Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.mft
File: IodymNrl1aO-q8oW6S0aFB6Uhic.mft (raw, json)
Hash identifier: 7e3sHm3NQfQqz2MVKHgDHG8xnLiGfupSshjTW+bur38=
Subject key identifier: C0:A3:64:AE:9E:AF:25:93:B2:D7:89:BA:40:8D:18:3F:D3:24:82:AB
Authority key identifier: 22:87:72:98:DA:E5:D5:A3:BE:AB:CA:16:E9:2D:1A:14:1E:94:86:27
Certificate issuer: /CN=22877298dae5d5a3beabca16e92d1a141e948627
Certificate serial: 019644E92E6C1FFD2075F0D6F52D26EC61B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IodymNrl1aO-q8oW6S0aFB6Uhic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.mft
Manifest number: 0317
Signing time: Thu 17 Apr 2025 18:00:54 +0000
Manifest this update: Thu 17 Apr 2025 18:00:54 +0000
Manifest next update: Fri 18 Apr 2025 18:00:54 +0000
Files and hashes: 1: Gx7WZJ-NdyF04pUk4gdMYoHuQzk.roa (hash: t6M0KFjILBRmG74F5TahE0UmVDYYLhcbj+iOGjxmViM=)
2: IodymNrl1aO-q8oW6S0aFB6Uhic.crl (hash: GMJukF+5NyNUYGqkB8wvD3UzPSM6vr0SogSxMjWvjZg=)
3: PuJtE5_KWvLzwKg-Mgv8nDiZBNg.roa (hash: 8P5RiewFjkqd/eRXG3pkKovd5qsr2E75hTvmlDKbDK4=)
4: TzrbKsWWc5ntNZrK15cj-JJEJ58.roa (hash: RQ/89mGjpo+vMKngRW92R9jY7f/Z1DigzUFyYoUKxXI=)
5: VVORpSs2avN7LB4Mow7a1En91F4.roa (hash: yZQKa4XavWNRZD1+bUj1AOYorZS8ADmIAXXZ5FIRTC0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.mft
rsync://rpki.ripe.net/repository/DEFAULT/IodymNrl1aO-q8oW6S0aFB6Uhic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:e9:2e:6c:1f:fd:20:75:f0:d6:f5:2d:26:ec:61:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22877298dae5d5a3beabca16e92d1a141e948627
Validity
Not Before: Apr 17 18:00:54 2025 GMT
Not After : Apr 18 18:00:54 2025 GMT
Subject: CN=c0a364ae9eaf2593b2d789ba408d183fd32482ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:80:d0:65:9f:bd:10:85:86:08:74:d4:19:2d:
0f:9e:11:81:26:f6:95:56:d1:2f:c2:5b:cb:4f:82:
52:b2:a6:e9:59:74:4d:ba:10:08:a1:39:68:8c:55:
c5:79:c1:af:25:9f:31:ef:86:e6:80:0d:e4:fe:02:
59:eb:ab:61:2c:c9:6f:6c:8f:cd:83:15:cf:dd:cc:
ed:d0:9e:f5:99:34:10:31:d8:c7:81:22:28:64:df:
5a:99:6c:b8:29:75:41:64:56:f2:1c:da:51:3b:bf:
20:9f:74:a7:ca:5e:f6:00:86:1f:37:ae:e6:7a:70:
b1:b8:13:dc:03:3f:5a:fb:93:42:04:20:2a:c6:2f:
0a:e2:c8:0c:d3:1f:10:33:ed:79:99:fb:fc:31:f3:
d1:1d:4d:f2:f0:2b:df:3f:f1:3f:5b:97:c2:d7:15:
6a:49:ba:13:38:52:a6:66:26:fa:f4:40:ef:70:9b:
0b:1f:ce:92:1f:55:48:31:cd:cf:c1:86:39:61:3e:
ee:3b:d1:0e:0d:78:5f:83:66:66:50:5f:5c:8c:ca:
7a:e4:77:80:f1:17:5a:f8:56:f6:11:5c:78:5c:36:
a2:34:12:bc:3b:8e:a0:12:36:57:a5:8e:dc:5a:91:
12:cb:21:10:b2:d1:7e:1f:5f:72:c7:07:44:a6:34:
70:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:A3:64:AE:9E:AF:25:93:B2:D7:89:BA:40:8D:18:3F:D3:24:82:AB
X509v3 Authority Key Identifier:
keyid:22:87:72:98:DA:E5:D5:A3:BE:AB:CA:16:E9:2D:1A:14:1E:94:86:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IodymNrl1aO-q8oW6S0aFB6Uhic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:cb:ef:b5:96:0c:34:5e:92:bb:dc:cb:9f:ce:fc:6b:af:e9:
0b:fd:6a:1e:53:0d:58:1d:5e:7a:e0:f9:f2:1d:ce:fc:99:10:
1d:3d:3e:97:c5:65:e8:6c:e4:95:e9:49:8a:a0:26:8e:e4:82:
e8:1a:9e:1a:cc:f7:96:b0:c0:83:40:6e:60:b4:68:9e:39:0d:
8b:68:c7:db:fa:02:f4:5d:ba:88:16:3b:4a:8e:0f:f7:b9:90:
8e:6b:f1:9a:b1:02:06:e2:95:44:a9:db:af:a4:a1:56:01:87:
85:c9:8e:b7:3e:ba:d7:57:9a:ef:df:2d:c0:ff:c8:f0:82:47:
7b:32:3b:e8:27:17:e5:12:46:89:c0:32:8e:09:c2:9b:62:5c:
8d:e7:e4:49:0b:fa:62:27:e9:b9:a7:83:16:49:38:68:19:f2:
d9:53:e3:b5:e7:7a:c0:64:35:47:bd:a4:08:4d:f7:74:32:aa:
41:df:37:be:03:f1:03:a8:5a:c2:02:ec:36:ed:af:e1:77:14:
91:41:c3:c2:7a:d1:85:4f:68:e7:55:cd:b0:97:b8:d4:7e:01:
02:d5:6d:e0:3d:6d:23:46:b9:46:7d:3f:b5:fe:8d:3d:3c:c5:
b4:f3:fe:c3:d4:64:99:59:af:5c:89:67:ac:67:c1:4c:8c:4f:
4c:2c:e1:01
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZE6S5sH/0gdfDW9S0m7GGwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyODc3Mjk4ZGFlNWQ1YTNiZWFiY2ExNmU5MmQxYTE0MWU5
NDg2MjcwHhcNMjUwNDE3MTgwMDU0WhcNMjUwNDE4MTgwMDU0WjAzMTEwLwYDVQQD
EyhjMGEzNjRhZTllYWYyNTkzYjJkNzg5YmE0MDhkMTgzZmQzMjQ4MmFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnIDQZZ+9EIWGCHTUGS0PnhGBJvaV
VtEvwlvLT4JSsqbpWXRNuhAIoTlojFXFecGvJZ8x74bmgA3k/gJZ66thLMlvbI/N
gxXP3czt0J71mTQQMdjHgSIoZN9amWy4KXVBZFbyHNpRO78gn3Snyl72AIYfN67m
enCxuBPcAz9a+5NCBCAqxi8K4sgM0x8QM+15mfv8MfPRHU3y8CvfP/E/W5fC1xVq
SboTOFKmZib69EDvcJsLH86SH1VIMc3PwYY5YT7uO9EODXhfg2ZmUF9cjMp65HeA
8Rda+Fb2EVx4XDaiNBK8O46gEjZXpY7cWpESyyEQstF+H19yxwdEpjRwEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMCjZK6eryWTsteJukCNGD/TJIKrMB8GA1UdIwQY
MBaAFCKHcpja5dWjvqvKFuktGhQelIYnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSW9keW1OcmwxYU8tcThvVzZTMGFGQjZVaGljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS84NjUxYzUtYmQ3Ny00NjBkLTgzYmYt
NTkzM2EwOWY3MmQxLzEvSW9keW1OcmwxYU8tcThvVzZTMGFGQjZVaGljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS84NjUxYzUtYmQ3Ny00NjBkLTgzYmYtNTkzM2EwOWY3MmQx
LzEvSW9keW1OcmwxYU8tcThvVzZTMGFGQjZVaGljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO8vvtZYM
NF6Su9zLn878a6/pC/1qHlMNWB1eeuD58h3O/JkQHT0+l8Vl6GzklelJiqAmjuSC
6BqeGsz3lrDAg0BuYLRonjkNi2jH2/oC9F26iBY7So4P97mQjmvxmrECBuKVRKnb
r6ShVgGHhcmOtz6611ea798twP/I8IJHezI76CcX5RJGicAyjgnCm2JcjefkSQv6
YifpuaeDFkk4aBny2VPjted6wGQ1R72kCE33dDKqQd83vgPxA6hawgLsNu2v4XcU
kUHDwnrRhU9o51XNsJe41H4BAtVt4D1tI0a5Rn0/tf6NPTzFtPP+w9RkmVmvXIln
rGfBTIxPTCzhAQ==
-----END CERTIFICATE-----
Generated at Fri Apr 18 01:37:42 2025 by rpki-client