Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.mft
File: ilZohaHW1VRFRs0oXYbE7_6qPCw.mft (raw, json)
Hash identifier: oTBUbJUuvE9CcMDq2n7KVGH/iXrb0ZTkF7vcDcjKUWg=
Subject key identifier: 9B:A5:1F:38:6B:C4:61:0C:65:FF:85:2E:44:FD:20:85:C3:29:5A:AC
Authority key identifier: 8A:56:68:85:A1:D6:D5:54:45:46:CD:28:5D:86:C4:EF:FE:AA:3C:2C
Certificate issuer: /CN=8a566885a1d6d5544546cd285d86c4effeaa3c2c
Certificate serial: 0196564A89B666343A3FA7ED5456DD60B357
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilZohaHW1VRFRs0oXYbE7_6qPCw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.mft
Manifest number: 1500
Signing time: Mon 21 Apr 2025 03:00:47 +0000
Manifest this update: Mon 21 Apr 2025 03:00:47 +0000
Manifest next update: Tue 22 Apr 2025 03:00:47 +0000
Files and hashes: 1: Lb8vbukOa5hlTRoTkAdj0qnnj8o.roa (hash: gDIkSUwNSGV5eKv6/1wqJs7MzcoYqV9u1fGfL9hM0j0=)
2: ilZohaHW1VRFRs0oXYbE7_6qPCw.crl (hash: hhuTkYytbjy/0O0SR3yx+owYWDuinQlqZKoj5Fj4eo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ilZohaHW1VRFRs0oXYbE7_6qPCw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:4a:89:b6:66:34:3a:3f:a7:ed:54:56:dd:60:b3:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a566885a1d6d5544546cd285d86c4effeaa3c2c
Validity
Not Before: Apr 21 03:00:47 2025 GMT
Not After : Apr 22 03:00:47 2025 GMT
Subject: CN=9ba51f386bc4610c65ff852e44fd2085c3295aac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ad:37:55:7b:b3:92:30:b5:73:d5:6b:29:14:
f5:3f:19:56:65:1a:a8:b7:3e:05:04:2d:af:7e:f0:
5c:d9:48:8a:a8:7b:75:a1:9c:63:a1:16:c2:93:73:
f7:5f:07:aa:e8:07:41:2f:22:27:92:21:c9:01:a1:
d1:0a:7b:64:d5:46:2a:a6:8f:d1:a3:c8:e8:38:c8:
a7:02:3d:c8:84:1b:00:ad:78:e5:9e:2a:3d:59:fd:
f4:cf:df:a2:63:86:7b:f4:d6:26:51:43:d5:7f:dc:
f5:ea:8e:a2:15:a1:ff:b0:cc:59:c4:26:d2:14:71:
78:8d:bd:e8:32:21:7b:f8:34:3e:65:22:f1:47:27:
4b:73:93:55:26:a5:f1:46:65:15:54:29:e7:a0:13:
ba:81:04:22:bc:9e:9d:39:5a:ba:b9:21:33:57:9b:
a4:69:34:41:79:d7:7d:d8:ef:ca:ea:59:a9:82:ad:
35:a5:5f:68:17:8f:51:7b:ed:f3:24:d7:50:7a:92:
2a:f8:ee:60:dd:5a:5d:76:cf:b1:ab:8a:5b:8a:54:
0d:1e:9b:6a:6e:ac:31:fc:c8:da:6c:0c:19:cc:6b:
e3:a7:d0:ed:56:31:0d:02:8b:ef:b8:7e:a7:27:42:
ac:fe:43:21:ec:44:37:3f:81:dd:98:8e:27:36:7b:
13:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:A5:1F:38:6B:C4:61:0C:65:FF:85:2E:44:FD:20:85:C3:29:5A:AC
X509v3 Authority Key Identifier:
keyid:8A:56:68:85:A1:D6:D5:54:45:46:CD:28:5D:86:C4:EF:FE:AA:3C:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilZohaHW1VRFRs0oXYbE7_6qPCw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:5b:7e:7d:ba:db:24:4a:e6:bc:e9:79:be:7b:ec:55:94:7d:
a0:56:c9:22:bc:be:cd:a7:d2:ef:7b:5d:fc:b6:06:fa:8a:ec:
44:2c:db:d1:83:64:77:34:2e:33:3b:97:52:4a:7d:d4:2b:5d:
72:c5:9c:7d:ac:40:43:26:51:e7:bb:48:67:45:e0:de:b1:32:
c7:83:d2:4d:1d:34:d0:a9:4a:46:4d:f0:cf:49:dd:5c:52:93:
e1:dc:1e:65:d8:1a:b5:22:c4:5e:8d:5f:dc:f4:a8:a1:74:40:
16:34:30:0f:16:0e:98:a4:b4:13:ea:2d:84:b5:ef:5b:9c:0b:
5b:55:77:aa:55:2a:6d:d2:9d:33:b7:28:ae:c5:30:65:d6:a4:
6b:3b:78:39:de:dc:27:e1:06:7a:55:ed:6c:ad:3c:05:b8:10:
47:fd:22:9d:8b:bb:02:d1:60:7b:27:f9:90:20:d8:d7:b3:d7:
79:27:1f:40:02:0f:05:1e:7f:e9:34:92:5c:28:4a:54:2a:e5:
96:cf:56:50:af:94:89:ab:4e:8f:8b:08:c7:6e:0b:00:2b:d8:
7c:93:43:e3:d9:9c:40:ef:40:d1:ba:fb:b1:3c:33:29:f2:40:
c3:9f:70:00:05:e3:8e:1d:9a:14:8c:35:be:f3:fc:50:54:ac:
c9:66:5b:8b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZWSom2ZjQ6P6ftVFbdYLNXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhNTY2ODg1YTFkNmQ1NTQ0NTQ2Y2QyODVkODZjNGVmZmVh
YTNjMmMwHhcNMjUwNDIxMDMwMDQ3WhcNMjUwNDIyMDMwMDQ3WjAzMTEwLwYDVQQD
Eyg5YmE1MWYzODZiYzQ2MTBjNjVmZjg1MmU0NGZkMjA4NWMzMjk1YWFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAna03VXuzkjC1c9VrKRT1PxlWZRqo
tz4FBC2vfvBc2UiKqHt1oZxjoRbCk3P3Xweq6AdBLyInkiHJAaHRCntk1UYqpo/R
o8joOMinAj3IhBsArXjlnio9Wf30z9+iY4Z79NYmUUPVf9z16o6iFaH/sMxZxCbS
FHF4jb3oMiF7+DQ+ZSLxRydLc5NVJqXxRmUVVCnnoBO6gQQivJ6dOVq6uSEzV5uk
aTRBedd92O/K6lmpgq01pV9oF49Re+3zJNdQepIq+O5g3Vpdds+xq4pbilQNHptq
bqwx/MjabAwZzGvjp9DtVjENAovvuH6nJ0Ks/kMh7EQ3P4HdmI4nNnsTqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJulHzhrxGEMZf+FLkT9IIXDKVqsMB8GA1UdIwQY
MBaAFIpWaIWh1tVURUbNKF2GxO/+qjwsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWxab2hhSFcxVlJGUnMwb1hZYkU3XzZxUEN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9kY2ZiYzctNjRiOC00YzkxLTg5YTAt
MWFmMDVhMjIzN2MzLzEvaWxab2hhSFcxVlJGUnMwb1hZYkU3XzZxUEN3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi9kY2ZiYzctNjRiOC00YzkxLTg5YTAtMWFmMDVhMjIzN2Mz
LzEvaWxab2hhSFcxVlJGUnMwb1hZYkU3XzZxUEN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGVt+fbrb
JErmvOl5vnvsVZR9oFbJIry+zafS73td/LYG+orsRCzb0YNkdzQuMzuXUkp91Ctd
csWcfaxAQyZR57tIZ0Xg3rEyx4PSTR000KlKRk3wz0ndXFKT4dweZdgatSLEXo1f
3PSooXRAFjQwDxYOmKS0E+othLXvW5wLW1V3qlUqbdKdM7corsUwZdakazt4Od7c
J+EGelXtbK08BbgQR/0inYu7AtFgeyf5kCDY17PXeScfQAIPBR5/6TSSXChKVCrl
ls9WUK+UiatOj4sIx24LACvYfJND49mcQO9A0br7sTwzKfJAw59wAAXjjh2aFIw1
vvP8UFSsyWZbiw==
-----END CERTIFICATE-----
Generated at Mon Apr 21 10:39:44 2025 by rpki-client