Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
File: i8Wo923xVof4NEHJprVUV48831c.mft (raw, json)
Hash identifier: Pf0t3IPscQ5cc7+YTSqfYgaf9Mp793nnDmkGOv6qTAA=
Subject key identifier: 24:83:8D:A3:E7:EA:35:CF:C2:D5:44:EE:72:94:74:4C:87:FC:F0:BA
Authority key identifier: 8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57
Certificate issuer: /CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57
Certificate serial: 01959073F4C370257C3F3DF620365724419B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
Manifest number: 0136
Signing time: Thu 13 Mar 2025 17:01:13 +0000
Manifest this update: Thu 13 Mar 2025 17:01:13 +0000
Manifest next update: Fri 14 Mar 2025 17:01:13 +0000
Files and hashes: 1: i8Wo923xVof4NEHJprVUV48831c.crl (hash: IydLHHd47x2qpGwzmgvzYCADyJRJGTPXIbvG6dm3/44=)
2: xqruQTCgxIM4PNAxf9wXVycyPyQ.roa (hash: hdKTf9nYGB8AkPxxLnuI6L7FG/INFNDmxrZRzLc1Xt0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:73:f4:c3:70:25:7c:3f:3d:f6:20:36:57:24:41:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57
Validity
Not Before: Mar 13 17:01:13 2025 GMT
Not After : Mar 14 17:01:13 2025 GMT
Subject: CN=24838da3e7ea35cfc2d544ee7294744c87fcf0ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6d:15:0e:4a:97:3b:8d:e4:e9:b1:30:ae:95:
c2:6b:82:51:aa:23:12:62:68:b5:c6:f3:e9:a0:98:
83:b5:c5:d4:f2:d7:a5:f5:5a:4a:85:35:be:60:ca:
d2:9a:cb:00:05:e8:ce:7b:01:b0:1e:df:e5:2f:67:
78:4c:f6:4e:7e:87:36:82:01:e7:43:04:11:56:7f:
1a:a8:a6:b6:53:53:79:69:eb:03:df:b1:25:97:f7:
a7:f0:84:52:04:bc:db:a8:ee:dd:6b:07:f9:61:6f:
57:4e:2d:5a:a6:7a:9c:f8:33:b2:f0:73:44:1d:ee:
7b:93:b7:96:e0:2c:d6:ba:ee:73:32:2a:be:a1:ca:
29:6a:d3:4c:14:53:a9:32:3e:c2:a1:e7:c2:2a:9c:
8e:48:52:fe:e4:03:c8:92:e8:36:21:c8:cf:e7:06:
8f:27:39:5c:23:4b:e7:07:33:a1:bb:6d:59:48:b7:
60:10:eb:aa:6a:e4:38:b6:9e:a7:1d:e0:01:ae:16:
aa:74:95:e4:aa:37:f7:0c:e8:6e:13:a5:64:1b:bb:
28:52:93:6f:35:0b:2d:a4:e0:d5:62:6e:7c:87:fc:
02:bb:62:db:2d:e0:c7:80:29:6b:d1:0d:2a:c9:63:
c6:21:01:ec:3f:f4:ef:41:17:64:b5:e8:14:26:e0:
88:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:83:8D:A3:E7:EA:35:CF:C2:D5:44:EE:72:94:74:4C:87:FC:F0:BA
X509v3 Authority Key Identifier:
keyid:8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:67:2a:c8:6e:a6:32:0c:6e:f9:37:00:9b:9d:1a:cf:eb:0a:
5a:8b:cd:ea:95:fd:e1:58:53:91:7c:1f:79:da:70:30:56:46:
c3:af:c6:03:8f:04:e1:e3:72:c8:ab:52:a7:0d:f8:ae:0d:72:
89:ad:5b:ec:de:76:c2:ab:ff:2f:b6:18:35:d0:b8:53:ac:bc:
82:ea:d8:c2:3e:62:82:16:e1:b6:10:fa:ca:20:52:40:cb:34:
31:df:f1:1a:12:e9:fd:74:82:72:d3:c5:60:ad:4d:4c:ee:8a:
07:f8:af:3f:77:f6:50:b5:51:ad:bf:45:f1:20:91:ef:05:bb:
ca:00:68:76:79:f0:85:b6:6a:df:87:bf:95:3f:c7:e5:a4:63:
a7:4c:5e:03:56:ae:8b:03:87:b8:e7:8d:78:a8:86:b5:44:1c:
55:15:5b:2f:41:d4:28:77:52:9c:d5:f7:2c:c1:4b:9f:3e:02:
2c:74:bf:ad:60:c9:79:d4:16:65:fe:e5:dd:3a:49:f7:19:09:
98:ff:17:36:ad:d7:2a:93:f0:e4:14:4b:f5:8c:a1:c0:eb:37:
c0:74:0a:a0:36:ee:9f:57:e9:71:5c:3b:11:c8:a4:9c:4c:5c:
52:39:9b:40:66:e2:8d:49:f7:8a:78:c9:20:90:bf:11:1a:8f:
64:06:be:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWQc/TDcCV8Pz32IDZXJEGbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiYzVhOGY3NmRmMTU2ODdmODM0NDFjOWE2YjU1NDU3OGYz
Y2RmNTcwHhcNMjUwMzEzMTcwMTEzWhcNMjUwMzE0MTcwMTEzWjAzMTEwLwYDVQQD
EygyNDgzOGRhM2U3ZWEzNWNmYzJkNTQ0ZWU3Mjk0NzQ0Yzg3ZmNmMGJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzm0VDkqXO43k6bEwrpXCa4JRqiMS
Ymi1xvPpoJiDtcXU8tel9VpKhTW+YMrSmssABejOewGwHt/lL2d4TPZOfoc2ggHn
QwQRVn8aqKa2U1N5aesD37Ell/en8IRSBLzbqO7dawf5YW9XTi1apnqc+DOy8HNE
He57k7eW4CzWuu5zMiq+ocopatNMFFOpMj7CoefCKpyOSFL+5APIkug2IcjP5waP
JzlcI0vnBzOhu21ZSLdgEOuqauQ4tp6nHeABrhaqdJXkqjf3DOhuE6VkG7soUpNv
NQstpODVYm58h/wCu2LbLeDHgClr0Q0qyWPGIQHsP/TvQRdktegUJuCIGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCSDjaPn6jXPwtVE7nKUdEyH/PC6MB8GA1UdIwQY
MBaAFIvFqPdt8VaH+DRByaa1VFePPN9XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaThXbzkyM3hWb2Y0TkVISnByVlVWNDg4MzFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8yNWU4M2QtMjM2NS00MTI2LTlhYTct
OTRiOWNmMmNkMmVmLzEvaThXbzkyM3hWb2Y0TkVISnByVlVWNDg4MzFjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS8yNWU4M2QtMjM2NS00MTI2LTlhYTctOTRiOWNmMmNkMmVm
LzEvaThXbzkyM3hWb2Y0TkVISnByVlVWNDg4MzFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHGcqyG6m
Mgxu+TcAm50az+sKWovN6pX94VhTkXwfedpwMFZGw6/GA48E4eNyyKtSpw34rg1y
ia1b7N52wqv/L7YYNdC4U6y8gurYwj5ighbhthD6yiBSQMs0Md/xGhLp/XSCctPF
YK1NTO6KB/ivP3f2ULVRrb9F8SCR7wW7ygBodnnwhbZq34e/lT/H5aRjp0xeA1au
iwOHuOeNeKiGtUQcVRVbL0HUKHdSnNX3LMFLnz4CLHS/rWDJedQWZf7l3TpJ9xkJ
mP8XNq3XKpPw5BRL9YyhwOs3wHQKoDbun1fpcVw7EciknExcUjmbQGbijUn3injJ
IJC/ERqPZAa+jg==
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:24:18 2025 by rpki-client