Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
File: iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft (raw, json)
Hash identifier: MNA3PFYmIeXRM+MkGeELDaTZqOsxi/87ZE4K1qBbDfM=
Subject key identifier: AA:E4:6B:7B:F0:8C:9A:01:02:4F:56:DD:9C:22:3E:D0:EC:3B:40:F3
Authority key identifier: 88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
Certificate issuer: /CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Certificate serial: 01960A55870C0A16CB84DC949007DDBF9505
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
Manifest number: 037F
Signing time: Sun 06 Apr 2025 09:01:39 +0000
Manifest this update: Sun 06 Apr 2025 09:01:39 +0000
Manifest next update: Mon 07 Apr 2025 09:01:39 +0000
Files and hashes: 1: XBo1pVVrARNWOJzVGLIS7aXEyvs.roa (hash: LHmi+bbPW6X6RSAyxvQlIttnolx/pGqPJGLDRqAXVIU=)
2: iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl (hash: 88hbHtQ9Ew+utpU+FnfRuLCdYoEss5pY8DXx6Am+2RA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 09:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0a:55:87:0c:0a:16:cb:84:dc:94:90:07:dd:bf:95:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Validity
Not Before: Apr 6 09:01:39 2025 GMT
Not After : Apr 7 09:01:39 2025 GMT
Subject: CN=aae46b7bf08c9a01024f56dd9c223ed0ec3b40f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9e:e8:76:c3:e3:c3:f8:bb:00:e9:26:a8:45:
d7:b2:80:e3:70:fb:51:80:34:b4:e7:32:15:85:46:
0b:17:13:e2:77:f8:90:38:59:bb:4f:74:b6:54:c0:
fb:7f:40:bc:cb:47:09:16:e1:db:f2:58:9a:d8:e6:
ef:97:7c:0e:5c:d4:2f:12:d0:e6:3e:8e:f0:93:bb:
21:dd:87:7f:2f:d0:70:70:8c:e0:46:c0:a1:d2:a1:
9f:03:9f:f3:cd:88:88:92:e8:62:30:4e:07:5b:9b:
f6:ff:6d:03:95:4c:3e:a3:cf:30:9e:62:f3:8d:93:
d1:18:26:7b:db:72:1f:f4:5a:9e:05:81:ed:7a:d3:
3a:d4:79:17:d5:7d:d4:f7:79:5a:2f:cb:8c:94:9e:
f7:ea:f1:46:92:9b:0a:e2:13:e2:44:e1:fb:c8:13:
7c:a8:5a:15:22:71:07:c0:ac:f6:89:0a:6d:35:4f:
02:c9:9f:d7:b1:ca:bd:b1:32:cf:22:97:95:4e:d1:
b0:3f:fa:e8:00:f7:8c:f2:b1:62:85:c4:42:07:aa:
82:14:44:da:b3:be:c9:f7:40:01:01:bf:83:c8:dd:
01:b1:74:aa:ae:33:a4:dc:46:c3:13:c2:6a:26:a3:
b8:5a:2a:31:02:e2:87:98:9d:23:93:34:6e:ee:61:
29:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E4:6B:7B:F0:8C:9A:01:02:4F:56:DD:9C:22:3E:D0:EC:3B:40:F3
X509v3 Authority Key Identifier:
keyid:88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:da:ce:10:b9:b2:34:b3:d6:21:ed:29:25:ca:a3:5d:a5:05:
92:3f:18:33:aa:46:7e:79:a1:cd:db:32:6c:1c:38:a6:c0:46:
8c:47:c4:1c:fd:cc:58:5d:22:53:d5:fe:f0:39:98:24:9c:95:
8d:1c:b6:08:42:96:d5:63:fe:26:49:37:6e:c3:ea:4a:75:12:
41:e2:23:73:a9:da:d6:fd:ca:97:b0:78:a7:ca:c2:ab:a5:b5:
a2:67:6c:6f:9d:b3:ff:c9:47:22:9c:17:27:a6:c3:d4:d9:04:
e4:4d:6c:ca:0a:57:c6:6a:7f:73:46:c6:01:d9:8d:55:10:1f:
b0:ab:3b:ac:34:39:9c:97:e9:56:04:8c:88:d3:97:fc:c8:bc:
37:cd:47:93:b8:8b:ca:4c:f2:69:3d:98:3f:38:62:b1:6a:67:
af:b6:e5:19:8e:7e:3b:e4:3b:01:12:c6:c8:03:46:df:52:89:
05:ee:5b:24:d8:9d:93:ab:72:d0:f3:42:93:75:4d:54:90:1d:
f7:0e:13:38:dd:3a:7c:82:0d:47:38:e1:29:21:d8:09:c1:b7:
5d:79:7d:34:9e:13:6e:36:68:65:83:80:e3:da:68:68:77:ec:
79:32:a0:ae:2c:f8:80:68:78:1a:d9:df:f7:ab:c5:60:62:5e:
49:18:c7:37
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYKVYcMChbLhNyUkAfdv5UFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ZjdiMGRkOWZmY2EyZjg1NzM0YzUzN2NiZWY1Y2NkMTE5
OWU1YmMwHhcNMjUwNDA2MDkwMTM5WhcNMjUwNDA3MDkwMTM5WjAzMTEwLwYDVQQD
EyhhYWU0NmI3YmYwOGM5YTAxMDI0ZjU2ZGQ5YzIyM2VkMGVjM2I0MGYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqp7odsPjw/i7AOkmqEXXsoDjcPtR
gDS05zIVhUYLFxPid/iQOFm7T3S2VMD7f0C8y0cJFuHb8lia2Obvl3wOXNQvEtDm
Po7wk7sh3Yd/L9BwcIzgRsCh0qGfA5/zzYiIkuhiME4HW5v2/20DlUw+o88wnmLz
jZPRGCZ723If9FqeBYHtetM61HkX1X3U93laL8uMlJ736vFGkpsK4hPiROH7yBN8
qFoVInEHwKz2iQptNU8CyZ/Xscq9sTLPIpeVTtGwP/roAPeM8rFihcRCB6qCFETa
s77J90ABAb+DyN0BsXSqrjOk3EbDE8JqJqO4WioxAuKHmJ0jkzRu7mEpXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKrka3vwjJoBAk9W3ZwiPtDsO0DzMB8GA1UdIwQY
MBaAFIj3sN2f/KL4VzTFN8vvXM0RmeW8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9kYzhjMDItNGY2ZC00OWY2LTg4MmMt
MTM2OTA1ZTJjN2M1LzEvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9kYzhjMDItNGY2ZC00OWY2LTg4MmMtMTM2OTA1ZTJjN2M1
LzEvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAetrOELmy
NLPWIe0pJcqjXaUFkj8YM6pGfnmhzdsybBw4psBGjEfEHP3MWF0iU9X+8DmYJJyV
jRy2CEKW1WP+Jkk3bsPqSnUSQeIjc6na1v3Kl7B4p8rCq6W1omdsb52z/8lHIpwX
J6bD1NkE5E1sygpXxmp/c0bGAdmNVRAfsKs7rDQ5nJfpVgSMiNOX/Mi8N81Hk7iL
ykzyaT2YPzhisWpnr7blGY5+O+Q7ARLGyANG31KJBe5bJNidk6ty0PNCk3VNVJAd
9w4TON06fIINRzjhKSHYCcG3XXl9NJ4TbjZoZYOA49poaHfseTKgriz4gGh4Gtnf
96vFYGJeSRjHNw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 19:02:33 2025 by rpki-client