Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json)
Hash identifier: 4MeQNXbrRa1S+YGoKVzLQoUQ+M1NaXEiYGhUXsxOgNQ=
Subject key identifier: 87:93:3C:28:A3:F1:DF:E1:8D:14:D2:F5:E2:F2:4B:98:E7:FE:22:AD
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 01958FCF3A22F320E9D2E60BB575CD1C47CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
Manifest number: 0F71
Signing time: Thu 13 Mar 2025 14:01:17 +0000
Manifest this update: Thu 13 Mar 2025 14:01:17 +0000
Manifest next update: Fri 14 Mar 2025 14:01:17 +0000
Files and hashes: 1: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: ZlCHc9QUo5VOXJrG21aYt2M/eCNpLM9aH+o6dyaik1Q=)
2: rw7mvGsBN1ywLg0aU0WOnuWPa30.roa (hash: Kkop8VBeWFXHnSavZNOMJQZHo1FfDtxgbSsG84Nc5jo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 14:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:cf:3a:22:f3:20:e9:d2:e6:0b:b5:75:cd:1c:47:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: Mar 13 14:01:17 2025 GMT
Not After : Mar 14 14:01:17 2025 GMT
Subject: CN=87933c28a3f1dfe18d14d2f5e2f24b98e7fe22ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:45:60:d1:ac:4a:ef:0d:5f:87:44:73:7a:84:
08:a8:c1:2e:da:dd:6a:05:8a:1f:9b:76:cc:e8:52:
5e:46:25:dc:55:f4:00:92:d6:42:c1:5e:1b:b1:5e:
d7:7e:02:72:d0:84:da:76:c3:3a:84:80:08:e9:44:
b8:f1:18:cf:50:8d:3a:0c:fe:5e:00:74:e1:0a:b6:
98:0d:ed:fb:44:ea:b1:b1:fd:24:88:ea:c6:27:31:
52:13:20:f4:d1:1d:88:88:e7:ee:a1:09:83:92:a7:
0a:f9:f1:cb:82:90:40:6a:8c:ee:55:e2:6f:47:da:
c1:4f:e7:01:f2:0b:9e:b2:f6:20:e4:92:9d:e9:ed:
36:a0:c3:a2:21:31:67:af:97:3b:06:5c:74:4b:aa:
b5:5b:62:cd:48:3b:43:b4:62:3c:27:78:60:5f:b1:
19:21:66:71:41:19:93:05:90:5f:cc:88:5c:46:0b:
88:57:34:c1:72:b3:be:07:e9:5f:57:90:73:39:72:
d3:e2:b4:94:ef:58:b7:ee:70:d1:84:9c:0d:5d:e9:
d1:81:88:90:4d:cf:91:f1:00:2e:f0:f7:ce:28:7e:
69:a7:c0:89:19:b2:03:c8:8a:a7:b3:5c:36:ca:db:
2d:9a:d3:34:f4:fd:be:06:8c:a0:65:82:87:60:09:
95:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:93:3C:28:A3:F1:DF:E1:8D:14:D2:F5:E2:F2:4B:98:E7:FE:22:AD
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:63:e3:9e:a0:cb:84:72:1a:5d:c6:5b:ab:ce:a6:c8:c5:57:
63:e0:85:12:fe:fd:41:a3:de:60:48:b6:07:59:6d:d4:16:3e:
86:26:4d:62:08:b4:10:73:70:49:32:96:20:08:74:03:88:fb:
5f:d1:0f:18:77:b2:85:c5:e9:a6:0d:6e:89:68:01:7f:50:2f:
1e:41:ae:06:7a:1c:31:a4:34:88:fc:f9:88:89:0d:43:18:6f:
b9:45:00:30:82:2d:c9:a8:34:66:87:11:a9:13:9d:22:a3:ff:
52:9a:1e:15:1a:74:3d:d1:85:2c:d3:9e:78:7c:80:39:cb:42:
16:3a:97:5d:59:25:92:8f:a6:c4:4e:e9:46:cd:58:8b:cd:80:
cb:12:77:07:21:dc:25:8f:db:70:c4:c8:94:bb:0a:60:b7:d7:
44:66:2c:66:aa:6e:ef:68:27:63:40:3f:fe:a9:39:54:a1:9e:
2d:9d:2a:82:55:3f:d2:88:02:60:b5:25:6b:68:f5:e8:0f:04:
9d:e8:79:76:8f:ca:7e:d3:7c:22:51:4e:90:dc:85:fe:b8:f4:
db:7b:ce:72:6b:1c:84:2f:a5:5f:f0:f0:a5:4a:f2:bc:78:50:
26:a0:cf:8b:56:4e:36:7f:04:5a:61:41:bf:82:4c:56:37:14:
6e:53:40:5a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWPzzoi8yDp0uYLtXXNHEfPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ODE2NjQ2M2ExYTMwMWNhNWI2ZWI5OGJkZGQwN2UzOTcw
OTE5ODYwHhcNMjUwMzEzMTQwMTE3WhcNMjUwMzE0MTQwMTE3WjAzMTEwLwYDVQQD
Eyg4NzkzM2MyOGEzZjFkZmUxOGQxNGQyZjVlMmYyNGI5OGU3ZmUyMmFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtUVg0axK7w1fh0RzeoQIqMEu2t1q
BYofm3bM6FJeRiXcVfQAktZCwV4bsV7XfgJy0ITadsM6hIAI6US48RjPUI06DP5e
AHThCraYDe37ROqxsf0kiOrGJzFSEyD00R2IiOfuoQmDkqcK+fHLgpBAaozuVeJv
R9rBT+cB8guesvYg5JKd6e02oMOiITFnr5c7Blx0S6q1W2LNSDtDtGI8J3hgX7EZ
IWZxQRmTBZBfzIhcRguIVzTBcrO+B+lfV5BzOXLT4rSU71i37nDRhJwNXenRgYiQ
Tc+R8QAu8PfOKH5pp8CJGbIDyIqns1w2ytstmtM09P2+BoygZYKHYAmVAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIeTPCij8d/hjRTS9eLyS5jn/iKtMB8GA1UdIwQY
MBaAFIiBZkY6GjAcpbbrmL3dB+OXCRmGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi80NzZmZDAtYjhhNi00NjFmLWI0YzUt
MzhjMmMyYTc5YzM1LzEvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi80NzZmZDAtYjhhNi00NjFmLWI0YzUtMzhjMmMyYTc5YzM1
LzEvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmGPjnqDL
hHIaXcZbq86myMVXY+CFEv79QaPeYEi2B1lt1BY+hiZNYgi0EHNwSTKWIAh0A4j7
X9EPGHeyhcXppg1uiWgBf1AvHkGuBnocMaQ0iPz5iIkNQxhvuUUAMIItyag0ZocR
qROdIqP/UpoeFRp0PdGFLNOeeHyAOctCFjqXXVklko+mxE7pRs1Yi82AyxJ3ByHc
JY/bcMTIlLsKYLfXRGYsZqpu72gnY0A//qk5VKGeLZ0qglU/0ogCYLUla2j16A8E
neh5do/KftN8IlFOkNyF/rj023vOcmschC+lX/DwpUryvHhQJqDPi1ZONn8EWmFB
v4JMVjcUblNAWg==
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:29:04 2025 by rpki-client