Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.mft
File: iqaY-D40KcieNMjy77WxIBoY_Pc.mft (raw, json)
Hash identifier: j6lMlSnnfPWO1xCe9LaNLRl9JSIbrQdyIdcRWG5U9RM=
Subject key identifier: B4:0C:2E:DC:EC:E1:19:CA:7B:BC:F3:29:E5:D4:58:86:3B:16:44:DC
Authority key identifier: 8A:A6:98:F8:3E:34:29:C8:9E:34:C8:F2:EF:B5:B1:20:1A:18:FC:F7
Certificate issuer: /CN=8aa698f83e3429c89e34c8f2efb5b1201a18fcf7
Certificate serial: 01974DB2690D6FBC171F63B0E7AE798C5469
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqaY-D40KcieNMjy77WxIBoY_Pc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.mft
Manifest number: 1582
Signing time: Sun 08 Jun 2025 04:00:27 +0000
Manifest this update: Sun 08 Jun 2025 04:00:27 +0000
Manifest next update: Mon 09 Jun 2025 04:00:27 +0000
Files and hashes: 1: Eklv5iMrpdIb57nofb-2LDtZiMo.roa (hash: yKALUmc+NQQTzWDEWN3x1mf1BWmjZYZaxlqX1YAmy08=)
2: iqaY-D40KcieNMjy77WxIBoY_Pc.crl (hash: BceL07zs6qcwe4I3eXKhdQCJoaX7inM9Pg1wVri8qiw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.mft
rsync://rpki.ripe.net/repository/DEFAULT/iqaY-D40KcieNMjy77WxIBoY_Pc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:b2:69:0d:6f:bc:17:1f:63:b0:e7:ae:79:8c:54:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aa698f83e3429c89e34c8f2efb5b1201a18fcf7
Validity
Not Before: Jun 8 04:00:27 2025 GMT
Not After : Jun 9 04:00:27 2025 GMT
Subject: CN=b40c2edcece119ca7bbcf329e5d458863b1644dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:af:5e:00:ce:24:aa:3a:5e:cd:5c:10:e2:d1:
ea:94:ab:8d:50:56:de:4f:5a:17:ea:86:eb:b7:98:
f0:06:0f:54:e5:06:c8:b8:00:8a:3e:46:a9:9d:b9:
e0:a8:e7:70:00:c5:3b:e2:b5:54:b1:4d:ac:05:b6:
f2:15:dd:2a:52:a0:0d:6a:9a:95:cf:91:02:cb:f5:
9a:5e:1c:73:55:04:9b:54:24:f8:e0:a1:42:14:e3:
43:2c:28:53:ac:7f:43:1a:88:fc:9d:d3:73:9a:46:
fb:86:65:96:eb:16:3c:d1:bd:52:c4:16:d2:dd:d7:
0d:7e:17:dc:56:dd:db:75:bf:01:3f:9f:bb:57:19:
7f:7c:a1:12:0d:6c:d3:68:85:c6:8d:68:92:c3:f3:
cc:cc:cd:ee:4e:74:98:9c:0b:c5:7a:38:6b:e6:d6:
d4:fa:50:b7:e0:93:bf:be:58:f5:20:bf:05:a5:95:
cb:7d:44:c2:11:56:67:7d:45:da:c7:44:7f:d2:1d:
43:40:7f:59:f9:35:5b:ac:71:65:f3:2a:bf:34:d0:
15:b7:0c:2d:3d:e1:9c:d7:38:f4:f3:82:6f:2c:45:
e6:ba:76:41:c8:ce:7c:55:3a:9b:10:ff:76:02:8f:
74:83:b9:0c:69:7b:5e:c0:15:d0:fa:84:11:4d:c5:
4c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:0C:2E:DC:EC:E1:19:CA:7B:BC:F3:29:E5:D4:58:86:3B:16:44:DC
X509v3 Authority Key Identifier:
keyid:8A:A6:98:F8:3E:34:29:C8:9E:34:C8:F2:EF:B5:B1:20:1A:18:FC:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqaY-D40KcieNMjy77WxIBoY_Pc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:4d:4e:19:84:be:25:d0:dc:de:26:88:42:87:2a:9f:fd:c7:
38:8a:6e:8a:62:74:3b:eb:cb:7d:7a:f1:c9:d9:cc:c9:ae:0b:
4c:63:a7:2d:d5:ad:8b:97:84:69:70:f0:e9:6c:89:a3:8f:85:
6a:b0:ad:60:d6:38:6d:02:e9:19:e6:af:56:ca:60:e4:6b:ec:
ab:53:e6:60:35:ed:40:00:62:0c:e5:64:85:5a:65:94:eb:65:
51:0f:d0:6c:d8:e2:04:cb:04:d0:9d:51:b8:25:2d:45:1b:d8:
ab:20:f4:1e:0e:1a:0c:00:a8:cc:60:de:51:74:20:b3:b6:4f:
b9:7c:19:6e:4d:47:4e:eb:ad:e7:28:72:f6:9e:f6:31:d0:9c:
ad:f6:cd:9b:8e:ee:92:53:1a:7e:22:c7:aa:f9:34:da:34:5d:
a7:ff:3d:cf:ee:8b:48:d5:e2:fd:9f:5c:92:0c:84:6c:a1:99:
83:be:45:c0:34:6c:3a:09:24:f7:08:ca:a2:bf:f9:72:b3:d3:
47:da:26:b0:c4:43:88:ee:c1:31:f1:bb:30:65:a9:6a:80:8a:
ba:3a:34:db:0d:d9:48:9a:51:39:59:3c:b5:e3:28:70:25:ea:
b4:2d:57:60:6d:d8:7f:b8:59:85:8b:c0:2c:b1:78:ad:fd:88:
00:57:2e:09
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdNsmkNb7wXH2Ow5655jFRpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhYTY5OGY4M2UzNDI5Yzg5ZTM0YzhmMmVmYjViMTIwMWEx
OGZjZjcwHhcNMjUwNjA4MDQwMDI3WhcNMjUwNjA5MDQwMDI3WjAzMTEwLwYDVQQD
EyhiNDBjMmVkY2VjZTExOWNhN2JiY2YzMjllNWQ0NTg4NjNiMTY0NGRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAta9eAM4kqjpezVwQ4tHqlKuNUFbe
T1oX6obrt5jwBg9U5QbIuACKPkapnbngqOdwAMU74rVUsU2sBbbyFd0qUqANapqV
z5ECy/WaXhxzVQSbVCT44KFCFONDLChTrH9DGoj8ndNzmkb7hmWW6xY80b1SxBbS
3dcNfhfcVt3bdb8BP5+7Vxl/fKESDWzTaIXGjWiSw/PMzM3uTnSYnAvFejhr5tbU
+lC34JO/vlj1IL8FpZXLfUTCEVZnfUXax0R/0h1DQH9Z+TVbrHFl8yq/NNAVtwwt
PeGc1zj084JvLEXmunZByM58VTqbEP92Ao90g7kMaXtewBXQ+oQRTcVMIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLQMLtzs4RnKe7zzKeXUWIY7FkTcMB8GA1UdIwQY
MBaAFIqmmPg+NCnInjTI8u+1sSAaGPz3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXFhWS1ENDBLY2llTk1qeTc3V3hJQm9ZX1BjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9kNzA0ZjItNmVkNC00NGMxLThlNGYt
NGQ3YTg0YmFiYmRlLzEvaXFhWS1ENDBLY2llTk1qeTc3V3hJQm9ZX1BjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9kNzA0ZjItNmVkNC00NGMxLThlNGYtNGQ3YTg0YmFiYmRl
LzEvaXFhWS1ENDBLY2llTk1qeTc3V3hJQm9ZX1BjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAME1OGYS+
JdDc3iaIQocqn/3HOIpuimJ0O+vLfXrxydnMya4LTGOnLdWti5eEaXDw6WyJo4+F
arCtYNY4bQLpGeavVspg5Gvsq1PmYDXtQABiDOVkhVpllOtlUQ/QbNjiBMsE0J1R
uCUtRRvYqyD0Hg4aDACozGDeUXQgs7ZPuXwZbk1HTuut5yhy9p72MdCcrfbNm47u
klMafiLHqvk02jRdp/89z+6LSNXi/Z9ckgyEbKGZg75FwDRsOgkk9wjKor/5crPT
R9omsMRDiO7BMfG7MGWpaoCKujo02w3ZSJpROVk8teMocCXqtC1XYG3Yf7hZhYvA
LLF4rf2IAFcuCQ==
-----END CERTIFICATE-----
Generated at Sun Jun 8 11:55:40 2025 by rpki-client