Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a1f0a0-439d-4266-a3db-e6b1e986f95f/1/iqR9CPyFIT30_aLPlWG45ovCc9w.mft
File: iqR9CPyFIT30_aLPlWG45ovCc9w.mft (raw, json)
Hash identifier: s2KSLP9Q9iylLFK4T9L/6UnnvXrIIJ8vA0v6Q5nl6fI=
Subject key identifier: EB:07:8C:80:73:97:B2:B6:82:4D:DA:4C:98:0D:94:69:BD:C0:EE:F6
Authority key identifier: 8A:A4:7D:08:FC:85:21:3D:F4:FD:A2:CF:95:61:B8:E6:8B:C2:73:DC
Certificate issuer: /CN=8aa47d08fc85213df4fda2cf9561b8e68bc273dc
Certificate serial: 01974666B0A8D4088BDD3A85E8A086652F48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqR9CPyFIT30_aLPlWG45ovCc9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a1f0a0-439d-4266-a3db-e6b1e986f95f/1/iqR9CPyFIT30_aLPlWG45ovCc9w.mft
Manifest number: 0A0A
Signing time: Fri 06 Jun 2025 18:00:24 +0000
Manifest this update: Fri 06 Jun 2025 18:00:24 +0000
Manifest next update: Sat 07 Jun 2025 18:00:24 +0000
Files and hashes: 1: etKj8JxSADxAtwhWdtAcvp8APJo.roa (hash: hbDx1XXs3wCIknS0MzRqrwmZihS636bz/OW9FAqx/a8=)
2: iqR9CPyFIT30_aLPlWG45ovCc9w.crl (hash: A7zOGqal7qjXVFJBWF+Xkz7LCyoPxG8WxQrJaD3VM/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/a1f0a0-439d-4266-a3db-e6b1e986f95f/1/iqR9CPyFIT30_aLPlWG45ovCc9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/a1f0a0-439d-4266-a3db-e6b1e986f95f/1/iqR9CPyFIT30_aLPlWG45ovCc9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/iqR9CPyFIT30_aLPlWG45ovCc9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:66:b0:a8:d4:08:8b:dd:3a:85:e8:a0:86:65:2f:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aa47d08fc85213df4fda2cf9561b8e68bc273dc
Validity
Not Before: Jun 6 18:00:24 2025 GMT
Not After : Jun 7 18:00:24 2025 GMT
Subject: CN=eb078c807397b2b6824dda4c980d9469bdc0eef6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:17:09:1f:c5:74:97:ed:02:13:84:77:bf:76:
95:e4:fa:ac:53:c9:d1:33:21:7f:95:b9:02:b4:64:
37:72:a6:c3:45:41:f4:4c:25:98:d7:70:cd:73:6d:
22:2b:b4:29:13:b7:a8:d4:ce:48:97:7e:3b:5c:41:
61:19:04:10:80:54:74:91:05:5f:d9:4d:7a:e7:9c:
75:1f:e7:00:9d:5f:f7:32:85:d1:13:b1:7b:b2:16:
2c:f8:2a:a2:d5:ea:f7:44:70:0d:b7:35:62:36:65:
37:47:3c:eb:82:bc:cb:8e:64:88:71:ac:61:10:4a:
97:48:77:a2:17:de:10:8e:be:b7:dc:46:16:37:38:
ca:f0:e3:bd:f4:e4:ec:ba:00:f5:ab:2f:e6:94:c5:
de:df:ea:c8:0d:b5:45:3a:c0:4b:c5:6d:74:6f:6d:
ef:8b:5c:6f:46:d1:be:0a:39:35:a5:cf:eb:18:42:
7c:bc:e4:f7:3e:bf:15:40:b8:3f:f1:d8:34:47:45:
67:69:98:f3:d8:c6:a4:63:05:7d:95:ae:44:94:4b:
91:ee:7b:c3:f9:14:91:d9:cb:9b:32:f2:56:1c:7d:
56:d5:37:a2:a2:ad:3f:45:3f:79:07:a5:da:17:50:
fe:55:a7:e6:ba:57:5f:e7:6b:bf:ff:51:e3:1c:4b:
a5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:07:8C:80:73:97:B2:B6:82:4D:DA:4C:98:0D:94:69:BD:C0:EE:F6
X509v3 Authority Key Identifier:
keyid:8A:A4:7D:08:FC:85:21:3D:F4:FD:A2:CF:95:61:B8:E6:8B:C2:73:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqR9CPyFIT30_aLPlWG45ovCc9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a1f0a0-439d-4266-a3db-e6b1e986f95f/1/iqR9CPyFIT30_aLPlWG45ovCc9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a1f0a0-439d-4266-a3db-e6b1e986f95f/1/iqR9CPyFIT30_aLPlWG45ovCc9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:e8:96:1c:7d:db:52:31:91:1a:d7:83:78:90:26:6d:67:17:
a5:8b:5e:45:9f:5e:05:dd:e8:20:6a:ab:56:20:57:41:bd:be:
f9:3d:b0:fe:e1:c0:a7:d6:78:d7:39:98:34:c4:30:1e:6d:d3:
bd:bd:14:2d:c1:8a:3e:3c:36:1e:cb:0e:17:b1:e7:e6:86:5d:
fc:e2:6c:61:b5:bc:d1:e0:bb:a8:fc:3f:c8:d1:3a:36:a8:05:
07:dc:d0:89:e8:05:3d:9b:ec:93:fc:61:5f:12:20:28:37:66:
e4:3e:0f:0c:44:85:78:3f:26:0c:0f:66:0e:07:d6:d6:f1:0f:
a7:5f:2b:7e:4d:82:38:83:7e:4f:9b:b2:4c:ff:99:03:29:52:
03:4f:0a:7e:28:ab:e2:58:02:bc:36:3e:ae:1e:95:95:88:12:
d1:4b:6c:0f:50:70:c1:88:c0:0c:58:6a:85:d0:55:15:69:29:
17:d9:37:a9:df:f6:cf:98:00:a1:69:19:ac:8d:f9:44:41:c5:
bb:61:30:c6:25:64:ac:13:e5:12:4a:1c:c5:6c:26:60:82:5b:
5c:7b:49:06:0a:df:d5:25:75:98:f4:40:83:60:68:af:c2:69:
7a:98:ce:af:8f:be:50:82:00:01:44:85:a1:b3:c9:98:a8:9e:
7c:48:48:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGZrCo1AiL3TqF6KCGZS9IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhYTQ3ZDA4ZmM4NTIxM2RmNGZkYTJjZjk1NjFiOGU2OGJj
MjczZGMwHhcNMjUwNjA2MTgwMDI0WhcNMjUwNjA3MTgwMDI0WjAzMTEwLwYDVQQD
EyhlYjA3OGM4MDczOTdiMmI2ODI0ZGRhNGM5ODBkOTQ2OWJkYzBlZWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgxcJH8V0l+0CE4R3v3aV5PqsU8nR
MyF/lbkCtGQ3cqbDRUH0TCWY13DNc20iK7QpE7eo1M5Il347XEFhGQQQgFR0kQVf
2U1655x1H+cAnV/3MoXRE7F7shYs+Cqi1er3RHANtzViNmU3RzzrgrzLjmSIcaxh
EEqXSHeiF94Qjr633EYWNzjK8OO99OTsugD1qy/mlMXe3+rIDbVFOsBLxW10b23v
i1xvRtG+Cjk1pc/rGEJ8vOT3Pr8VQLg/8dg0R0VnaZjz2MakYwV9la5ElEuR7nvD
+RSR2cubMvJWHH1W1Teioq0/RT95B6XaF1D+Vafmuldf52u//1HjHEulYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOsHjIBzl7K2gk3aTJgNlGm9wO72MB8GA1UdIwQY
MBaAFIqkfQj8hSE99P2iz5VhuOaLwnPcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXFSOUNQeUZJVDMwX2FMUGxXRzQ1b3ZDYzl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9hMWYwYTAtNDM5ZC00MjY2LWEzZGIt
ZTZiMWU5ODZmOTVmLzEvaXFSOUNQeUZJVDMwX2FMUGxXRzQ1b3ZDYzl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi9hMWYwYTAtNDM5ZC00MjY2LWEzZGItZTZiMWU5ODZmOTVm
LzEvaXFSOUNQeUZJVDMwX2FMUGxXRzQ1b3ZDYzl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgeiWHH3b
UjGRGteDeJAmbWcXpYteRZ9eBd3oIGqrViBXQb2++T2w/uHAp9Z41zmYNMQwHm3T
vb0ULcGKPjw2HssOF7Hn5oZd/OJsYbW80eC7qPw/yNE6NqgFB9zQiegFPZvsk/xh
XxIgKDdm5D4PDESFeD8mDA9mDgfW1vEPp18rfk2COIN+T5uyTP+ZAylSA08Kfiir
4lgCvDY+rh6VlYgS0UtsD1BwwYjADFhqhdBVFWkpF9k3qd/2z5gAoWkZrI35REHF
u2EwxiVkrBPlEkocxWwmYIJbXHtJBgrf1SV1mPRAg2Bor8JpepjOr4++UIIAAUSF
obPJmKiefEhIcA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 02:18:26 2025 by rpki-client