Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft
File: ihzh0TW_LPjowT8z7BHIUjcD3HU.mft (raw, json)
Hash identifier: Hp2xed4zP5+Kp6icdolmFY3oZtUNpXbhFch5vZUSwnk=
Subject key identifier: 4C:42:1B:78:7A:07:05:76:13:A4:20:CE:88:59:EB:2E:CE:CC:C8:05
Authority key identifier: 8A:1C:E1:D1:35:BF:2C:F8:E8:C1:3F:33:EC:11:C8:52:37:03:DC:75
Certificate issuer: /CN=8a1ce1d135bf2cf8e8c13f33ec11c8523703dc75
Certificate serial: 0197470BAD19182C88B44873A7619E295C29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft
Manifest number: 146E
Signing time: Fri 06 Jun 2025 21:00:36 +0000
Manifest this update: Fri 06 Jun 2025 21:00:36 +0000
Manifest next update: Sat 07 Jun 2025 21:00:36 +0000
Files and hashes: 1: 0bVvhAd6bRTtpMiMWU5m6m_mX6s.roa (hash: k+FefGaNlibbtGtr5Aq6DThKW8SPKZcgwMtTZ3i/xpM=)
2: 2L9tST2xxsB46ZV-Wm7-7d0Z8Yc.roa (hash: 2H+U81Sea1KvCbnxcSszHg71YCfhD1GEm2cdKStIW6w=)
3: ihzh0TW_LPjowT8z7BHIUjcD3HU.crl (hash: jhDypaui01wVTxJ5mz7ejrc+1rHNealmbB9IYGlQ3jI=)
4: tAGqHWpkQw0giajHMwWi-gQSCPY.roa (hash: dkPgoKFrLMzVm5FMtr3H3ipENsq7fpzYhSx+TXox0zc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:ad:19:18:2c:88:b4:48:73:a7:61:9e:29:5c:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a1ce1d135bf2cf8e8c13f33ec11c8523703dc75
Validity
Not Before: Jun 6 21:00:36 2025 GMT
Not After : Jun 7 21:00:36 2025 GMT
Subject: CN=4c421b787a07057613a420ce8859eb2ececcc805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8f:83:d7:ba:6b:83:6d:ff:2a:88:ba:f0:d4:
5a:1d:6d:53:5c:71:dd:f6:c7:ab:27:9f:cb:d0:b7:
20:d8:82:74:da:84:ea:fa:be:9b:48:56:9a:f7:eb:
a7:93:66:bf:7a:df:45:c8:f8:75:b9:73:cf:63:c2:
fc:e0:e8:89:f6:a5:78:e6:f5:3e:88:40:e8:05:d3:
2d:9c:99:d8:51:dd:60:81:28:b6:40:b1:e1:d3:6d:
de:4d:e0:be:75:17:ec:20:2f:e3:ad:c7:65:29:a5:
66:13:d9:88:60:69:d4:e9:f8:94:2f:a7:3b:f7:b8:
2b:bf:93:a5:e7:c9:0d:dd:95:30:13:57:eb:3a:6f:
6b:5d:06:ff:a2:71:1a:48:0e:79:25:92:79:77:2a:
03:8e:23:d1:2a:42:65:55:05:16:fe:83:03:d0:ab:
7b:49:7b:47:46:72:23:b4:e3:30:ef:4d:a8:51:49:
79:31:0f:28:b8:31:b4:90:12:58:ae:a2:c6:fa:38:
b1:98:62:0d:8c:da:20:45:57:7b:84:c9:b5:b7:e9:
69:aa:3b:ad:58:57:1d:d6:ed:32:f7:b4:f9:b8:fd:
82:cb:fc:bd:fd:d0:8e:b9:20:26:73:01:f6:59:9d:
d8:f8:95:b9:aa:a1:36:85:aa:5d:e2:fa:22:6e:66:
20:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:42:1B:78:7A:07:05:76:13:A4:20:CE:88:59:EB:2E:CE:CC:C8:05
X509v3 Authority Key Identifier:
keyid:8A:1C:E1:D1:35:BF:2C:F8:E8:C1:3F:33:EC:11:C8:52:37:03:DC:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:39:0c:c0:e8:69:47:59:ae:36:aa:e5:ff:4d:73:05:a0:73:
e5:92:ed:45:68:44:72:d7:82:16:ea:a2:59:99:d0:3f:fe:74:
09:31:ff:f5:9f:63:ba:28:5c:bb:fc:f1:89:c0:61:6f:ca:60:
f5:5a:ed:ee:a7:58:16:6b:c5:dd:18:6e:14:b5:dc:87:5f:e2:
84:8d:26:09:cf:38:23:4e:38:60:5e:a9:91:37:b0:17:9c:b2:
33:f6:8c:b5:83:63:63:94:f2:61:23:13:08:a4:ef:d8:09:62:
37:4d:db:62:b9:7a:c0:fc:64:ca:a1:9a:11:34:81:28:51:49:
aa:7d:96:6d:4b:55:5a:a4:27:d3:11:c1:10:48:b0:da:ad:7c:
00:0d:d0:9d:bf:d3:e7:1f:18:e1:a2:b0:af:18:98:81:1e:dd:
15:c3:12:70:a4:df:df:47:d7:21:07:ba:36:71:fc:9f:9c:f9:
b5:88:d0:63:67:1e:8e:78:c8:4d:10:8d:b3:00:bc:fe:6d:3c:
ce:4a:5f:36:d5:b3:06:f5:fb:0a:fa:79:1e:a1:4c:65:8b:68:
65:63:f2:ce:e4:cc:ae:e9:7e:ef:27:2a:c2:c8:0f:86:f7:1b:
e6:c2:50:cb:88:b7:b7:f0:05:b5:90:0d:66:2b:67:b5:00:31:
08:ce:44:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdHC60ZGCyItEhzp2GeKVwpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhMWNlMWQxMzViZjJjZjhlOGMxM2YzM2VjMTFjODUyMzcw
M2RjNzUwHhcNMjUwNjA2MjEwMDM2WhcNMjUwNjA3MjEwMDM2WjAzMTEwLwYDVQQD
Eyg0YzQyMWI3ODdhMDcwNTc2MTNhNDIwY2U4ODU5ZWIyZWNlY2NjODA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0I+D17prg23/Koi68NRaHW1TXHHd
9serJ5/L0Lcg2IJ02oTq+r6bSFaa9+unk2a/et9FyPh1uXPPY8L84OiJ9qV45vU+
iEDoBdMtnJnYUd1ggSi2QLHh023eTeC+dRfsIC/jrcdlKaVmE9mIYGnU6fiUL6c7
97grv5Ol58kN3ZUwE1frOm9rXQb/onEaSA55JZJ5dyoDjiPRKkJlVQUW/oMD0Kt7
SXtHRnIjtOMw702oUUl5MQ8ouDG0kBJYrqLG+jixmGINjNogRVd7hMm1t+lpqjut
WFcd1u0y97T5uP2Cy/y9/dCOuSAmcwH2WZ3Y+JW5qqE2hapd4voibmYgVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFExCG3h6BwV2E6QgzohZ6y7OzMgFMB8GA1UdIwQY
MBaAFIoc4dE1vyz46ME/M+wRyFI3A9x1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWh6aDBUV19MUGpvd1Q4ejdCSElVamNEM0hVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9kYWY5NjAtZDA2MC00OWZjLWFmNDIt
ZGVlMjkyZWE4N2EzLzEvaWh6aDBUV19MUGpvd1Q4ejdCSElVamNEM0hVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9kYWY5NjAtZDA2MC00OWZjLWFmNDItZGVlMjkyZWE4N2Ez
LzEvaWh6aDBUV19MUGpvd1Q4ejdCSElVamNEM0hVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYDkMwOhp
R1muNqrl/01zBaBz5ZLtRWhEcteCFuqiWZnQP/50CTH/9Z9juihcu/zxicBhb8pg
9Vrt7qdYFmvF3RhuFLXch1/ihI0mCc84I044YF6pkTewF5yyM/aMtYNjY5TyYSMT
CKTv2AliN03bYrl6wPxkyqGaETSBKFFJqn2WbUtVWqQn0xHBEEiw2q18AA3Qnb/T
5x8Y4aKwrxiYgR7dFcMScKTf30fXIQe6NnH8n5z5tYjQY2cejnjITRCNswC8/m08
zkpfNtWzBvX7Cvp5HqFMZYtoZWPyzuTMrul+7ycqwsgPhvcb5sJQy4i3t/AFtZAN
ZitntQAxCM5ENA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:17:41 2025 by rpki-client