Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
File: I5Vy3fyrYpHmQQzNToYO42AA5mg.mft (raw, json)
Hash identifier: 9eyId3UGyfCYmElzCVFHtIJtLQqRSX7Y5LOiR078ugc=
Subject key identifier: FF:BD:3F:FC:40:E9:88:9B:70:DF:F4:5C:DF:5A:5D:17:E5:7D:4D:B6
Authority key identifier: 23:95:72:DD:FC:AB:62:91:E6:41:0C:CD:4E:86:0E:E3:60:00:E6:68
Certificate issuer: /CN=239572ddfcab6291e6410ccd4e860ee36000e668
Certificate serial: 01964F6C8DDFA8DE4A85461B3E3519A72D07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
Manifest number: 14FD
Signing time: Sat 19 Apr 2025 19:00:36 +0000
Manifest this update: Sat 19 Apr 2025 19:00:36 +0000
Manifest next update: Sun 20 Apr 2025 19:00:36 +0000
Files and hashes: 1: I5Vy3fyrYpHmQQzNToYO42AA5mg.crl (hash: yk/WH4ghIi5I11R9WPCDG8wjhTHwsWDxJGQhuRe7Mkc=)
2: cEnlNHZ35kSVNo2T27Ex45pap18.roa (hash: q/g4pWJ8XYH4irxAQK7i5w/oElgLduGOhld/VI56BOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6c:8d:df:a8:de:4a:85:46:1b:3e:35:19:a7:2d:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=239572ddfcab6291e6410ccd4e860ee36000e668
Validity
Not Before: Apr 19 19:00:36 2025 GMT
Not After : Apr 20 19:00:36 2025 GMT
Subject: CN=ffbd3ffc40e9889b70dff45cdf5a5d17e57d4db6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:26:32:77:4a:04:55:e3:d7:09:dd:c8:69:39:
ed:65:e4:15:4e:b2:2c:15:3b:12:40:25:3e:e5:74:
19:87:09:de:5f:1f:00:9d:9e:ee:c1:f6:2e:45:53:
60:c2:bd:45:e1:70:91:72:d3:d9:8e:2e:d4:e5:bd:
4e:45:5a:8f:01:cb:db:b3:e7:8d:c2:d8:5e:51:e8:
17:45:71:a1:f2:8a:99:0d:48:21:7c:8a:5b:6c:6a:
5b:42:43:78:37:2d:b5:6a:48:39:99:66:ed:7f:0a:
82:8b:a4:5f:cf:d7:d9:77:3d:b1:af:1d:14:3e:55:
8d:33:93:eb:ef:e3:50:70:b4:72:20:bc:e9:75:3f:
94:56:08:aa:83:2d:6f:39:c6:d6:3e:c4:62:d9:ca:
b2:42:d7:0e:1a:5f:6e:e1:51:b2:e2:89:17:f1:b1:
bf:71:a4:2b:b8:e2:b7:a6:7f:57:09:6d:25:e9:ad:
79:71:f2:85:03:44:ca:73:0c:67:a0:df:da:af:82:
fd:19:b7:78:8d:f6:ee:92:fd:ca:33:ed:72:c8:90:
a7:2c:80:3e:d5:b8:64:e9:a6:4a:bc:62:9f:16:c7:
d1:08:d3:54:09:9d:36:c9:11:61:15:b5:a5:96:64:
39:d6:40:75:e3:cd:e7:cc:d0:57:4c:32:58:8c:d8:
f3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:BD:3F:FC:40:E9:88:9B:70:DF:F4:5C:DF:5A:5D:17:E5:7D:4D:B6
X509v3 Authority Key Identifier:
keyid:23:95:72:DD:FC:AB:62:91:E6:41:0C:CD:4E:86:0E:E3:60:00:E6:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:ab:8f:9d:de:84:ea:05:20:91:1d:91:a1:26:88:94:16:36:
46:4b:d6:7f:53:56:08:1b:c6:0a:c5:f3:56:07:f7:2b:4a:7c:
4a:0d:98:c9:2a:9b:62:46:4c:95:58:92:27:19:12:c0:40:61:
a2:db:a2:fa:aa:2c:27:f0:85:1d:a2:3a:26:a4:7f:ae:3e:13:
e6:34:6c:e1:59:75:1d:14:c6:a1:49:28:4a:37:93:f7:2f:f6:
b4:28:8c:60:48:7b:2e:ef:eb:3e:e9:86:43:f3:49:95:f4:c8:
63:04:e4:1f:15:ec:39:5f:71:6a:75:fd:f3:64:87:09:fe:87:
fc:e2:40:28:35:07:a9:05:c8:39:c5:b8:3e:4a:3e:ba:42:cb:
54:d8:ee:b2:e8:f9:64:d6:58:43:7b:e1:2a:4c:4e:c1:15:19:
ca:9c:49:f7:bd:46:1d:06:9a:ab:a7:08:2b:5d:1e:18:40:f4:
81:25:bf:7e:47:19:c6:72:7b:22:db:5d:55:d9:af:dc:da:d5:
d5:03:f6:fd:68:81:6f:f6:fb:22:9a:48:7d:67:a4:76:fc:6f:
05:e1:de:e3:b1:5a:83:2f:c5:db:ae:0d:b2:93:0b:30:26:66:
6a:be:74:a3:0b:79:34:c0:48:36:da:2d:10:e7:26:4e:6f:81:
17:80:e2:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZPbI3fqN5KhUYbPjUZpy0HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzOTU3MmRkZmNhYjYyOTFlNjQxMGNjZDRlODYwZWUzNjAw
MGU2NjgwHhcNMjUwNDE5MTkwMDM2WhcNMjUwNDIwMTkwMDM2WjAzMTEwLwYDVQQD
EyhmZmJkM2ZmYzQwZTk4ODliNzBkZmY0NWNkZjVhNWQxN2U1N2Q0ZGI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuSYyd0oEVePXCd3IaTntZeQVTrIs
FTsSQCU+5XQZhwneXx8AnZ7uwfYuRVNgwr1F4XCRctPZji7U5b1ORVqPAcvbs+eN
wtheUegXRXGh8oqZDUghfIpbbGpbQkN4Ny21akg5mWbtfwqCi6Rfz9fZdz2xrx0U
PlWNM5Pr7+NQcLRyILzpdT+UVgiqgy1vOcbWPsRi2cqyQtcOGl9u4VGy4okX8bG/
caQruOK3pn9XCW0l6a15cfKFA0TKcwxnoN/ar4L9Gbd4jfbukv3KM+1yyJCnLIA+
1bhk6aZKvGKfFsfRCNNUCZ02yRFhFbWllmQ51kB1483nzNBXTDJYjNjzfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP+9P/xA6YibcN/0XN9aXRflfU22MB8GA1UdIwQY
MBaAFCOVct38q2KR5kEMzU6GDuNgAOZoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTVWeTNmeXJZcEhtUVF6TlRvWU80MkFBNW1nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8xZDdmMDgtZTc3Yy00MzM4LTlhMzkt
OGUxOWMwZGI4NmMyLzEvSTVWeTNmeXJZcEhtUVF6TlRvWU80MkFBNW1nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC8xZDdmMDgtZTc3Yy00MzM4LTlhMzktOGUxOWMwZGI4NmMy
LzEvSTVWeTNmeXJZcEhtUVF6TlRvWU80MkFBNW1nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUquPnd6E
6gUgkR2RoSaIlBY2RkvWf1NWCBvGCsXzVgf3K0p8Sg2YySqbYkZMlViSJxkSwEBh
otui+qosJ/CFHaI6JqR/rj4T5jRs4Vl1HRTGoUkoSjeT9y/2tCiMYEh7Lu/rPumG
Q/NJlfTIYwTkHxXsOV9xanX982SHCf6H/OJAKDUHqQXIOcW4Pko+ukLLVNjusuj5
ZNZYQ3vhKkxOwRUZypxJ971GHQaaq6cIK10eGED0gSW/fkcZxnJ7IttdVdmv3NrV
1QP2/WiBb/b7IppIfWekdvxvBeHe47Fagy/F264NspMLMCZmar50owt5NMBINtot
EOcmTm+BF4DiPQ==
-----END CERTIFICATE-----
Generated at Sun Apr 20 00:10:11 2025 by rpki-client