Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
File: iDjoVrInLfF0ulpAqPx9XTAxyso.mft (raw, json)
Hash identifier: i1QVCHLXiUbxjk/ThUqdwy4YGfa3LsgVMd9R+wgtlqw=
Subject key identifier: AF:46:DF:F0:69:F3:CD:49:C9:2F:18:70:79:30:32:65:3D:60:5A:15
Authority key identifier: 88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
Certificate issuer: /CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Certificate serial: 01964DB4CBF6F7E0774B0BE8245C8B11C42C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
Manifest number: 0E63
Signing time: Sat 19 Apr 2025 11:00:16 +0000
Manifest this update: Sat 19 Apr 2025 11:00:16 +0000
Manifest next update: Sun 20 Apr 2025 11:00:16 +0000
Files and hashes: 1: OZKug-HD4Xa2ZWdFBgCPcOgskwk.roa (hash: 3+egBPFrVIi/azwFyFARnF9adwzzIgSQuiDCKqIhA8c=)
2: iDjoVrInLfF0ulpAqPx9XTAxyso.crl (hash: 2MXo44AvqURmkSb/WjTBToilmOdyEqJSGvb7TmASfEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:b4:cb:f6:f7:e0:77:4b:0b:e8:24:5c:8b:11:c4:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Validity
Not Before: Apr 19 11:00:16 2025 GMT
Not After : Apr 20 11:00:16 2025 GMT
Subject: CN=af46dff069f3cd49c92f1870793032653d605a15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3c:56:d5:27:71:4f:2c:07:4c:23:13:34:8c:
ee:ac:0a:9c:14:03:7a:e4:74:f1:38:a1:a3:54:63:
25:95:8e:1b:01:dc:91:aa:15:98:46:87:93:8f:18:
cf:4c:e4:5e:22:96:80:01:2d:6a:18:ef:78:7e:37:
8f:89:89:5d:dc:be:31:a9:2a:2d:b7:cc:11:38:11:
15:74:38:4e:6f:cd:a8:22:41:17:52:66:c2:5b:ac:
69:10:b9:1b:f7:71:09:b2:0b:db:41:4c:ab:67:35:
a7:f4:25:26:9c:a9:ba:72:f9:b5:99:b3:aa:6f:b4:
a3:df:d5:64:a5:44:fd:68:15:1c:df:88:ce:48:f5:
54:66:73:0b:e9:27:fe:06:c8:a8:95:b5:1e:fd:4f:
12:d8:d4:db:e1:83:9e:39:a1:3c:6e:49:a5:41:2e:
e2:91:1d:11:6f:df:61:7f:47:e9:7e:d1:7a:0e:90:
17:0d:3c:5b:e9:63:66:b5:59:d4:86:f1:28:2d:f4:
d9:e1:78:95:23:73:c3:8d:04:d6:2e:ac:7f:95:71:
8f:1f:ee:70:6d:19:31:0a:6a:29:0a:7f:d6:de:41:
5c:17:12:d3:0e:c2:b9:54:df:45:f2:c5:71:10:36:
10:56:20:ef:18:15:ba:8a:5c:5d:9e:14:c8:a3:de:
1b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:46:DF:F0:69:F3:CD:49:C9:2F:18:70:79:30:32:65:3D:60:5A:15
X509v3 Authority Key Identifier:
keyid:88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:0b:7d:ce:76:c7:b7:7b:29:85:1f:20:f3:33:31:b6:65:19:
95:79:ee:56:88:7b:96:4b:5c:65:a8:05:5e:69:b8:5c:ca:4e:
0a:c8:9a:16:ed:bd:9c:1d:a2:f3:4a:dd:f3:93:3f:55:a5:ee:
65:39:5f:6f:37:60:f3:bd:92:4e:73:14:e8:f9:4b:31:47:2c:
d9:b1:00:39:4b:0e:c5:15:d0:86:9e:8d:12:6a:77:fc:e0:9d:
33:ab:dd:21:ac:db:32:4d:1a:a1:b4:80:0d:ff:9a:c7:32:fc:
ff:2e:22:6b:86:5b:5e:e5:05:54:97:3c:89:70:ce:28:eb:9a:
8d:dd:76:fb:b9:1a:c6:45:e4:40:8a:2c:58:dc:83:ba:1a:22:
a9:e3:ce:10:0c:5b:29:4f:4b:d1:a8:d2:72:d2:a0:77:dd:b1:
71:35:06:bd:5f:95:a6:85:10:d9:79:41:35:ad:8d:c7:f6:89:
46:46:26:f4:44:ae:1c:43:29:77:65:38:1f:ac:5c:8f:7d:a8:
c8:68:60:05:d3:c3:f4:bc:59:38:70:74:a4:e0:7a:83:e8:ac:
68:57:16:ee:3a:94:34:26:3f:62:03:a6:4b:d3:96:4b:cc:c4:
14:73:ef:cf:d5:3d:36:a9:35:68:65:ae:15:9b:ff:7f:91:63:
f9:7a:57:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZNtMv29+B3SwvoJFyLEcQsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4MzhlODU2YjIyNzJkZjE3NGJhNWE0MGE4ZmM3ZDVkMzAz
MWNhY2EwHhcNMjUwNDE5MTEwMDE2WhcNMjUwNDIwMTEwMDE2WjAzMTEwLwYDVQQD
EyhhZjQ2ZGZmMDY5ZjNjZDQ5YzkyZjE4NzA3OTMwMzI2NTNkNjA1YTE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyDxW1SdxTywHTCMTNIzurAqcFAN6
5HTxOKGjVGMllY4bAdyRqhWYRoeTjxjPTOReIpaAAS1qGO94fjePiYld3L4xqSot
t8wROBEVdDhOb82oIkEXUmbCW6xpELkb93EJsgvbQUyrZzWn9CUmnKm6cvm1mbOq
b7Sj39VkpUT9aBUc34jOSPVUZnML6Sf+BsiolbUe/U8S2NTb4YOeOaE8bkmlQS7i
kR0Rb99hf0fpftF6DpAXDTxb6WNmtVnUhvEoLfTZ4XiVI3PDjQTWLqx/lXGPH+5w
bRkxCmopCn/W3kFcFxLTDsK5VN9F8sVxEDYQViDvGBW6ilxdnhTIo94bWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK9G3/Bp881JyS8YcHkwMmU9YFoVMB8GA1UdIwQY
MBaAFIg46FayJy3xdLpaQKj8fV0wMcrKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaURqb1ZySW5MZkYwdWxwQXFQeDlYVEF4eXNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC83ZGEzYTktMzRkZi00OGY4LThhMWIt
MDc5ZTExMWVkYmY5LzEvaURqb1ZySW5MZkYwdWxwQXFQeDlYVEF4eXNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC83ZGEzYTktMzRkZi00OGY4LThhMWItMDc5ZTExMWVkYmY5
LzEvaURqb1ZySW5MZkYwdWxwQXFQeDlYVEF4eXNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlAt9znbH
t3sphR8g8zMxtmUZlXnuVoh7lktcZagFXmm4XMpOCsiaFu29nB2i80rd85M/VaXu
ZTlfbzdg872STnMU6PlLMUcs2bEAOUsOxRXQhp6NEmp3/OCdM6vdIazbMk0aobSA
Df+axzL8/y4ia4ZbXuUFVJc8iXDOKOuajd12+7kaxkXkQIosWNyDuhoiqePOEAxb
KU9L0ajSctKgd92xcTUGvV+VpoUQ2XlBNa2Nx/aJRkYm9ESuHEMpd2U4H6xcj32o
yGhgBdPD9LxZOHB0pOB6g+isaFcW7jqUNCY/YgOmS9OWS8zEFHPvz9U9Nqk1aGWu
FZv/f5Fj+XpXQA==
-----END CERTIFICATE-----
Generated at Sat Apr 19 14:52:14 2025 by rpki-client