:44:6a:ab:59:da:
5b:43:e1:2b:c7:d0:ed:1c:27:eb:89:58:80:af:7b:
7a:d8:07:7a:9c:ba:de:d7:68:c0:fa:5e:cd:db:13:
e8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:8C:E7:09:E9:D4:23:55:E2:5C:7F:F8:0F:E5:4D:95:31:46:61:D9
X509v3 Authority Key Identifier:
keyid:36:42:13:8B:0E:EF:FE:56:A3:2C:CB:AA:58:D6:FF:E6:ED:C3:F2:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NkITiw7v_lajLMuqWNb_5u3D8p4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4b5cf1-4320-44c2-9358-e07f959356a1/1/NkITiw7v_lajLMuqWNb_5u3D8p4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:db:3d:b8:79:ba:c8:c2:7f:98:98:ea:23:98:d6:b6:68:91:
66:9f:9d:64:dc:b7:71:46:64:a3:2c:5c:a9:75:02:69:28:55:
d8:ba:d9:e4:89:41:28:d4:1b:9f:d8:c7:cb:fa:17:8d:54:95:
62:d4:8c:cd:4d:cb:17:92:c0:07:5c:2e:a6:19:25:f4:ed:fb:
3b:ec:60:18:e2:5d:26:10:06:d5:8e:01:ba:81:4f:a6:e7:ad:
65:35:db:37:65:3e:e2:d6:87:3c:6c:7e:3f:4a:13:fd:99:ac:
f8:f3:87:9a:e0:3c:d5:2c:65:f7:18:85:fb:7e:c7:fc:8f:68:
ab:62:0e:b3:e0:b7:22:a3:97:9f:b9:48:a5:c7:c4:b8:9b:6e:
1e:9b:51:f6:ff:e7:98:3f:69:f5:a1:e6:5f:8e:23:10:12:07:
24:f4:7c:c4:e3:fb:c5:ab:70:81:d1:e3:0b:62:4c:f9:4f:de:
1d:e2:e9:5e:51:e7:32:aa:5d:a2:d4:3b:7c:59:24:18:e0:70:
7a:2b:9f:91:a8:48:13:a7:8a:76:d3:a7:e3:0e:35:af:b7:b7:
5f:4a:d1:93:17:89:10:4c:01:1b:26:f1:f0:8e:2f:39:0b:1f:
bd:43:cd:3e:8a:46:90:8a:61:a3:12:ff:f0:bd:9b:7c:28:dc:
88:e2:ce:b9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdzCcC3gBEA1n4lyCOqThGpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2NDIxMzhiMGVlZmZlNTZhMzJjY2JhYTU4ZDZmZmU2ZWRj
M2YyOWUwHhcNMjUwNjE1MTAwMTQ4WhcNMjUwNjE2MTAwMTQ4WjAzMTEwLwYDVQQD
EyhjZDhjZTcwOWU5ZDQyMzU1ZTI1YzdmZjgwZmU1NGQ5NTMxNDY2MWQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlvJ+FSiPkxxHuYW1kveqd0ZyxrOP
w0hueORmWikEOvQ+dkAgYk3Dag6PXgSxAr2BUMFC7qMMOiCb0Bi4KMDpuoUkmMd5
ffBKMkq/46DoRwuEPBRVsZxiinFErDVHGd2/gtr8ghOTaYe+H6lf7PEWVpUUPOp1
SAgln1D3S2g4VFIqgFn7jvBnzeOldqmDU+Rh1zEWuESCBYSHYWAXatY1CrsDo7CZ
WdGrNZqOVD48KcI2UG1IELuSqwBX4FK9kcT0+g3K5byHOgGb1gxVjF52+LhiLOx1
IeCGoYaORGqrWdpbQ+Erx9DtHCfriViAr3t62Ad6nLre12jA+l7N2xPo2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM2M5wnp1CNV4lx/+A/lTZUxRmHZMB8GA1UdIwQY
MBaAFDZCE4sO7/5WoyzLqljW/+btw/KeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmtJVGl3N3ZfbGFqTE11cVdOYl81dTNEOHA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS80YjVjZjEtNDMyMC00NGMyLTkzNTgt
ZTA3Zjk1OTM1NmExLzEvTmtJVGl3N3ZfbGFqTE11cVdOYl81dTNEOHA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS80YjVjZjEtNDMyMC00NGMyLTkzNTgtZTA3Zjk1OTM1NmEx
LzEvTmtJVGl3N3ZfbGFqTE11cVdOYl81dTNEOHA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAANs9uHm6
yMJ/mJjqI5jWtmiRZp+dZNy3cUZkoyxcqXUCaShV2LrZ5IlBKNQbn9jHy/oXjVSV
YtSMzU3LF5LAB1wuphkl9O37O+xgGOJdJhAG1Y4BuoFPpuetZTXbN2U+4taHPGx+
P0oT/Zms+POHmuA81Sxl9xiF+37H/I9oq2IOs+C3IqOXn7lIpcfEuJtuHptR9v/n
mD9p9aHmX44jEBIHJPR8xOP7xatwgdHjC2JM+U/eHeLpXlHnMqpdotQ7fFkkGOBw
eiufkahIE6eKdtOn4w41r7e3X0rRkxeJEEwBGybx8I4vOQsfvUPNPopGkIphoxL/
8L2bfCjciOLOuQ==
-----END CERTIFICATE-----
Generated at Sun Jun 15 13:11:45 2025 by rpki-client