Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
File: IwbLbMzQnnXtGfwG-1kkzyejmMM.mft (raw, json)
Hash identifier: 2Oquqdb7ARfM7tfSQ/cqOXkyjpFLHQCa4B5Z1eW+b7A=
Subject key identifier: 65:DF:AF:5D:19:08:9B:6F:64:00:25:B0:97:4E:1B:B1:B8:59:4E:63
Authority key identifier: 23:06:CB:6C:CC:D0:9E:75:ED:19:FC:06:FB:59:24:CF:27:A3:98:C3
Certificate issuer: /CN=2306cb6cccd09e75ed19fc06fb5924cf27a398c3
Certificate serial: 01965A5E69940268E5DCCDFF092631AB1F09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwbLbMzQnnXtGfwG-1kkzyejmMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
Manifest number: 027C
Signing time: Mon 21 Apr 2025 22:00:58 +0000
Manifest this update: Mon 21 Apr 2025 22:00:58 +0000
Manifest next update: Tue 22 Apr 2025 22:00:58 +0000
Files and hashes: 1: IwbLbMzQnnXtGfwG-1kkzyejmMM.crl (hash: 4mUBFhgAInuefhaHOWYh+URqFKcp1t4MuMib2mIBZfU=)
2: YYev6Pek4prQk97zPtNDo2u2KRU.roa (hash: wJZbyHz8STJ6eKcT9ZVX0wVCLZZb2WUlXYfMJ35kaXE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IwbLbMzQnnXtGfwG-1kkzyejmMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5a:5e:69:94:02:68:e5:dc:cd:ff:09:26:31:ab:1f:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2306cb6cccd09e75ed19fc06fb5924cf27a398c3
Validity
Not Before: Apr 21 22:00:58 2025 GMT
Not After : Apr 22 22:00:58 2025 GMT
Subject: CN=65dfaf5d19089b6f640025b0974e1bb1b8594e63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ca:67:d2:d0:e9:0a:72:12:68:44:f2:7f:be:
83:f3:fc:5b:78:47:3b:d6:9a:af:60:80:7b:5f:07:
63:0e:03:8f:85:73:b9:9e:ed:d5:ac:2a:df:7e:95:
f6:22:ba:03:5c:2c:d1:59:50:0b:13:00:28:f0:59:
24:13:b9:c5:42:ed:a0:f0:11:11:67:02:24:3c:bd:
d5:9c:c9:5c:e4:58:22:ff:e7:be:57:75:40:72:e6:
6b:40:5a:04:07:33:9c:73:12:5e:10:f7:05:1e:3d:
d5:a2:7a:dd:25:31:7a:23:0a:4d:4a:f0:cf:39:4d:
56:29:82:72:00:2d:bc:8b:94:25:94:bf:96:0d:39:
f9:40:b3:48:a5:48:34:59:66:1e:3f:a0:8b:48:86:
69:b1:78:ac:b4:19:ca:49:b0:e7:ff:66:f5:f7:02:
d9:2d:8f:9e:89:05:a2:fc:a7:7d:c8:e7:7b:09:64:
a7:e9:f8:4b:ba:d2:fe:93:aa:bf:d9:22:34:95:f3:
56:6f:ad:4e:49:59:fc:db:92:ec:f9:66:ee:66:14:
dc:53:b4:58:0f:99:86:d8:8a:73:cd:74:3d:4d:d2:
dc:88:8a:1a:7b:c1:42:e5:92:19:19:d5:ce:2c:0e:
19:df:58:53:20:9e:8f:2b:47:f6:46:46:3b:67:30:
e1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:DF:AF:5D:19:08:9B:6F:64:00:25:B0:97:4E:1B:B1:B8:59:4E:63
X509v3 Authority Key Identifier:
keyid:23:06:CB:6C:CC:D0:9E:75:ED:19:FC:06:FB:59:24:CF:27:A3:98:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwbLbMzQnnXtGfwG-1kkzyejmMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:a0:2b:aa:a5:c5:69:78:70:03:b5:a6:22:88:41:3e:23:8e:
fc:84:c5:0e:18:92:56:45:d8:49:f3:12:ed:e8:a7:1a:21:ac:
d9:7c:e1:4f:36:e7:d9:fe:29:e6:d4:0c:43:74:4b:6c:ef:00:
7a:43:db:95:48:37:16:99:89:a4:4a:09:b5:67:07:18:f7:39:
dc:8b:79:d5:2d:d9:b8:42:4a:cb:b7:96:81:9a:79:3a:bc:d9:
02:23:33:61:f4:a1:26:e3:37:08:30:a2:bd:d7:0a:15:3e:45:
f0:37:e6:f1:6d:5a:1c:a6:6b:b4:ab:61:8f:1b:18:37:bb:1e:
60:5f:12:71:a4:80:b8:fa:d0:1e:49:f6:f1:18:0d:97:46:b5:
92:5b:0f:27:c4:ee:57:94:c3:2c:92:a9:b7:80:b1:50:6b:64:
4e:74:3f:0f:04:2e:e9:43:f7:27:ca:d3:15:46:27:d0:62:8b:
9b:df:43:d1:ba:18:ba:c6:45:c2:95:10:ce:d3:8c:87:88:a8:
38:1b:7b:3b:b7:da:84:bb:e7:c4:ed:8f:7a:ae:6e:77:a0:d1:
80:4d:3a:ac:f1:1d:38:c2:13:72:27:76:10:3c:34:a4:fc:30:
fa:0c:13:5e:34:47:1a:55:fe:75:30:c0:e4:2f:c4:c3:53:8f:
98:3d:58:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZaXmmUAmjl3M3/CSYxqx8JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzMDZjYjZjY2NkMDllNzVlZDE5ZmMwNmZiNTkyNGNmMjdh
Mzk4YzMwHhcNMjUwNDIxMjIwMDU4WhcNMjUwNDIyMjIwMDU4WjAzMTEwLwYDVQQD
Eyg2NWRmYWY1ZDE5MDg5YjZmNjQwMDI1YjA5NzRlMWJiMWI4NTk0ZTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMpn0tDpCnISaETyf76D8/xbeEc7
1pqvYIB7XwdjDgOPhXO5nu3VrCrffpX2IroDXCzRWVALEwAo8FkkE7nFQu2g8BER
ZwIkPL3VnMlc5Fgi/+e+V3VAcuZrQFoEBzOccxJeEPcFHj3VonrdJTF6IwpNSvDP
OU1WKYJyAC28i5QllL+WDTn5QLNIpUg0WWYeP6CLSIZpsXistBnKSbDn/2b19wLZ
LY+eiQWi/Kd9yOd7CWSn6fhLutL+k6q/2SI0lfNWb61OSVn825Ls+WbuZhTcU7RY
D5mG2IpzzXQ9TdLciIoae8FC5ZIZGdXOLA4Z31hTIJ6PK0f2RkY7ZzDhcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGXfr10ZCJtvZAAlsJdOG7G4WU5jMB8GA1UdIwQY
MBaAFCMGy2zM0J517Rn8BvtZJM8no5jDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXdiTGJNelFublh0R2Z3Ry0xa2t6eWVqbU1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC9kOWRkODItOWJiOS00ODRjLTgxY2It
ODNiZGNhZDAyMDQ3LzEvSXdiTGJNelFublh0R2Z3Ry0xa2t6eWVqbU1NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC9kOWRkODItOWJiOS00ODRjLTgxY2ItODNiZGNhZDAyMDQ3
LzEvSXdiTGJNelFublh0R2Z3Ry0xa2t6eWVqbU1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU6ArqqXF
aXhwA7WmIohBPiOO/ITFDhiSVkXYSfMS7einGiGs2XzhTzbn2f4p5tQMQ3RLbO8A
ekPblUg3FpmJpEoJtWcHGPc53It51S3ZuEJKy7eWgZp5OrzZAiMzYfShJuM3CDCi
vdcKFT5F8Dfm8W1aHKZrtKthjxsYN7seYF8ScaSAuPrQHkn28RgNl0a1klsPJ8Tu
V5TDLJKpt4CxUGtkTnQ/DwQu6UP3J8rTFUYn0GKLm99D0boYusZFwpUQztOMh4io
OBt7O7fahLvnxO2Peq5ud6DRgE06rPEdOMITcid2EDw0pPww+gwTXjRHGlX+dTDA
5C/Ew1OPmD1YKQ==
-----END CERTIFICATE-----
Generated at Tue Apr 22 04:49:24 2025 by rpki-client