Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
File: i4gBVDgSBAR31HRCKUZshTfUUXE.mft (raw, json)
Hash identifier: rVpeSCRb0RnEcIxjdIXy8yLrBszK9g14a+456DXko7Y=
Subject key identifier: C3:64:53:CC:01:69:58:B3:20:BC:34:25:24:A7:2E:CB:C5:77:9A:22
Authority key identifier: 8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
Certificate issuer: /CN=8b8801543812040477d4744229466c8537d45171
Certificate serial: 01974EFC870C5C5D75894CACDA72977D3BF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
Manifest number: 0CC8
Signing time: Sun 08 Jun 2025 10:01:01 +0000
Manifest this update: Sun 08 Jun 2025 10:01:01 +0000
Manifest next update: Mon 09 Jun 2025 10:01:01 +0000
Files and hashes: 1: CDrnNbtJLaCL50xwnqrzUWhQ_9k.roa (hash: xkyChTjHPfmap3pEfIzmPahUIANDsQxEAOedvER2SvU=)
2: i4gBVDgSBAR31HRCKUZshTfUUXE.crl (hash: Hkpc4u3L3vMP814ftDxpNHV7KcLGCOXKGh+rDzPXcYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:fc:87:0c:5c:5d:75:89:4c:ac:da:72:97:7d:3b:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b8801543812040477d4744229466c8537d45171
Validity
Not Before: Jun 8 10:01:01 2025 GMT
Not After : Jun 9 10:01:01 2025 GMT
Subject: CN=c36453cc016958b320bc342524a72ecbc5779a22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:72:3c:48:14:9a:b0:62:54:8c:9c:a5:13:74:
19:00:89:ef:72:fe:ce:de:a4:0a:26:cb:9b:9e:d0:
4f:be:94:1f:87:b8:a5:bb:85:89:5e:08:3f:c3:c9:
1d:bc:a6:fa:8b:f1:d9:6c:ef:f5:73:a6:a8:55:3b:
29:1a:5e:4c:96:d9:ff:8b:cc:ae:a9:e1:76:64:05:
d7:2e:97:d1:9e:6c:aa:a7:c7:a5:08:26:21:d8:71:
25:08:cb:65:37:05:d7:0b:66:29:bb:ba:de:82:54:
ce:68:3e:17:9b:49:53:af:45:e3:53:4f:d2:f5:39:
1e:70:01:b9:a7:21:f2:4d:d0:62:75:59:36:dd:85:
e8:f8:aa:45:e0:9f:b9:9e:66:05:13:9b:76:52:d4:
e4:a6:8d:ba:d1:6d:5a:db:83:48:cd:89:e9:e4:2f:
5c:71:e9:d5:e8:54:43:3b:3d:4e:04:a1:dd:bf:c6:
7a:90:53:00:78:07:6a:ea:10:ea:21:d1:4e:b1:0e:
7f:7c:d2:e9:3c:12:e1:bc:5a:d0:f1:53:3b:5d:3d:
16:30:68:b8:13:38:fa:03:f0:07:77:14:56:08:8d:
40:39:16:2c:38:46:75:af:d9:bc:ab:fe:58:f8:43:
e9:d9:30:56:b4:38:58:32:4f:86:73:ed:da:66:e0:
5d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:64:53:CC:01:69:58:B3:20:BC:34:25:24:A7:2E:CB:C5:77:9A:22
X509v3 Authority Key Identifier:
keyid:8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:3e:42:51:5c:07:7c:02:3a:d3:f3:17:74:37:67:1d:c0:39:
e5:a6:ce:e0:10:25:99:7e:fe:9f:80:ad:b7:6a:8c:d7:50:a7:
7a:79:9b:6c:37:1e:c4:93:39:fd:8d:34:40:8e:3f:5b:d0:76:
cb:f8:34:9d:e0:81:be:a4:73:6f:ed:34:d0:07:2c:66:5f:29:
ce:63:cc:9d:f9:71:8c:6b:69:6d:8a:2c:ec:57:0b:12:82:c9:
c6:83:19:bf:1a:93:7e:db:76:d0:9f:b1:7c:e4:43:2e:65:cf:
d3:e6:6a:ff:85:97:75:89:48:e9:4b:8b:e4:df:59:75:4a:ba:
92:96:2c:dd:00:93:04:84:71:f2:3f:de:68:84:94:6d:7a:a2:
38:3b:c9:a4:66:50:02:b7:77:ee:7c:7c:79:56:6a:48:c6:d4:
94:a9:10:df:ec:06:42:96:4c:8e:a8:96:bf:d2:33:51:8d:90:
73:b3:65:98:67:09:94:4f:17:46:21:b5:8a:01:27:cf:ab:f6:
16:b6:65:00:2f:63:bd:1b:fd:53:49:70:fc:03:c8:39:14:88:
c5:c2:e0:f4:8e:21:1e:bc:fa:01:2c:a0:a6:de:cb:dc:07:9b:
ce:b4:97:41:aa:8b:e5:27:cf:2c:52:89:79:6b:91:6b:28:ec:
52:26:5a:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdO/IcMXF11iUys2nKXfTv1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiODgwMTU0MzgxMjA0MDQ3N2Q0NzQ0MjI5NDY2Yzg1Mzdk
NDUxNzEwHhcNMjUwNjA4MTAwMTAxWhcNMjUwNjA5MTAwMTAxWjAzMTEwLwYDVQQD
EyhjMzY0NTNjYzAxNjk1OGIzMjBiYzM0MjUyNGE3MmVjYmM1Nzc5YTIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnI8SBSasGJUjJylE3QZAInvcv7O
3qQKJsubntBPvpQfh7ilu4WJXgg/w8kdvKb6i/HZbO/1c6aoVTspGl5Mltn/i8yu
qeF2ZAXXLpfRnmyqp8elCCYh2HElCMtlNwXXC2Ypu7reglTOaD4Xm0lTr0XjU0/S
9TkecAG5pyHyTdBidVk23YXo+KpF4J+5nmYFE5t2UtTkpo260W1a24NIzYnp5C9c
cenV6FRDOz1OBKHdv8Z6kFMAeAdq6hDqIdFOsQ5/fNLpPBLhvFrQ8VM7XT0WMGi4
Ezj6A/AHdxRWCI1AORYsOEZ1r9m8q/5Y+EPp2TBWtDhYMk+Gc+3aZuBduQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMNkU8wBaVizILw0JSSnLsvFd5oiMB8GA1UdIwQY
MBaAFIuIAVQ4EgQEd9R0QilGbIU31FFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTRnQlZEZ1NCQVIzMUhSQ0tVWnNoVGZVVVhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS84OWJiNzEtM2ZlOS00MmQyLWE3M2It
MTNhZTk4YWE3ZDMzLzEvaTRnQlZEZ1NCQVIzMUhSQ0tVWnNoVGZVVVhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS84OWJiNzEtM2ZlOS00MmQyLWE3M2ItMTNhZTk4YWE3ZDMz
LzEvaTRnQlZEZ1NCQVIzMUhSQ0tVWnNoVGZVVVhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjT5CUVwH
fAI60/MXdDdnHcA55abO4BAlmX7+n4Ctt2qM11CnenmbbDcexJM5/Y00QI4/W9B2
y/g0neCBvqRzb+000AcsZl8pzmPMnflxjGtpbYos7FcLEoLJxoMZvxqTftt20J+x
fORDLmXP0+Zq/4WXdYlI6UuL5N9ZdUq6kpYs3QCTBIRx8j/eaISUbXqiODvJpGZQ
Ard37nx8eVZqSMbUlKkQ3+wGQpZMjqiWv9IzUY2Qc7NlmGcJlE8XRiG1igEnz6v2
FrZlAC9jvRv9U0lw/APIORSIxcLg9I4hHrz6ASygpt7L3AebzrSXQaqL5SfPLFKJ
eWuRayjsUiZatA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 13:31:47 2025 by rpki-client