Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
File: ih8K1VcrribjnIdAxoqPu0buSGQ.mft (raw, json)
Hash identifier: KPJbd2+kFdzJPlVuHZYSi8GzGaUOKskd377X3L9VqOI=
Subject key identifier: AA:0E:22:6F:1C:3A:FA:AD:F1:6C:36:AD:B9:F4:B0:FF:1D:CB:B0:04
Authority key identifier: 8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
Certificate issuer: /CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Certificate serial: 01962B6080FCAC768223CDE3F4B1C92C5B7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
Manifest number: 0879
Signing time: Sat 12 Apr 2025 19:01:06 +0000
Manifest this update: Sat 12 Apr 2025 19:01:06 +0000
Manifest next update: Sun 13 Apr 2025 19:01:06 +0000
Files and hashes: 1: ih8K1VcrribjnIdAxoqPu0buSGQ.crl (hash: tWWOTCFxMKrPCx6mN0QHDO8wUO9VeHCBiw4Z70YMVc8=)
2: t1D8WcZZnzqJuCrc2wQ7cw0wRmQ.roa (hash: vevggXMbyMvGr4MH92p9uOdv+lx11daC42qLpllimKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 18:34:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2b:60:80:fc:ac:76:82:23:cd:e3:f4:b1:c9:2c:5b:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Validity
Not Before: Apr 12 19:01:06 2025 GMT
Not After : Apr 13 19:01:06 2025 GMT
Subject: CN=aa0e226f1c3afaadf16c36adb9f4b0ff1dcbb004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c4:f8:e6:93:2f:b2:8f:b4:e4:22:87:65:32:
35:9e:b2:f7:2e:4c:96:a1:5e:4f:84:8b:ad:3c:91:
5f:da:65:cf:3e:66:5f:d5:54:73:d2:a9:19:22:99:
7e:32:ec:a3:6d:f4:4c:31:64:93:58:a4:14:4d:13:
8b:a4:8a:91:aa:30:0e:c1:53:a3:90:e5:31:60:b9:
4a:db:2c:cc:a8:43:d8:9f:c4:57:e3:32:df:e9:08:
bc:b2:8e:56:10:b8:30:ba:2e:50:2d:9d:02:da:de:
be:85:9f:43:4a:18:b7:2f:d6:66:69:eb:82:52:c8:
2f:29:f0:b2:15:de:2e:bf:a4:e3:ee:6a:8d:52:7e:
43:ac:0a:b3:62:19:df:6a:df:07:e0:61:a5:dc:a6:
02:32:c2:86:b4:3d:41:9d:63:d2:5e:2e:f4:71:b6:
a2:a7:1d:89:0a:0c:81:3b:b9:29:fe:4e:2d:3d:8e:
e6:7f:d8:4c:a9:b3:cd:0d:4f:ed:44:84:ab:78:53:
d6:6f:c9:39:5c:e5:09:67:6c:36:fa:87:b1:a4:b6:
80:6c:24:4f:a5:d0:34:5b:56:2e:f4:e2:56:d1:f9:
5d:fa:d6:69:e0:c7:26:78:a6:f5:f1:52:76:84:d3:
23:2f:db:df:5b:10:bf:ac:27:f4:79:47:25:62:54:
56:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:0E:22:6F:1C:3A:FA:AD:F1:6C:36:AD:B9:F4:B0:FF:1D:CB:B0:04
X509v3 Authority Key Identifier:
keyid:8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:60:8c:ee:dd:39:45:33:02:ee:95:92:ac:f0:bd:c8:1f:32:
31:b5:18:91:07:0e:ff:e4:63:05:d7:41:e4:22:be:95:34:04:
23:7d:92:40:87:7c:d8:65:59:24:ee:52:11:48:45:5a:a3:a7:
a9:76:59:5d:06:1d:11:3c:5f:7e:f3:d4:22:e3:5e:b8:31:03:
d4:f9:9c:74:06:f3:97:40:d1:a4:64:a5:9a:8f:02:e7:2d:91:
05:5f:4f:92:e4:aa:cc:3e:83:94:b8:50:fa:05:f2:2b:9f:10:
22:f8:82:de:ab:e3:fa:a9:6e:2c:ef:cd:b6:27:56:a4:58:55:
6c:63:f9:d3:e2:f6:f9:94:09:3e:72:fa:78:7e:64:17:63:16:
c8:f4:2d:2d:10:f0:94:34:8a:cf:f8:a6:05:2e:a5:c7:72:c1:
b8:6c:4d:05:fa:a1:2c:e5:5f:63:53:42:92:a5:35:2e:1c:e5:
c9:e9:07:51:64:94:7b:f2:c6:08:16:0a:1e:5b:28:8e:3d:06:
7b:ed:79:a1:22:74:c3:0a:51:e7:dc:2d:da:6c:4f:f7:b0:23:
38:87:02:a6:26:99:72:cb:ab:7a:fc:28:b5:14:22:74:b0:2f:
5c:aa:18:3d:61:14:de:85:57:c6:c6:7c:f1:14:24:0a:6d:b6:
7e:c4:de:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYrYID8rHaCI83j9LHJLFt+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhMWYwYWQ1NTcyYmFlMjZlMzljODc0MGM2OGE4ZmJiNDZl
ZTQ4NjQwHhcNMjUwNDEyMTkwMTA2WhcNMjUwNDEzMTkwMTA2WjAzMTEwLwYDVQQD
EyhhYTBlMjI2ZjFjM2FmYWFkZjE2YzM2YWRiOWY0YjBmZjFkY2JiMDA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8T45pMvso+05CKHZTI1nrL3LkyW
oV5PhIutPJFf2mXPPmZf1VRz0qkZIpl+MuyjbfRMMWSTWKQUTROLpIqRqjAOwVOj
kOUxYLlK2yzMqEPYn8RX4zLf6Qi8so5WELgwui5QLZ0C2t6+hZ9DShi3L9ZmaeuC
UsgvKfCyFd4uv6Tj7mqNUn5DrAqzYhnfat8H4GGl3KYCMsKGtD1BnWPSXi70cbai
px2JCgyBO7kp/k4tPY7mf9hMqbPNDU/tRISreFPWb8k5XOUJZ2w2+oexpLaAbCRP
pdA0W1Yu9OJW0fld+tZp4McmeKb18VJ2hNMjL9vfWxC/rCf0eUclYlRWPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKoOIm8cOvqt8Ww2rbn0sP8dy7AEMB8GA1UdIwQY
MBaAFIofCtVXK64m45yHQMaKj7tG7khkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS8yZmQyMGEtNTNhZS00YmVhLTgwYzkt
MDNmMjNhNzM5NDFkLzEvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS8yZmQyMGEtNTNhZS00YmVhLTgwYzktMDNmMjNhNzM5NDFk
LzEvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWWCM7t05
RTMC7pWSrPC9yB8yMbUYkQcO/+RjBddB5CK+lTQEI32SQId82GVZJO5SEUhFWqOn
qXZZXQYdETxffvPUIuNeuDED1PmcdAbzl0DRpGSlmo8C5y2RBV9PkuSqzD6DlLhQ
+gXyK58QIviC3qvj+qluLO/NtidWpFhVbGP50+L2+ZQJPnL6eH5kF2MWyPQtLRDw
lDSKz/imBS6lx3LBuGxNBfqhLOVfY1NCkqU1LhzlyekHUWSUe/LGCBYKHlsojj0G
e+15oSJ0wwpR59wt2mxP97AjOIcCpiaZcsurevwotRQidLAvXKoYPWEU3oVXxsZ8
8RQkCm22fsTe7w==
-----END CERTIFICATE-----
Generated at Sun Apr 13 03:09:49 2025 by rpki-client