Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
File: IwqhYKbohsED2tvkSyPCd3YFc5E.mft (raw, json)
Hash identifier: LlGRbeNE+f1SUnCincMjYNwucg1qd5cBp7EiCRFRkjE=
Subject key identifier: 79:3F:71:07:F7:B5:94:0E:33:91:0F:FF:82:04:6A:A9:E7:F8:BC:60
Authority key identifier: 23:0A:A1:60:A6:E8:86:C1:03:DA:DB:E4:4B:23:C2:77:76:05:73:91
Certificate issuer: /CN=230aa160a6e886c103dadbe44b23c27776057391
Certificate serial: 01964556A6195AAEC24CE6741C99669997DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
Manifest number: 0C95
Signing time: Thu 17 Apr 2025 20:00:28 +0000
Manifest this update: Thu 17 Apr 2025 20:00:28 +0000
Manifest next update: Fri 18 Apr 2025 20:00:28 +0000
Files and hashes: 1: 1H3wr9EMEu_9kf6Zl38WrkoAkBU.roa (hash: FprWo0wu1rkhWTeCTL4oYKvIo6iA1oIZ1p0P+xAQYGs=)
2: IwqhYKbohsED2tvkSyPCd3YFc5E.crl (hash: +lfks/blVDUqDs2nvJumZ0BQxw7hl37gMb62SjLdx4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:56:a6:19:5a:ae:c2:4c:e6:74:1c:99:66:99:97:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230aa160a6e886c103dadbe44b23c27776057391
Validity
Not Before: Apr 17 20:00:28 2025 GMT
Not After : Apr 18 20:00:28 2025 GMT
Subject: CN=793f7107f7b5940e33910fff82046aa9e7f8bc60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:70:be:1a:26:d2:4b:64:fe:7c:79:cf:ba:73:
c5:01:e0:81:d4:69:93:8a:9c:85:b9:51:e5:f2:97:
4c:7d:62:04:8d:ab:02:2f:42:ce:30:96:9f:5f:41:
80:02:3d:dd:3d:bd:ff:62:1f:64:dc:68:3c:40:29:
db:51:5a:7f:73:ea:d9:80:d0:6a:e4:50:26:60:42:
5c:bb:32:24:ae:d2:b9:7d:90:2f:f7:be:55:38:c7:
6f:42:73:81:0a:03:cf:e3:a4:b0:a7:c4:66:8d:87:
36:ee:ec:bb:49:5f:3c:27:0b:2b:87:3f:06:d1:7d:
9c:d5:44:5d:eb:20:34:9e:3a:9d:cc:9c:55:9c:2f:
47:e6:75:56:fc:e2:74:4d:19:97:46:52:d3:31:3e:
b8:93:1b:ff:7a:6d:f6:56:69:c5:1a:61:52:5c:63:
da:77:bc:b3:42:eb:80:2c:09:a4:9e:fe:5e:b4:22:
25:b9:05:25:fe:68:fe:ac:ee:49:de:d6:f5:c3:92:
1e:f1:0c:78:05:4a:bc:4f:6e:01:cf:71:65:04:1f:
84:05:4b:b1:d9:f6:a4:cd:10:81:fa:0d:23:8d:42:
54:bf:b8:28:c5:00:f9:84:5f:67:67:ae:d1:3d:df:
53:cf:28:d3:86:75:cb:ed:54:31:00:fe:a0:03:16:
84:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:3F:71:07:F7:B5:94:0E:33:91:0F:FF:82:04:6A:A9:E7:F8:BC:60
X509v3 Authority Key Identifier:
keyid:23:0A:A1:60:A6:E8:86:C1:03:DA:DB:E4:4B:23:C2:77:76:05:73:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:90:c4:f2:f6:8e:06:c1:e2:d8:31:b5:c0:0a:b5:f7:7a:cc:
fb:e9:ab:87:88:9e:f8:77:51:69:b3:99:86:bb:8a:e8:1b:0b:
dd:53:0d:e5:9f:da:70:a2:f2:de:5e:d7:3e:09:22:3d:ff:e2:
40:42:c8:c2:17:27:d4:1c:b5:cd:77:13:23:1d:80:6a:d1:4e:
25:1f:f6:aa:05:f1:4b:04:bc:c5:a9:bd:af:a6:c7:2f:de:93:
00:a8:ea:61:d5:c9:4a:4d:29:b3:c9:8d:1b:03:a3:c5:a3:0f:
50:7a:57:34:0a:2b:5f:cd:a6:0f:99:a6:5a:13:3c:d2:59:92:
e4:d9:a4:c1:ab:d8:16:f4:2f:59:9e:d7:5f:64:ae:25:61:5a:
d4:76:07:7a:56:8f:93:fb:7a:bd:75:6b:e2:03:68:c7:19:5e:
e3:3c:41:b3:4a:38:7c:9b:fd:18:be:cd:68:fb:8c:63:6c:67:
fe:c8:d2:91:c9:1d:0b:10:ed:5f:33:2f:79:48:5a:87:2d:e5:
8e:63:20:49:6b:6a:fb:ea:7b:0a:26:8d:78:06:84:3e:de:c6:
ba:f4:c4:98:74:13:03:9b:1c:82:d2:ea:65:3a:ba:5f:c7:a6:
80:63:7c:14:66:52:f6:14:91:5c:03:e3:3d:50:60:81:cc:04:
fe:d1:66:25
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZFVqYZWq7CTOZ0HJlmmZfaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzMGFhMTYwYTZlODg2YzEwM2RhZGJlNDRiMjNjMjc3NzYw
NTczOTEwHhcNMjUwNDE3MjAwMDI4WhcNMjUwNDE4MjAwMDI4WjAzMTEwLwYDVQQD
Eyg3OTNmNzEwN2Y3YjU5NDBlMzM5MTBmZmY4MjA0NmFhOWU3ZjhiYzYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3XC+GibSS2T+fHnPunPFAeCB1GmT
ipyFuVHl8pdMfWIEjasCL0LOMJafX0GAAj3dPb3/Yh9k3Gg8QCnbUVp/c+rZgNBq
5FAmYEJcuzIkrtK5fZAv975VOMdvQnOBCgPP46Swp8RmjYc27uy7SV88Jwsrhz8G
0X2c1URd6yA0njqdzJxVnC9H5nVW/OJ0TRmXRlLTMT64kxv/em32VmnFGmFSXGPa
d7yzQuuALAmknv5etCIluQUl/mj+rO5J3tb1w5Ie8Qx4BUq8T24Bz3FlBB+EBUux
2fakzRCB+g0jjUJUv7goxQD5hF9nZ67RPd9TzyjThnXL7VQxAP6gAxaEswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHk/cQf3tZQOM5EP/4IEaqnn+LxgMB8GA1UdIwQY
MBaAFCMKoWCm6IbBA9rb5Esjwnd2BXORMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXdxaFlLYm9oc0VEMnR2a1N5UENkM1lGYzVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS82ZWI1NGUtZTcwOS00YjdhLWFkZTkt
YTlhZWI0ODVkNTkyLzEvSXdxaFlLYm9oc0VEMnR2a1N5UENkM1lGYzVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS82ZWI1NGUtZTcwOS00YjdhLWFkZTktYTlhZWI0ODVkNTky
LzEvSXdxaFlLYm9oc0VEMnR2a1N5UENkM1lGYzVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkpDE8vaO
BsHi2DG1wAq193rM++mrh4ie+HdRabOZhruK6BsL3VMN5Z/acKLy3l7XPgkiPf/i
QELIwhcn1By1zXcTIx2AatFOJR/2qgXxSwS8xam9r6bHL96TAKjqYdXJSk0ps8mN
GwOjxaMPUHpXNAorX82mD5mmWhM80lmS5NmkwavYFvQvWZ7XX2SuJWFa1HYHelaP
k/t6vXVr4gNoxxle4zxBs0o4fJv9GL7NaPuMY2xn/sjSkckdCxDtXzMveUhahy3l
jmMgSWtq++p7CiaNeAaEPt7GuvTEmHQTA5scgtLqZTq6X8emgGN8FGZS9hSRXAPj
PVBggcwE/tFmJQ==
-----END CERTIFICATE-----
Generated at Thu Apr 17 23:18:05 2025 by rpki-client