Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.mft
File: IO7gXaGD3uK4EYFBlWRiySQNeHY.mft (raw, json)
Hash identifier: RquoPpj6ids+pM8eq1xvPTlg8nLOn17+/4TmsSyIpiQ=
Subject key identifier: 10:4D:DB:83:24:7E:CE:A9:8D:E1:EB:F1:45:A0:99:67:19:B9:73:B8
Authority key identifier: 20:EE:E0:5D:A1:83:DE:E2:B8:11:81:41:95:64:62:C9:24:0D:78:76
Certificate issuer: /CN=20eee05da183dee2b8118141956462c9240d7876
Certificate serial: 01974AE90C545D9245B0C112D29ADC0514EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IO7gXaGD3uK4EYFBlWRiySQNeHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.mft
Manifest number: 1388
Signing time: Sat 07 Jun 2025 15:01:16 +0000
Manifest this update: Sat 07 Jun 2025 15:01:16 +0000
Manifest next update: Sun 08 Jun 2025 15:01:16 +0000
Files and hashes: 1: IO7gXaGD3uK4EYFBlWRiySQNeHY.crl (hash: TQOMfS81OCtYpH9CqqplbKSGhrVTIEFf1fX5PP7i1RM=)
2: UOhBO5tiijOD2pDmpEzGmcmWS0c.roa (hash: xgr3YICoBLMfkC1gTEslMu1vKZNde/9vfYQRW1pAxzQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IO7gXaGD3uK4EYFBlWRiySQNeHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e9:0c:54:5d:92:45:b0:c1:12:d2:9a:dc:05:14:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20eee05da183dee2b8118141956462c9240d7876
Validity
Not Before: Jun 7 15:01:16 2025 GMT
Not After : Jun 8 15:01:16 2025 GMT
Subject: CN=104ddb83247ecea98de1ebf145a0996719b973b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7a:1a:d2:11:14:1a:64:4f:e4:68:72:23:df:
68:85:c5:79:71:eb:45:76:7e:8a:3d:1e:1d:4e:f0:
a7:7b:96:ee:71:06:76:40:0d:e2:21:8f:f0:8c:1d:
41:c0:b8:b9:82:74:86:97:72:bc:ba:58:2c:01:98:
47:98:aa:8f:24:58:7f:de:76:2a:52:67:1c:f6:06:
a4:55:84:3e:e7:9e:79:a0:d3:9d:3b:a1:bd:8b:3c:
b3:4e:0d:70:17:e0:37:aa:e8:af:2b:91:b1:78:29:
01:fd:94:c3:b3:a4:be:1a:f6:e0:52:46:12:86:84:
cd:14:f3:e4:bd:76:59:ab:02:e3:d0:45:89:9a:2d:
12:62:eb:67:05:b9:d9:90:77:9b:4f:fe:0d:59:0b:
6f:34:7d:9f:8a:47:e8:cc:86:84:6f:1b:89:19:0f:
07:8a:fc:11:db:f6:8a:3f:0e:e7:bb:0a:40:09:27:
32:2b:8a:69:39:b4:2a:15:f8:d5:75:1c:59:0d:d7:
9b:f1:09:5b:89:22:0c:fc:7c:1c:62:3d:5a:f4:2f:
4e:0b:ec:a0:f5:f6:e6:fe:01:2f:27:ed:c3:c5:ed:
dc:73:df:a1:bc:25:86:ec:a3:98:ac:72:4e:9e:42:
88:a3:a9:e4:87:7e:b7:21:2e:99:ee:33:bc:db:8e:
69:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:4D:DB:83:24:7E:CE:A9:8D:E1:EB:F1:45:A0:99:67:19:B9:73:B8
X509v3 Authority Key Identifier:
keyid:20:EE:E0:5D:A1:83:DE:E2:B8:11:81:41:95:64:62:C9:24:0D:78:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IO7gXaGD3uK4EYFBlWRiySQNeHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:50:65:52:ad:ab:97:2a:f2:23:16:2f:6c:5b:00:84:4a:f1:
29:50:89:e9:b4:1a:bd:5b:8a:0f:1c:c0:82:29:40:a6:c1:61:
f5:82:35:96:17:d5:64:08:8b:9d:8c:2e:3f:6e:f4:36:ea:18:
ab:c7:db:0f:4b:88:b7:18:4d:04:ae:8d:6c:fd:87:aa:c9:9c:
b1:5d:7c:11:6c:4c:16:d8:46:d5:43:c8:1c:c7:86:0d:2f:57:
25:6f:fd:04:b3:18:75:1b:be:9d:23:63:91:fd:01:2c:62:84:
4f:a5:89:7c:db:e8:c1:8d:fd:f0:8e:63:be:84:3b:76:21:5f:
f5:aa:58:ea:1b:4d:67:22:37:a5:98:25:ce:b4:b3:c8:eb:97:
3b:e2:f8:73:ee:70:a7:0e:03:af:8b:c4:42:b9:e1:1f:00:68:
5a:ee:3f:ba:35:cc:02:36:61:dd:80:16:3f:cd:d7:d3:b5:fa:
65:5d:1b:d8:04:72:ff:0a:9c:60:74:ab:d1:52:c2:fa:c4:60:
0a:6b:75:ba:af:35:b2:fb:a2:17:3a:f7:9b:fc:9d:4b:1e:a4:
d0:61:15:22:4b:6b:c0:bb:44:3d:cf:f0:a8:54:d8:67:97:10:
f0:68:5d:74:54:66:78:6c:ef:17:fa:13:bb:42:e3:14:86:ec:
f7:1c:6d:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdK6QxUXZJFsMES0prcBRTrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwZWVlMDVkYTE4M2RlZTJiODExODE0MTk1NjQ2MmM5MjQw
ZDc4NzYwHhcNMjUwNjA3MTUwMTE2WhcNMjUwNjA4MTUwMTE2WjAzMTEwLwYDVQQD
EygxMDRkZGI4MzI0N2VjZWE5OGRlMWViZjE0NWEwOTk2NzE5Yjk3M2I4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3oa0hEUGmRP5GhyI99ohcV5cetF
dn6KPR4dTvCne5bucQZ2QA3iIY/wjB1BwLi5gnSGl3K8ulgsAZhHmKqPJFh/3nYq
Umcc9gakVYQ+5555oNOdO6G9izyzTg1wF+A3quivK5GxeCkB/ZTDs6S+GvbgUkYS
hoTNFPPkvXZZqwLj0EWJmi0SYutnBbnZkHebT/4NWQtvNH2fikfozIaEbxuJGQ8H
ivwR2/aKPw7nuwpACScyK4ppObQqFfjVdRxZDdeb8QlbiSIM/HwcYj1a9C9OC+yg
9fbm/gEvJ+3Dxe3cc9+hvCWG7KOYrHJOnkKIo6nkh363IS6Z7jO8245pzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBBN24Mkfs6pjeHr8UWgmWcZuXO4MB8GA1UdIwQY
MBaAFCDu4F2hg97iuBGBQZVkYskkDXh2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSU83Z1hhR0QzdUs0RVlGQmxXUml5U1FOZUhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS9jZmMwZDEtZDA5NS00YjFiLTliNWQt
Mzk4NTI5OWZhZDZkLzEvSU83Z1hhR0QzdUs0RVlGQmxXUml5U1FOZUhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS9jZmMwZDEtZDA5NS00YjFiLTliNWQtMzk4NTI5OWZhZDZk
LzEvSU83Z1hhR0QzdUs0RVlGQmxXUml5U1FOZUhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEFBlUq2r
lyryIxYvbFsAhErxKVCJ6bQavVuKDxzAgilApsFh9YI1lhfVZAiLnYwuP270NuoY
q8fbD0uItxhNBK6NbP2HqsmcsV18EWxMFthG1UPIHMeGDS9XJW/9BLMYdRu+nSNj
kf0BLGKET6WJfNvowY398I5jvoQ7diFf9apY6htNZyI3pZglzrSzyOuXO+L4c+5w
pw4Dr4vEQrnhHwBoWu4/ujXMAjZh3YAWP83X07X6ZV0b2ARy/wqcYHSr0VLC+sRg
Cmt1uq81svuiFzr3m/ydSx6k0GEVIktrwLtEPc/wqFTYZ5cQ8GhddFRmeGzvF/oT
u0LjFIbs9xxtNg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 23:02:42 2025 by rpki-client