Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
File: IT2HNcFEzxJWWEO2nrQKTRowGqU.mft (raw, json)
Hash identifier: SQXgca4JhWXdIv9c7YpbktPkqlHMa6dN4PDGnEyQhAs=
Subject key identifier: 1C:97:88:D2:9B:FA:94:38:B4:3A:3E:B4:36:F5:F8:7C:6B:5A:06:20
Authority key identifier: 21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
Certificate issuer: /CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Certificate serial: 01974D44E57D3D0C0403C2F401013D36C23D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
Manifest number: 0EEF
Signing time: Sun 08 Jun 2025 02:00:50 +0000
Manifest this update: Sun 08 Jun 2025 02:00:50 +0000
Manifest next update: Mon 09 Jun 2025 02:00:50 +0000
Files and hashes: 1: IT2HNcFEzxJWWEO2nrQKTRowGqU.crl (hash: 0VQVXvEU/URQA0RENKxVzkABhetPGCclPsGoXrJ6fyY=)
2: oYl1-NMXXzEXtTi3L5l80mvOKew.roa (hash: HGKJcqJks4x1KvA9MPs1IeJtaKWdWbE52yFjhD/1Aak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 02:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:44:e5:7d:3d:0c:04:03:c2:f4:01:01:3d:36:c2:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Validity
Not Before: Jun 8 02:00:50 2025 GMT
Not After : Jun 9 02:00:50 2025 GMT
Subject: CN=1c9788d29bfa9438b43a3eb436f5f87c6b5a0620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:c5:eb:79:68:4d:ea:5b:f9:18:99:1a:fe:2c:
72:9f:64:a5:ad:e3:db:a4:67:79:b9:87:27:7f:a9:
ae:c3:2c:e4:b0:20:67:a8:01:21:b1:84:28:30:63:
09:44:8c:fd:6e:62:fe:dc:85:f7:b5:36:34:15:e2:
c9:66:5d:5d:2c:6b:10:77:fb:df:04:8a:53:04:80:
5f:2a:de:a9:a1:2f:71:b5:5c:6c:1c:44:a9:1e:45:
89:3c:6d:8e:6c:17:3e:4d:1f:da:f8:eb:33:b6:05:
51:f8:b8:9b:d5:28:8f:b9:e7:c7:f0:7e:03:9e:b0:
83:27:9c:a3:35:e6:dc:d3:09:ad:08:d5:94:54:68:
7d:f8:31:64:d6:23:2c:30:0b:6d:ea:cb:11:50:50:
5b:62:77:b6:0d:ff:31:8f:80:03:b1:04:af:c4:38:
1f:3e:03:72:6e:04:eb:cf:8c:bf:87:3d:af:3e:18:
60:a7:32:ec:e5:a3:86:54:d5:95:d4:e9:01:70:8c:
b1:28:22:f0:9b:db:8e:02:f2:f6:9c:e4:07:93:d4:
5d:b4:57:49:7f:30:b5:ce:22:94:08:4a:14:a6:ba:
7b:07:37:0f:6f:b1:1f:15:58:6b:1c:8a:20:11:8b:
72:f6:9f:26:5b:63:3e:87:38:a3:97:7b:f2:5b:80:
d1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:97:88:D2:9B:FA:94:38:B4:3A:3E:B4:36:F5:F8:7C:6B:5A:06:20
X509v3 Authority Key Identifier:
keyid:21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:3f:da:f6:dc:00:a5:64:df:6c:22:59:17:c6:4d:77:5f:66:
9a:c2:95:b3:f3:38:6a:9c:92:26:df:ce:cc:58:0d:97:06:f9:
49:0a:3c:be:da:e9:d6:ff:b2:f6:4d:1f:db:59:dd:e6:0c:fd:
ed:6c:ec:f4:3d:6c:67:5a:e8:29:6a:14:39:48:87:76:cc:48:
66:74:9c:f4:48:31:10:fc:7c:e2:ca:c5:58:09:2d:d3:ad:16:
b9:71:9f:66:9c:57:31:27:26:96:bf:6e:f0:b4:e6:eb:7d:94:
c8:e6:f9:39:ab:1d:85:42:b7:b3:9d:cc:01:d5:3a:47:cc:45:
0f:29:91:6b:2a:16:27:43:ea:8e:b3:af:ed:81:1a:50:11:3f:
33:71:6d:77:97:bd:07:e2:76:78:f0:b9:a8:07:5b:38:58:35:
2c:15:7b:f8:6d:02:89:95:40:e7:12:c0:fb:48:d9:54:2b:8f:
a5:31:a3:58:6e:0e:52:17:1a:ff:ae:a4:3a:37:88:c1:b9:61:
9a:1f:e0:c3:79:d0:49:0a:7c:5e:e5:27:99:e6:17:19:f2:52:
47:a8:71:c9:5f:e7:62:2d:0d:fd:e1:2e:46:50:82:9c:bd:f0:
e0:2c:b8:87:cd:d8:1f:5d:7c:30:26:cb:8d:68:02:d6:0d:be:
81:3c:84:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdNROV9PQwEA8L0AQE9NsI9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxM2Q4NzM1YzE0NGNmMTI1NjU4NDNiNjllYjQwYTRkMWEz
MDFhYTUwHhcNMjUwNjA4MDIwMDUwWhcNMjUwNjA5MDIwMDUwWjAzMTEwLwYDVQQD
EygxYzk3ODhkMjliZmE5NDM4YjQzYTNlYjQzNmY1Zjg3YzZiNWEwNjIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2cXreWhN6lv5GJka/ixyn2SlrePb
pGd5uYcnf6muwyzksCBnqAEhsYQoMGMJRIz9bmL+3IX3tTY0FeLJZl1dLGsQd/vf
BIpTBIBfKt6poS9xtVxsHESpHkWJPG2ObBc+TR/a+OsztgVR+Lib1SiPuefH8H4D
nrCDJ5yjNebc0wmtCNWUVGh9+DFk1iMsMAtt6ssRUFBbYne2Df8xj4ADsQSvxDgf
PgNybgTrz4y/hz2vPhhgpzLs5aOGVNWV1OkBcIyxKCLwm9uOAvL2nOQHk9RdtFdJ
fzC1ziKUCEoUprp7BzcPb7EfFVhrHIogEYty9p8mW2M+hzijl3vyW4DRlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFByXiNKb+pQ4tDo+tDb1+HxrWgYgMB8GA1UdIwQY
MBaAFCE9hzXBRM8SVlhDtp60Ck0aMBqlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVQySE5jRkV6eEpXV0VPMm5yUUtUUm93R3FVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9iMDQzYWYtYjQ5Mi00YjViLWEyNTAt
MzAxNDMzZWJlNDM2LzEvSVQySE5jRkV6eEpXV0VPMm5yUUtUUm93R3FVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9iMDQzYWYtYjQ5Mi00YjViLWEyNTAtMzAxNDMzZWJlNDM2
LzEvSVQySE5jRkV6eEpXV0VPMm5yUUtUUm93R3FVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoD/a9twA
pWTfbCJZF8ZNd19mmsKVs/M4apySJt/OzFgNlwb5SQo8vtrp1v+y9k0f21nd5gz9
7Wzs9D1sZ1roKWoUOUiHdsxIZnSc9EgxEPx84srFWAkt060WuXGfZpxXMScmlr9u
8LTm632UyOb5OasdhUK3s53MAdU6R8xFDymRayoWJ0PqjrOv7YEaUBE/M3Ftd5e9
B+J2ePC5qAdbOFg1LBV7+G0CiZVA5xLA+0jZVCuPpTGjWG4OUhca/66kOjeIwblh
mh/gw3nQSQp8XuUnmeYXGfJSR6hxyV/nYi0N/eEuRlCCnL3w4Cy4h83YH118MCbL
jWgC1g2+gTyENg==
-----END CERTIFICATE-----
Generated at Sun Jun 8 11:33:55 2025 by rpki-client