Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
File: iDjoVrInLfF0ulpAqPx9XTAxyso.mft (raw, json)
Hash identifier: jOkKEVr3TtSs8KHscnf0ANxgEVsqvVGTRLIZLsfDAaw=
Subject key identifier: FA:89:84:61:53:DF:DE:CD:EE:8B:77:57:58:EF:3E:E1:05:7C:2B:8A
Authority key identifier: 88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
Certificate issuer: /CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Certificate serial: 01959074344F51BE34B5B6EE370B63A503BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
Manifest number: 0E01
Signing time: Thu 13 Mar 2025 17:01:29 +0000
Manifest this update: Thu 13 Mar 2025 17:01:29 +0000
Manifest next update: Fri 14 Mar 2025 17:01:29 +0000
Files and hashes: 1: OZKug-HD4Xa2ZWdFBgCPcOgskwk.roa (hash: 3+egBPFrVIi/azwFyFARnF9adwzzIgSQuiDCKqIhA8c=)
2: iDjoVrInLfF0ulpAqPx9XTAxyso.crl (hash: Wra5lT/SpJ5I5wSsrSzxhMf+S87ajhi2hTyudKQDUIM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:74:34:4f:51:be:34:b5:b6:ee:37:0b:63:a5:03:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Validity
Not Before: Mar 13 17:01:29 2025 GMT
Not After : Mar 14 17:01:29 2025 GMT
Subject: CN=fa89846153dfdecdee8b775758ef3ee1057c2b8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:72:f7:48:67:ad:c8:48:37:b1:f8:35:bd:13:
6f:d6:f5:87:78:8a:cd:12:1e:62:5c:99:4b:ad:85:
a0:a1:8e:64:67:38:22:d5:34:1c:43:28:96:70:14:
a7:ab:70:c0:a5:b3:f6:c7:cb:0c:a7:c1:df:3c:16:
82:60:b7:07:dd:83:dc:a8:f4:a2:50:e5:34:ae:83:
88:98:8a:8a:7e:08:1d:87:34:44:aa:1e:54:8d:80:
1a:e4:1b:0b:b4:be:a2:02:0c:0a:f2:da:66:09:11:
f3:76:0d:9f:a1:c2:37:89:ff:af:f2:22:63:ab:4c:
a5:9d:14:89:89:f0:4f:87:81:68:bc:e1:cf:41:fe:
e1:ac:47:04:3d:fc:1e:2d:f6:12:1f:6f:21:7e:e5:
2a:8d:ba:8a:3b:c0:f7:9f:98:c0:0b:d0:9a:c3:9a:
86:68:16:72:8b:e6:9d:fc:8d:45:ea:0b:29:74:4d:
e2:72:91:fa:b1:e7:7a:95:f8:05:2a:06:3d:1f:65:
9c:e2:96:b5:1a:5d:f5:18:ac:f5:f2:7d:ea:d2:e6:
3d:1c:15:c4:85:c8:0c:1a:d7:30:eb:5b:65:02:79:
98:89:2b:56:e0:73:6f:62:6e:7e:3b:ba:46:87:d9:
f8:af:4a:0b:9f:21:38:31:f5:a1:7b:65:d2:fc:55:
c3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:89:84:61:53:DF:DE:CD:EE:8B:77:57:58:EF:3E:E1:05:7C:2B:8A
X509v3 Authority Key Identifier:
keyid:88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:91:5e:68:95:87:b0:ad:b7:4f:91:73:47:51:8b:27:c8:95:
69:f7:a0:b4:6d:25:dd:ee:58:a5:9e:63:2b:2b:52:ff:dd:70:
f6:6e:64:ce:35:8c:35:e8:37:b6:ac:63:98:87:8b:35:f3:d2:
42:35:53:c4:6e:ea:da:c7:a4:5b:aa:f1:a2:0d:f2:c1:d3:ff:
9e:d4:da:a4:a4:a2:db:e5:b5:1d:df:52:07:c7:0f:01:a7:e3:
9b:e5:5b:ae:9d:6a:a9:4a:7b:95:66:0f:ea:25:5e:96:8b:17:
69:a3:e3:ee:f2:66:4f:34:ab:5d:f3:2d:a1:0f:c9:62:9d:f0:
1d:d2:9e:c1:e0:4f:81:50:7e:3c:36:61:34:03:43:9e:8e:5f:
ed:cc:c5:df:93:2e:77:29:9a:e2:8a:ff:06:77:fb:5d:25:b9:
9c:98:d9:bc:09:3f:38:a8:2c:e4:79:9c:2e:0f:67:e0:5f:e8:
ca:48:7f:0b:9a:55:dd:32:41:dd:bd:ef:31:c4:cb:a2:f3:ae:
b9:7d:75:e8:c7:c7:d4:0f:59:23:ce:b4:95:b7:89:fc:66:ef:
6d:da:ac:c2:6d:f5:1d:1d:83:a1:5b:75:d5:46:53:c5:a1:8c:
89:0f:38:a2:a3:aa:26:c0:24:43:b6:e1:67:27:04:ca:cc:ec:
89:c4:19:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWQdDRPUb40tbbuNwtjpQO9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4MzhlODU2YjIyNzJkZjE3NGJhNWE0MGE4ZmM3ZDVkMzAz
MWNhY2EwHhcNMjUwMzEzMTcwMTI5WhcNMjUwMzE0MTcwMTI5WjAzMTEwLwYDVQQD
EyhmYTg5ODQ2MTUzZGZkZWNkZWU4Yjc3NTc1OGVmM2VlMTA1N2MyYjhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnXL3SGetyEg3sfg1vRNv1vWHeIrN
Eh5iXJlLrYWgoY5kZzgi1TQcQyiWcBSnq3DApbP2x8sMp8HfPBaCYLcH3YPcqPSi
UOU0roOImIqKfggdhzREqh5UjYAa5BsLtL6iAgwK8tpmCRHzdg2focI3if+v8iJj
q0ylnRSJifBPh4FovOHPQf7hrEcEPfweLfYSH28hfuUqjbqKO8D3n5jAC9Caw5qG
aBZyi+ad/I1F6gspdE3icpH6sed6lfgFKgY9H2Wc4pa1Gl31GKz18n3q0uY9HBXE
hcgMGtcw61tlAnmYiStW4HNvYm5+O7pGh9n4r0oLnyE4MfWhe2XS/FXDqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPqJhGFT397N7ot3V1jvPuEFfCuKMB8GA1UdIwQY
MBaAFIg46FayJy3xdLpaQKj8fV0wMcrKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaURqb1ZySW5MZkYwdWxwQXFQeDlYVEF4eXNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC83ZGEzYTktMzRkZi00OGY4LThhMWIt
MDc5ZTExMWVkYmY5LzEvaURqb1ZySW5MZkYwdWxwQXFQeDlYVEF4eXNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC83ZGEzYTktMzRkZi00OGY4LThhMWItMDc5ZTExMWVkYmY5
LzEvaURqb1ZySW5MZkYwdWxwQXFQeDlYVEF4eXNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQZFeaJWH
sK23T5FzR1GLJ8iVafegtG0l3e5YpZ5jKytS/91w9m5kzjWMNeg3tqxjmIeLNfPS
QjVTxG7q2sekW6rxog3ywdP/ntTapKSi2+W1Hd9SB8cPAafjm+Vbrp1qqUp7lWYP
6iVelosXaaPj7vJmTzSrXfMtoQ/JYp3wHdKeweBPgVB+PDZhNANDno5f7czF35Mu
dyma4or/Bnf7XSW5nJjZvAk/OKgs5HmcLg9n4F/oykh/C5pV3TJB3b3vMcTLovOu
uX116MfH1A9ZI860lbeJ/Gbvbdqswm31HR2DoVt11UZTxaGMiQ84oqOqJsAkQ7bh
ZycEyszsicQZnA==
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:36:31 2025 by rpki-client