
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.mft
File: IodymNrl1aO-q8oW6S0aFB6Uhic.mft (raw, json)
Hash identifier: eTVkCdOwhhne2lZ4aZZexse3OOz4YXprSx5J3+h+JtM=
Subject key identifier: 26:E8:75:A3:39:AD:9A:F8:C9:97:D3:EC:CD:D5:23:4B:02:FC:A3:51
Authority key identifier: 22:87:72:98:DA:E5:D5:A3:BE:AB:CA:16:E9:2D:1A:14:1E:94:86:27
Certificate issuer: /CN=22877298dae5d5a3beabca16e92d1a141e948627
Certificate serial: 01975346CEB2763148EEED27F9A25DD6FF97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IodymNrl1aO-q8oW6S0aFB6Uhic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.mft
Manifest number: 03AA
Signing time: Mon 09 Jun 2025 06:00:38 +0000
Manifest this update: Mon 09 Jun 2025 06:00:38 +0000
Manifest next update: Tue 10 Jun 2025 06:00:38 +0000
Files and hashes: 1: 4qvZpbHlQrEVGaculmgT9y6fbp0.roa (hash: tCJqK90XfNlOzC+CJIY2YiVu1YRsdGe0qc+sYvxZZ4k=)
2: GCeJWQXp53i0_T9Els2HFdD580c.roa (hash: F4jM2A6o7cg7dalyRSsXPRHMxAUn8dJXwNlkzBZKjRk=)
3: Gx7WZJ-NdyF04pUk4gdMYoHuQzk.roa (hash: t6M0KFjILBRmG74F5TahE0UmVDYYLhcbj+iOGjxmViM=)
4: IodymNrl1aO-q8oW6S0aFB6Uhic.crl (hash: hchDzsprrHAlaOTmLY1tf6Lrs2CGrmLVnu0UiwGif9s=)
5: P8uTVptxd-UGzkymXhOkvbitcEU.roa (hash: 61AnrtiCoFhbr8PK6p0Fhr8c0CNn0nd06ZAGuQwz1l8=)
6: PuJtE5_KWvLzwKg-Mgv8nDiZBNg.roa (hash: 8P5RiewFjkqd/eRXG3pkKovd5qsr2E75hTvmlDKbDK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.mft
rsync://rpki.ripe.net/repository/DEFAULT/IodymNrl1aO-q8oW6S0aFB6Uhic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:46:ce:b2:76:31:48:ee:ed:27:f9:a2:5d:d6:ff:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22877298dae5d5a3beabca16e92d1a141e948627
Validity
Not Before: Jun 9 06:00:38 2025 GMT
Not After : Jun 10 06:00:38 2025 GMT
Subject: CN=26e875a339ad9af8c997d3eccdd5234b02fca351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ec:c7:65:8a:dc:22:5d:76:31:f1:bc:aa:be:
aa:5e:26:d1:b2:41:e4:54:8c:dc:80:87:db:0e:5a:
7d:07:f1:04:8a:8c:33:bb:2f:f7:7a:27:0b:c8:24:
4b:e1:e9:73:61:d4:47:c8:2c:3b:68:c0:f8:6a:af:
e7:17:cd:ab:27:1c:0b:0e:3e:ca:cb:77:49:86:da:
eb:57:16:c5:4b:0b:99:b3:8a:15:9e:7e:d1:9d:5a:
33:53:c0:12:4b:e6:80:51:03:0e:fc:45:d3:43:fa:
20:6a:9d:d4:be:6e:22:11:52:5a:74:92:79:de:4a:
25:2d:32:9e:85:2f:a3:4e:84:83:ce:a9:9f:8c:e7:
72:49:62:dd:eb:7e:3b:30:18:06:ba:ac:1d:5b:32:
81:30:bf:c3:39:c5:68:29:1d:fd:07:c0:4f:6e:86:
85:96:b8:80:2a:68:42:8b:ec:61:5b:cc:15:22:c2:
27:49:56:48:c1:f1:db:da:6c:fc:79:7c:0d:5b:f1:
1c:99:a0:7a:3f:a8:6e:bb:9b:7d:8e:20:48:fa:09:
fc:08:0e:49:90:74:be:a9:a3:38:9f:d5:de:00:83:
72:6f:b8:8b:01:44:ca:54:22:4b:ff:cf:4a:15:ca:
2b:ab:63:17:0c:c7:ec:78:95:e9:86:74:53:b2:52:
48:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:E8:75:A3:39:AD:9A:F8:C9:97:D3:EC:CD:D5:23:4B:02:FC:A3:51
X509v3 Authority Key Identifier:
keyid:22:87:72:98:DA:E5:D5:A3:BE:AB:CA:16:E9:2D:1A:14:1E:94:86:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IodymNrl1aO-q8oW6S0aFB6Uhic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:66:6b:cd:11:fb:ef:61:6a:3b:f0:69:0d:24:64:8d:56:69:
06:bd:e1:c7:45:28:6e:fa:17:f4:4e:c4:fd:58:4e:ed:67:ad:
db:be:27:9e:99:8c:c1:2f:26:bb:44:38:20:a9:d7:9b:79:9a:
6f:72:3e:31:ae:91:86:5f:19:f4:70:3c:57:2d:e9:6f:0a:76:
85:f7:ed:66:2a:04:8f:2b:c4:43:df:aa:67:52:9c:b6:38:d0:
13:b7:fe:30:10:1d:2b:41:e8:fd:61:1f:fd:f5:3a:b5:38:2c:
3c:8e:40:01:82:75:fe:78:53:1c:d8:17:1d:8f:b3:60:09:0c:
ea:8a:32:c4:69:d7:87:bf:9c:f6:3d:c9:d6:ae:6d:c3:74:03:
86:99:7b:3c:3f:8c:c6:6d:b1:84:61:b2:ed:28:0f:e3:5a:67:
1f:3f:64:34:19:56:84:60:eb:a8:99:c8:b3:08:ca:2a:4b:00:
a4:b7:d8:5b:50:17:66:ed:09:8f:1e:8e:a6:49:b1:86:74:d9:
d7:64:99:2b:8a:f5:5a:e2:71:52:15:e3:75:90:e4:3b:a4:4e:
e6:d8:de:55:5c:55:43:f2:f2:54:61:24:fe:c8:c2:d3:39:3d:
53:08:a8:53:c2:fa:af:09:d8:3c:8a:ea:2a:d7:9b:1f:22:2a:
41:88:90:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdTRs6ydjFI7u0n+aJd1v+XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyODc3Mjk4ZGFlNWQ1YTNiZWFiY2ExNmU5MmQxYTE0MWU5
NDg2MjcwHhcNMjUwNjA5MDYwMDM4WhcNMjUwNjEwMDYwMDM4WjAzMTEwLwYDVQQD
EygyNmU4NzVhMzM5YWQ5YWY4Yzk5N2QzZWNjZGQ1MjM0YjAyZmNhMzUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsOzHZYrcIl12MfG8qr6qXibRskHk
VIzcgIfbDlp9B/EEiowzuy/3eicLyCRL4elzYdRHyCw7aMD4aq/nF82rJxwLDj7K
y3dJhtrrVxbFSwuZs4oVnn7RnVozU8ASS+aAUQMO/EXTQ/ogap3Uvm4iEVJadJJ5
3kolLTKehS+jToSDzqmfjOdySWLd6347MBgGuqwdWzKBML/DOcVoKR39B8BPboaF
lriAKmhCi+xhW8wVIsInSVZIwfHb2mz8eXwNW/EcmaB6P6huu5t9jiBI+gn8CA5J
kHS+qaM4n9XeAINyb7iLAUTKVCJL/89KFcorq2MXDMfseJXphnRTslJI8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCbodaM5rZr4yZfT7M3VI0sC/KNRMB8GA1UdIwQY
MBaAFCKHcpja5dWjvqvKFuktGhQelIYnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSW9keW1OcmwxYU8tcThvVzZTMGFGQjZVaGljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS84NjUxYzUtYmQ3Ny00NjBkLTgzYmYt
NTkzM2EwOWY3MmQxLzEvSW9keW1OcmwxYU8tcThvVzZTMGFGQjZVaGljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS84NjUxYzUtYmQ3Ny00NjBkLTgzYmYtNTkzM2EwOWY3MmQx
LzEvSW9keW1OcmwxYU8tcThvVzZTMGFGQjZVaGljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAt2ZrzRH7
72FqO/BpDSRkjVZpBr3hx0UobvoX9E7E/VhO7Wet274nnpmMwS8mu0Q4IKnXm3ma
b3I+Ma6Rhl8Z9HA8Vy3pbwp2hfftZioEjyvEQ9+qZ1KctjjQE7f+MBAdK0Ho/WEf
/fU6tTgsPI5AAYJ1/nhTHNgXHY+zYAkM6ooyxGnXh7+c9j3J1q5tw3QDhpl7PD+M
xm2xhGGy7SgP41pnHz9kNBlWhGDrqJnIswjKKksApLfYW1AXZu0Jjx6OpkmxhnTZ
12SZK4r1WuJxUhXjdZDkO6RO5tjeVVxVQ/LyVGEk/sjC0zk9UwioU8L6rwnYPIrq
KtebHyIqQYiQaA==
-----END CERTIFICATE-----
Generated at Mon Jun 9 13:55:16 2025 by rpki-client