Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
File: ih8K1VcrribjnIdAxoqPu0buSGQ.mft (raw, json)
Hash identifier: Nsd6PIxrGxXeUdAOrcm/LWBNKvUPQcS+9M48Py0vBhw=
Subject key identifier: AF:2B:2B:D1:5C:6D:BC:D1:E7:C0:A5:E1:83:B4:A4:5C:7F:00:24:75
Authority key identifier: 8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
Certificate issuer: /CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Certificate serial: 01974A0CAFEF0C3AD71CDD70575358DCC625
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
Manifest number: 090E
Signing time: Sat 07 Jun 2025 11:00:34 +0000
Manifest this update: Sat 07 Jun 2025 11:00:34 +0000
Manifest next update: Sun 08 Jun 2025 11:00:34 +0000
Files and hashes: 1: eG2Sz-NBLwpAqaii4LbUZ-cWycY.roa (hash: uPzFHNSnB/27/j7jzNn6SSjG0qijsqzpue+Zsmabwu4=)
2: ih8K1VcrribjnIdAxoqPu0buSGQ.crl (hash: t6fVK7NZAyl3Q6giPuOUn2cCYYpiA40ED8HYt23Ssjc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:af:ef:0c:3a:d7:1c:dd:70:57:53:58:dc:c6:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Validity
Not Before: Jun 7 11:00:34 2025 GMT
Not After : Jun 8 11:00:34 2025 GMT
Subject: CN=af2b2bd15c6dbcd1e7c0a5e183b4a45c7f002475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f5:a8:cb:bc:cc:df:c8:6a:53:67:e8:13:50:
5b:a4:b6:c4:a5:37:22:9b:06:f5:10:f7:9a:7a:dc:
99:05:e5:e0:c0:5b:5f:fe:1d:d4:2e:15:43:50:bb:
2d:b0:8c:1c:e2:d6:7a:b8:0a:b7:41:a4:40:98:9f:
86:d0:0b:5e:5d:b8:17:0b:d9:40:0f:e1:68:f4:3a:
ca:9b:fd:a1:44:13:a9:f0:16:0d:f9:3c:8c:fe:7f:
69:51:2c:51:bc:95:67:97:70:f0:53:7e:9d:0e:84:
8f:c6:fa:dc:38:18:08:dc:3c:f0:57:e1:60:fc:8d:
56:be:8d:21:39:48:70:98:ad:b6:4e:fe:4c:b5:46:
5d:78:8a:9e:af:24:b8:28:dd:12:7c:d9:ff:ec:ce:
15:32:92:8a:30:e1:12:15:93:4a:9e:1c:d2:50:ea:
92:0e:c2:c7:04:54:27:c0:ae:e1:38:6e:e3:fd:de:
fe:5e:9e:94:63:a5:a2:e3:9b:1e:c4:97:ad:3f:68:
09:e1:06:9a:1e:6e:30:10:b9:07:3c:b7:87:41:36:
e3:e5:85:be:1d:ae:32:6c:da:eb:eb:2c:90:22:55:
1a:43:73:b6:a8:f7:49:23:bb:03:01:8f:01:9f:95:
1c:d7:44:7d:e2:c3:7f:b6:b3:e7:10:df:59:8e:52:
e8:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:2B:2B:D1:5C:6D:BC:D1:E7:C0:A5:E1:83:B4:A4:5C:7F:00:24:75
X509v3 Authority Key Identifier:
keyid:8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:65:5b:9d:54:b4:dc:88:0b:ba:24:75:d6:3a:44:8a:3c:e6:
ca:40:c1:fb:9d:30:ba:4d:c8:9c:2a:7a:4d:dd:c5:5b:84:9f:
af:af:3f:1e:e8:1c:c8:16:ea:fc:23:1b:ef:68:48:47:6c:fc:
42:fa:9b:d1:c4:6b:35:3e:a5:98:5c:7a:3d:7f:17:58:16:8c:
04:52:cc:42:f4:56:3b:7b:3a:60:be:41:a0:d4:71:ce:4e:76:
d0:b6:c3:7e:d5:72:53:19:fd:55:f2:cf:69:4b:cd:47:47:bb:
fe:a4:e8:02:d1:b0:99:11:77:22:27:b0:d2:49:40:cf:51:5b:
61:0d:f9:25:a8:8a:56:14:40:ba:cf:8d:47:07:ea:f2:03:86:
eb:b9:42:ad:ee:ce:24:94:46:fb:65:c2:ac:58:af:40:ed:b6:
7b:3e:47:ed:09:24:7b:59:f4:c8:15:59:75:6b:83:43:ad:56:
aa:6f:dd:93:8d:e6:d2:8a:49:31:aa:72:db:b7:da:5b:8d:5d:
7a:7e:02:c8:dd:ca:a8:5f:27:24:e9:bc:20:1d:32:6c:9c:37:
bb:e9:e6:3f:72:9f:56:1a:33:5e:5f:ae:4b:23:78:c2:3e:57:
81:e3:a4:ed:6f:07:93:f5:29:05:29:c4:83:7d:a0:94:79:da:
c2:64:3d:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKDK/vDDrXHN1wV1NY3MYlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhMWYwYWQ1NTcyYmFlMjZlMzljODc0MGM2OGE4ZmJiNDZl
ZTQ4NjQwHhcNMjUwNjA3MTEwMDM0WhcNMjUwNjA4MTEwMDM0WjAzMTEwLwYDVQQD
EyhhZjJiMmJkMTVjNmRiY2QxZTdjMGE1ZTE4M2I0YTQ1YzdmMDAyNDc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfWoy7zM38hqU2foE1BbpLbEpTci
mwb1EPeaetyZBeXgwFtf/h3ULhVDULstsIwc4tZ6uAq3QaRAmJ+G0AteXbgXC9lA
D+Fo9DrKm/2hRBOp8BYN+TyM/n9pUSxRvJVnl3DwU36dDoSPxvrcOBgI3DzwV+Fg
/I1Wvo0hOUhwmK22Tv5MtUZdeIqeryS4KN0SfNn/7M4VMpKKMOESFZNKnhzSUOqS
DsLHBFQnwK7hOG7j/d7+Xp6UY6Wi45sexJetP2gJ4QaaHm4wELkHPLeHQTbj5YW+
Ha4ybNrr6yyQIlUaQ3O2qPdJI7sDAY8Bn5Uc10R94sN/trPnEN9ZjlLoyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK8rK9FcbbzR58Cl4YO0pFx/ACR1MB8GA1UdIwQY
MBaAFIofCtVXK64m45yHQMaKj7tG7khkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS8yZmQyMGEtNTNhZS00YmVhLTgwYzkt
MDNmMjNhNzM5NDFkLzEvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS8yZmQyMGEtNTNhZS00YmVhLTgwYzktMDNmMjNhNzM5NDFk
LzEvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwmVbnVS0
3IgLuiR11jpEijzmykDB+50wuk3InCp6Td3FW4Sfr68/HugcyBbq/CMb72hIR2z8
Qvqb0cRrNT6lmFx6PX8XWBaMBFLMQvRWO3s6YL5BoNRxzk520LbDftVyUxn9VfLP
aUvNR0e7/qToAtGwmRF3Iiew0klAz1FbYQ35JaiKVhRAus+NRwfq8gOG67lCre7O
JJRG+2XCrFivQO22ez5H7Qkke1n0yBVZdWuDQ61Wqm/dk43m0opJMapy27faW41d
en4CyN3KqF8nJOm8IB0ybJw3u+nmP3KfVhozXl+uSyN4wj5XgeOk7W8Hk/UpBSnE
g32glHnawmQ96w==
-----END CERTIFICATE-----
Generated at Sat Jun 7 15:32:10 2025 by rpki-client