Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft
File: IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft (raw, json)
Hash identifier: cvDCxLh40gtFnx4lLlUOm+JXLSxFzacZKCVDJytT7Fc=
Subject key identifier: 8C:2F:04:EE:A6:5F:8C:97:04:85:C8:0A:8C:90:BA:E9:69:66:C9:23
Authority key identifier: 20:82:0F:79:64:81:AC:0E:96:37:C9:62:41:45:97:B1:FE:22:7C:24
Certificate issuer: /CN=20820f796481ac0e9637c962414597b1fe227c24
Certificate serial: 019657CB51CA6AAC8AA6ABDA972EBF3DE583
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IIIPeWSBrA6WN8liQUWXsf4ifCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft
Manifest number: 11
Signing time: Mon 21 Apr 2025 10:01:04 +0000
Manifest this update: Mon 21 Apr 2025 10:01:04 +0000
Manifest next update: Tue 22 Apr 2025 10:01:04 +0000
Files and hashes: 1: IIIPeWSBrA6WN8liQUWXsf4ifCQ.crl (hash: 19QbzpBpjn4ePnnDfQFiQ0YEr1LhPM0C//jTc84qOcw=)
2: vXv88BHimThnafaryEHozjYrlDI.roa (hash: DV1U9+gs3m5mNc5xoVIc27oNoGuDOyBahRAnw8thlug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IIIPeWSBrA6WN8liQUWXsf4ifCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:cb:51:ca:6a:ac:8a:a6:ab:da:97:2e:bf:3d:e5:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20820f796481ac0e9637c962414597b1fe227c24
Validity
Not Before: Apr 21 10:01:04 2025 GMT
Not After : Apr 22 10:01:04 2025 GMT
Subject: CN=8c2f04eea65f8c970485c80a8c90bae96966c923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e9:32:f2:d7:2a:79:ad:81:36:85:62:a7:7e:
2f:54:ad:65:42:88:e6:bc:9d:03:d4:88:31:06:f7:
bd:65:be:9a:20:78:0d:94:b7:b2:2d:ab:3b:b8:b0:
fd:89:0c:21:27:16:86:84:75:d6:f5:cb:27:d9:e3:
f9:c3:46:bb:6b:84:8d:bc:be:44:7a:c7:67:54:07:
45:d7:c1:55:51:e9:5a:d9:2f:85:7b:af:46:6c:ae:
4b:c8:ca:48:92:6e:4d:01:e6:52:57:9b:a6:78:b3:
f4:fd:ed:55:9b:d7:52:34:96:8a:3a:f9:20:47:15:
ce:4a:c2:1a:b4:05:a0:4a:7c:80:c8:a6:68:ed:6b:
31:b6:49:1f:14:c8:5f:e8:d0:e5:4e:b2:22:6e:b4:
f6:8f:f0:a0:90:fd:99:9d:ea:56:1b:5c:c5:8d:22:
9b:99:8c:2b:94:64:cf:11:dc:02:f9:06:70:02:1f:
14:c3:ea:59:15:51:dc:61:6e:f0:3f:2a:09:a3:f7:
a9:86:02:eb:c7:61:3a:9d:ab:7d:9c:af:64:b2:cf:
83:75:47:d7:f4:50:1c:14:d1:b4:97:ac:86:62:84:
e5:02:c3:8c:1f:36:72:71:bf:b6:3b:c8:04:08:35:
2b:34:ab:5e:0f:35:04:68:6a:9d:af:0b:be:8e:86:
b5:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:2F:04:EE:A6:5F:8C:97:04:85:C8:0A:8C:90:BA:E9:69:66:C9:23
X509v3 Authority Key Identifier:
keyid:20:82:0F:79:64:81:AC:0E:96:37:C9:62:41:45:97:B1:FE:22:7C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IIIPeWSBrA6WN8liQUWXsf4ifCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:66:a6:b4:ab:d3:3a:b3:18:0b:e9:ee:69:1a:48:33:f3:1d:
09:e0:27:c8:84:36:26:8c:e7:17:52:27:85:b4:ad:51:22:4e:
41:70:c4:27:41:ff:ea:63:34:b1:9c:97:cd:22:3e:dd:d3:3d:
97:c3:45:fc:fe:6e:b4:4a:e7:47:9b:42:84:1f:90:64:db:ce:
d1:b1:3f:b2:c8:a4:89:f1:82:84:24:2e:67:1f:db:dd:a9:29:
45:7b:c8:40:40:00:c0:02:68:52:02:d0:4b:d1:44:43:9d:e5:
bf:41:4b:69:54:96:76:fa:a5:a4:fd:fa:53:94:6a:e9:89:d0:
e8:91:95:c1:39:cc:13:eb:dd:c8:56:95:52:af:1d:2a:39:57:
26:84:8c:58:77:26:63:2d:b1:8e:ce:16:63:f9:57:2b:7f:22:
bd:97:d6:f7:e1:51:cb:f8:56:c2:dd:c4:fa:99:89:0c:32:c8:
88:84:f5:4d:2b:77:c0:e2:2f:12:63:6b:15:7f:a0:56:ea:c8:
41:d7:7e:97:48:57:e3:9c:9c:3f:cb:fa:13:fd:fb:37:bd:84:
02:d9:95:fa:d8:23:df:8c:27:55:fc:79:3a:71:51:4c:e9:18:
53:96:c8:a8:87:37:94:63:69:32:36:19:5c:17:48:b3:17:1e:
79:22:d0:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZXy1HKaqyKpqvaly6/PeWDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwODIwZjc5NjQ4MWFjMGU5NjM3Yzk2MjQxNDU5N2IxZmUy
MjdjMjQwHhcNMjUwNDIxMTAwMTA0WhcNMjUwNDIyMTAwMTA0WjAzMTEwLwYDVQQD
Eyg4YzJmMDRlZWE2NWY4Yzk3MDQ4NWM4MGE4YzkwYmFlOTY5NjZjOTIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Oky8tcqea2BNoVip34vVK1lQojm
vJ0D1IgxBve9Zb6aIHgNlLeyLas7uLD9iQwhJxaGhHXW9csn2eP5w0a7a4SNvL5E
esdnVAdF18FVUela2S+Fe69GbK5LyMpIkm5NAeZSV5umeLP0/e1Vm9dSNJaKOvkg
RxXOSsIatAWgSnyAyKZo7WsxtkkfFMhf6NDlTrIibrT2j/CgkP2ZnepWG1zFjSKb
mYwrlGTPEdwC+QZwAh8Uw+pZFVHcYW7wPyoJo/ephgLrx2E6nat9nK9kss+DdUfX
9FAcFNG0l6yGYoTlAsOMHzZycb+2O8gECDUrNKteDzUEaGqdrwu+joa1RQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIwvBO6mX4yXBIXICoyQuulpZskjMB8GA1UdIwQY
MBaAFCCCD3lkgawOljfJYkFFl7H+InwkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUlJUGVXU0JyQTZXTjhsaVFVV1hzZjRpZkNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9iOThiOWYtYjU4MS00ZTNlLWFlOGEt
OTg3ZDg2OTU2NmY2LzEvSUlJUGVXU0JyQTZXTjhsaVFVV1hzZjRpZkNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi9iOThiOWYtYjU4MS00ZTNlLWFlOGEtOTg3ZDg2OTU2NmY2
LzEvSUlJUGVXU0JyQTZXTjhsaVFVV1hzZjRpZkNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHWamtKvT
OrMYC+nuaRpIM/MdCeAnyIQ2JoznF1InhbStUSJOQXDEJ0H/6mM0sZyXzSI+3dM9
l8NF/P5utErnR5tChB+QZNvO0bE/ssikifGChCQuZx/b3akpRXvIQEAAwAJoUgLQ
S9FEQ53lv0FLaVSWdvqlpP36U5Rq6YnQ6JGVwTnME+vdyFaVUq8dKjlXJoSMWHcm
Yy2xjs4WY/lXK38ivZfW9+FRy/hWwt3E+pmJDDLIiIT1TSt3wOIvEmNrFX+gVurI
Qdd+l0hX45ycP8v6E/37N72EAtmV+tgj34wnVfx5OnFRTOkYU5bIqIc3lGNpMjYZ
XBdIsxceeSLQBA==
-----END CERTIFICATE-----
Generated at Mon Apr 21 15:03:03 2025 by rpki-client