Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json)
Hash identifier: 0qf40FRJ+YhIy18nVdY1zCm60yrbJV7nyzAaIJcBsNs=
Subject key identifier: 35:35:8F:26:C3:B4:8B:DE:58:FC:E4:B4:89:D5:F0:B2:99:37:83:62
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 01961245533EAD25206CB5439B8083AB7AF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
Manifest number: 08C3
Signing time: Mon 07 Apr 2025 22:00:55 +0000
Manifest this update: Mon 07 Apr 2025 22:00:55 +0000
Manifest next update: Tue 08 Apr 2025 22:00:55 +0000
Files and hashes: 1: RZMmAomJrqs0yCU-Sl6pSFt5lLQ.roa (hash: mHTuz89sEZswLAvVyf4aCavMINMyLcZOi1mRW8tq0vE=)
2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: nwkUGBkfypHt0EwX1JY0TGqpMRgpXmaUtuH+rfqmgKQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 22:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:12:45:53:3e:ad:25:20:6c:b5:43:9b:80:83:ab:7a:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: Apr 7 22:00:55 2025 GMT
Not After : Apr 8 22:00:55 2025 GMT
Subject: CN=35358f26c3b48bde58fce4b489d5f0b299378362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:54:83:78:4b:44:c9:bf:eb:6a:8d:dd:b1:f4:
07:a1:e7:42:05:2e:1d:f2:c3:8f:a7:60:52:9e:3e:
20:23:d9:96:c0:1c:ed:a5:89:34:cc:37:3d:b8:87:
37:c0:1f:92:83:ed:fa:d2:d6:b3:92:4c:94:15:7c:
3a:b5:cb:b6:72:6e:f3:ae:b4:b4:54:0e:d1:cc:66:
f9:f4:17:27:de:37:6b:e7:98:ae:3f:1c:7e:f5:85:
02:76:d1:ea:6b:80:cb:c8:f4:c7:d1:7b:1f:5e:a9:
22:fc:a3:3a:41:ed:bb:84:25:51:06:df:bc:5a:35:
3a:ba:cd:9f:da:0e:7d:7f:e6:de:5e:d1:d2:d6:6e:
95:e6:51:ee:f1:86:f8:52:b2:d1:55:3b:46:d9:8a:
07:cc:17:09:90:26:18:6f:5c:d1:cf:46:dd:38:c5:
69:03:99:3e:b8:3a:65:24:56:e4:97:9b:d3:93:39:
1f:ab:12:38:a1:98:32:fc:cf:b1:f4:0f:04:76:32:
ec:36:f1:8a:0c:1b:8a:8b:fa:59:45:08:98:41:38:
ba:eb:c2:ae:45:74:4f:d7:ae:2e:3e:21:83:e0:23:
45:aa:93:0c:b9:ad:70:30:9f:0a:28:d5:91:c0:e9:
bd:a1:48:e2:0b:9a:5a:b1:51:dc:0c:ef:93:53:85:
30:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:35:8F:26:C3:B4:8B:DE:58:FC:E4:B4:89:D5:F0:B2:99:37:83:62
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:ed:dd:1e:76:a5:9b:bf:9d:76:45:e9:f3:88:f8:f8:92:69:
7d:da:f0:a2:82:3d:c9:f7:44:d7:39:61:8a:e7:d6:91:6e:6c:
1b:f0:00:0a:25:0c:4c:75:4b:98:7e:f6:9a:60:d6:52:ef:07:
2c:6d:3d:28:e1:a4:dc:48:62:85:da:4f:5c:1e:91:53:8d:e4:
13:9f:b1:5a:1c:5c:fa:88:8d:c0:be:19:14:d1:e6:64:6c:89:
74:e9:f5:4b:38:d7:9f:a5:e6:4d:ef:61:8a:86:04:e7:0a:12:
1c:25:51:22:17:4f:ee:96:40:ad:ad:fe:bf:69:17:6d:54:46:
e6:80:a5:d2:e0:39:05:72:05:bb:48:42:2e:c9:e1:93:cb:8c:
c3:5a:0c:88:e7:81:f6:33:23:10:78:6f:c3:29:fe:4d:0c:24:
5f:25:c3:83:dc:e5:dd:5b:2f:64:55:b3:8a:d0:a4:36:fc:1d:
7e:c0:3d:b4:f6:ae:70:7d:f3:4c:4a:52:95:5b:b5:64:20:95:
65:ce:06:51:94:52:07:6b:da:78:13:b8:a0:f3:fd:b5:a1:c7:
f6:15:20:14:de:f5:30:6d:da:a4:4f:ec:12:34:b0:73:2f:72:
35:70:e9:83:a3:5f:1b:ec:1d:a8:ad:66:92:72:34:87:a9:f1:
d0:fd:43:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYSRVM+rSUgbLVDm4CDq3ryMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhZjdmMzJkMzNmNjY0Njc3OWE1MWZiMjMyMDFjNjQ0MmQx
NDUxY2EwHhcNMjUwNDA3MjIwMDU1WhcNMjUwNDA4MjIwMDU1WjAzMTEwLwYDVQQD
EygzNTM1OGYyNmMzYjQ4YmRlNThmY2U0YjQ4OWQ1ZjBiMjk5Mzc4MzYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFSDeEtEyb/rao3dsfQHoedCBS4d
8sOPp2BSnj4gI9mWwBztpYk0zDc9uIc3wB+Sg+360tazkkyUFXw6tcu2cm7zrrS0
VA7RzGb59Bcn3jdr55iuPxx+9YUCdtHqa4DLyPTH0XsfXqki/KM6Qe27hCVRBt+8
WjU6us2f2g59f+beXtHS1m6V5lHu8Yb4UrLRVTtG2YoHzBcJkCYYb1zRz0bdOMVp
A5k+uDplJFbkl5vTkzkfqxI4oZgy/M+x9A8EdjLsNvGKDBuKi/pZRQiYQTi668Ku
RXRP164uPiGD4CNFqpMMua1wMJ8KKNWRwOm9oUjiC5pasVHcDO+TU4UwHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDU1jybDtIveWPzktInV8LKZN4NiMB8GA1UdIwQY
MBaAFIr38y0z9mRneaUfsjIBxkQtFFHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9hZmZjYmItYzFiMy00NDRhLTg3NmMt
NWI3MmZiOTI3ZDFjLzEvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9hZmZjYmItYzFiMy00NDRhLTg3NmMtNWI3MmZiOTI3ZDFj
LzEvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJe3dHnal
m7+ddkXp84j4+JJpfdrwooI9yfdE1zlhiufWkW5sG/AACiUMTHVLmH72mmDWUu8H
LG09KOGk3EhihdpPXB6RU43kE5+xWhxc+oiNwL4ZFNHmZGyJdOn1SzjXn6XmTe9h
ioYE5woSHCVRIhdP7pZAra3+v2kXbVRG5oCl0uA5BXIFu0hCLsnhk8uMw1oMiOeB
9jMjEHhvwyn+TQwkXyXDg9zl3VsvZFWzitCkNvwdfsA9tPaucH3zTEpSlVu1ZCCV
Zc4GUZRSB2vaeBO4oPP9taHH9hUgFN71MG3apE/sEjSwcy9yNXDpg6NfG+wdqK1m
knI0h6nx0P1DzQ==
-----END CERTIFICATE-----
Generated at Tue Apr 8 05:40:37 2025 by rpki-client