Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
File: iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft (raw, json)
Hash identifier: ugnqdlWWV9sReE40UHHRfMb3oT/lbcKFAKdf2I40vsk=
Subject key identifier: E6:58:C1:0C:DA:5F:7A:67:79:4E:CF:5C:AB:52:A7:99:9B:80:6D:EA
Authority key identifier: 89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55
Certificate issuer: /CN=8916aaa5d252fd90145fedac683762d6e2074155
Certificate serial: 01963BAE8E203CAD974A6A626D409C24A3E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
Manifest number: 14F1
Signing time: Tue 15 Apr 2025 23:00:17 +0000
Manifest this update: Tue 15 Apr 2025 23:00:17 +0000
Manifest next update: Wed 16 Apr 2025 23:00:17 +0000
Files and hashes: 1: EJO9ljE1s0Q84FuNpxDY98O5gUs.roa (hash: MidhZCUKLP8FjCtsor/fdefcfGoS6d1va0RAyvBU+x4=)
2: iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl (hash: BsC3c6OfOUf+1kWkDex7KGfaIs5rMopU2pjsz3QaJVI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 15:22:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3b:ae:8e:20:3c:ad:97:4a:6a:62:6d:40:9c:24:a3:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8916aaa5d252fd90145fedac683762d6e2074155
Validity
Not Before: Apr 15 23:00:17 2025 GMT
Not After : Apr 16 23:00:17 2025 GMT
Subject: CN=e658c10cda5f7a67794ecf5cab52a7999b806dea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5d:22:73:64:27:4e:f9:bc:26:3b:0c:42:bd:
c1:f6:f5:2d:38:49:f2:42:2f:b7:3c:d1:6e:67:c8:
21:bd:7b:08:76:ee:51:b1:b2:d1:55:ec:41:cc:f5:
98:94:f3:f0:6a:40:75:c8:6d:60:8b:1e:19:74:5e:
21:76:e1:d5:4b:f3:83:48:df:14:c6:62:e3:ce:ff:
9d:a9:d3:80:8d:8c:f0:5c:93:5f:d7:7c:6b:62:51:
7c:74:a5:dc:4c:1c:9f:14:e6:ff:cc:1a:c3:a3:bd:
1a:0c:47:aa:86:d3:a6:25:e5:8e:11:23:7c:96:c4:
6d:1f:a2:40:9a:26:2c:bf:3e:89:36:18:e7:da:fe:
6a:3a:84:63:0f:81:93:c2:f5:c9:45:e7:6d:1b:54:
f1:ec:58:69:e3:25:58:7b:13:49:91:00:41:26:9b:
c9:ea:68:f6:6b:dd:c5:07:0d:7a:20:45:27:59:5a:
82:6c:e6:97:ef:a7:91:3a:a3:e3:3f:99:37:ba:42:
8a:6b:1c:e8:c2:62:61:52:0a:80:4e:19:3f:32:55:
b9:89:05:da:3b:0c:4c:0c:aa:c7:cc:49:22:63:e4:
7e:d7:c9:43:1d:9f:96:9f:39:f2:69:c8:7f:41:8a:
5e:ec:ff:4e:71:ab:84:6c:2b:64:06:71:eb:5e:54:
e4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:58:C1:0C:DA:5F:7A:67:79:4E:CF:5C:AB:52:A7:99:9B:80:6D:EA
X509v3 Authority Key Identifier:
keyid:89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:16:66:09:ea:02:42:9b:57:49:de:c1:91:e2:c8:39:a3:fc:
3a:0e:91:57:18:3d:99:aa:9b:fb:f5:73:c7:a7:5a:59:67:64:
cd:7e:85:d8:4d:c6:27:1e:44:7d:cc:2e:4f:25:45:0a:63:bb:
ff:85:cd:94:4a:52:4e:07:ca:e5:2d:a4:ad:cc:44:4c:d4:26:
aa:f9:3c:98:af:3d:73:a5:94:37:28:64:30:87:ab:bc:de:2e:
bf:2e:06:56:80:82:c3:91:9a:91:de:03:9b:13:42:03:c7:be:
96:8d:32:4b:0e:5e:51:47:b1:55:0b:a8:69:a9:bd:c5:f5:74:
4e:f3:e4:a8:17:2e:d1:b8:27:ff:8f:2f:3d:82:a4:72:9f:79:
7c:a3:6a:24:8c:5a:2d:ab:cc:74:48:58:a3:19:a5:93:b3:24:
b5:24:a7:e3:d1:85:9a:84:52:6f:da:2a:e7:ce:89:87:ca:fa:
d5:a3:02:df:f8:10:66:90:d2:77:7d:4c:80:bd:74:db:18:f9:
6f:e2:bf:56:cb:83:16:cd:18:76:19:8c:02:11:c2:bf:1d:91:
34:54:f5:d9:f4:85:54:fc:b8:da:ec:ba:3f:a6:c5:92:c9:b6:
95:b7:6d:d0:33:d7:7d:2f:97:49:56:2f:ef:a3:7f:fa:2b:3d:
b7:35:24:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY7ro4gPK2XSmpibUCcJKPiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5MTZhYWE1ZDI1MmZkOTAxNDVmZWRhYzY4Mzc2MmQ2ZTIw
NzQxNTUwHhcNMjUwNDE1MjMwMDE3WhcNMjUwNDE2MjMwMDE3WjAzMTEwLwYDVQQD
EyhlNjU4YzEwY2RhNWY3YTY3Nzk0ZWNmNWNhYjUyYTc5OTliODA2ZGVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm10ic2QnTvm8JjsMQr3B9vUtOEny
Qi+3PNFuZ8ghvXsIdu5RsbLRVexBzPWYlPPwakB1yG1gix4ZdF4hduHVS/ODSN8U
xmLjzv+dqdOAjYzwXJNf13xrYlF8dKXcTByfFOb/zBrDo70aDEeqhtOmJeWOESN8
lsRtH6JAmiYsvz6JNhjn2v5qOoRjD4GTwvXJRedtG1Tx7Fhp4yVYexNJkQBBJpvJ
6mj2a93FBw16IEUnWVqCbOaX76eROqPjP5k3ukKKaxzowmJhUgqAThk/MlW5iQXa
OwxMDKrHzEkiY+R+18lDHZ+Wnznyach/QYpe7P9OcauEbCtkBnHrXlTk7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOZYwQzaX3pneU7PXKtSp5mbgG3qMB8GA1UdIwQY
MBaAFIkWqqXSUv2QFF/trGg3YtbiB0FVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVJhcXBkSlNfWkFVWC0yc2FEZGkxdUlIUVZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS85MDc0MDktNWU2MS00YzY2LTk0ZTYt
ZDY5ZWE5M2NiYWZiLzEvaVJhcXBkSlNfWkFVWC0yc2FEZGkxdUlIUVZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS85MDc0MDktNWU2MS00YzY2LTk0ZTYtZDY5ZWE5M2NiYWZi
LzEvaVJhcXBkSlNfWkFVWC0yc2FEZGkxdUlIUVZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcBZmCeoC
QptXSd7BkeLIOaP8Og6RVxg9maqb+/Vzx6daWWdkzX6F2E3GJx5EfcwuTyVFCmO7
/4XNlEpSTgfK5S2krcxETNQmqvk8mK89c6WUNyhkMIervN4uvy4GVoCCw5Gakd4D
mxNCA8e+lo0ySw5eUUexVQuoaam9xfV0TvPkqBcu0bgn/48vPYKkcp95fKNqJIxa
LavMdEhYoxmlk7MktSSn49GFmoRSb9oq586Jh8r61aMC3/gQZpDSd31MgL102xj5
b+K/VsuDFs0YdhmMAhHCvx2RNFT12fSFVPy42uy6P6bFksm2lbdt0DPXfS+XSVYv
76N/+is9tzUkOw==
-----END CERTIFICATE-----
Generated at Wed Apr 16 00:43:08 2025 by rpki-client