Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft
File: iqtMDPIcGj1upBBoy-kIvjiORQo.mft (raw, json)
Hash identifier: zh9Sn590i4JlNi/SWaU8n0m5d6epSO+tKMUH5Nqni0g=
Subject key identifier: 27:6F:DA:21:88:F9:42:74:ED:CA:B8:5D:EE:4F:1E:48:4A:DD:18:57
Authority key identifier: 8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A
Certificate issuer: /CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a
Certificate serial: 019748FA3CAC3F3BA04EA0E8767427A1D53F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft
Manifest number: 02BA
Signing time: Sat 07 Jun 2025 06:00:48 +0000
Manifest this update: Sat 07 Jun 2025 06:00:48 +0000
Manifest next update: Sun 08 Jun 2025 06:00:48 +0000
Files and hashes: 1: 5ROabaZ0IQjGvjydG24dxkFdbIw.roa (hash: VZzap9WlH6EGkLU7RiUuipaz7yv8laZyaoXJmwbYxFo=)
2: KNoplKbnalbBlNJ0HrGiOS5fwgk.roa (hash: 6g25L6YriR7F4NqmIjLUqgHXTaSIa9NMu6Z6ggsvzHE=)
3: alNy-myxrA734TUoeZ1JVeikh6c.roa (hash: OCkDLXElKJB9eMUhsdq5dMT5WhX6caAwH3DuhC8oZvM=)
4: gdHjw5BAYBUGiQIKDf_rANYjbqo.roa (hash: rBCOEGXMkDk7MH6Epcgax70EgSCg7o0cp931QH6ZEmk=)
5: iqtMDPIcGj1upBBoy-kIvjiORQo.crl (hash: +AupJspX0xveZjf55vayTWn0qHB7KzHRczNKyifWK1U=)
6: y7BcwDEAXqOJr6z4aNGCsX7xfw0.roa (hash: NHC7ZwJSkEI3d9bNJO6OCWV6hxqIR1IsXwJaROvY2+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:3c:ac:3f:3b:a0:4e:a0:e8:76:74:27:a1:d5:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a
Validity
Not Before: Jun 7 06:00:48 2025 GMT
Not After : Jun 8 06:00:48 2025 GMT
Subject: CN=276fda2188f94274edcab85dee4f1e484add1857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:a1:2b:c0:4b:c0:75:7f:fa:be:5c:e5:c9:70:
9b:c2:85:98:f4:f7:cf:44:d4:f9:5b:a2:b0:58:37:
5b:a4:57:ee:d8:34:65:a4:4a:c8:28:47:c4:c1:c7:
f8:48:4b:fc:43:fb:9d:83:0e:a8:69:26:16:54:b9:
b1:6e:1f:86:b0:6f:3a:90:c6:49:e4:9f:14:0e:2b:
4c:7c:09:e2:c9:77:9c:1b:da:f1:66:bf:d1:8e:b3:
0b:0f:26:ba:6d:82:31:ea:a9:58:2e:6b:73:15:92:
72:47:a1:c6:e9:8f:b7:d9:ff:76:f5:b2:e8:ae:8a:
fd:51:94:21:0a:25:da:e9:d2:46:30:50:20:3f:8f:
c9:62:9d:49:a8:97:65:82:fa:da:aa:26:a7:4a:25:
7c:22:1c:7e:64:50:b3:f0:af:6c:6d:43:6b:97:95:
e1:89:ba:8e:3a:44:9c:71:54:98:70:60:e7:30:06:
8e:58:6c:d1:72:ec:79:d2:d5:b8:39:cd:19:20:82:
d4:22:4c:c6:c1:02:a0:f1:bf:f9:fe:8a:7b:34:4b:
d8:24:b8:61:13:92:0e:bf:65:35:7b:8b:e7:1f:de:
23:73:26:a2:9b:d8:0d:af:5f:b8:66:6c:4d:00:a1:
7a:c0:92:74:1a:29:97:c8:2b:9d:6c:28:19:d8:f2:
ff:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:6F:DA:21:88:F9:42:74:ED:CA:B8:5D:EE:4F:1E:48:4A:DD:18:57
X509v3 Authority Key Identifier:
keyid:8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:04:52:74:6d:61:a3:66:6b:b8:fe:fc:10:11:c5:e2:92:29:
4e:38:ea:6a:48:b4:a1:72:24:1b:4b:1a:b7:3d:2f:33:99:a7:
d5:39:28:1d:1d:47:65:09:ea:24:f7:c9:b4:4b:bc:0e:d8:1e:
60:1f:52:ec:72:3f:a8:73:ca:27:e8:58:46:6e:e3:e4:cf:29:
55:b6:a9:49:40:e7:5c:25:17:69:7d:cb:ae:8a:5b:20:9c:7d:
00:a0:a8:76:fe:8d:2a:20:16:e7:58:80:42:f3:a9:5b:c9:15:
7a:b1:d1:a2:5b:e2:6f:61:89:ff:8b:d2:1f:7b:2f:f0:9a:49:
70:df:63:53:64:bd:e0:72:1e:52:59:20:69:c3:94:a9:b1:47:
57:49:b8:46:c3:0a:ff:87:df:31:58:f0:4b:a6:a0:24:b1:84:
8b:77:17:31:57:88:74:51:e3:bd:1c:ce:a5:05:bc:9f:47:20:
19:79:bd:b7:b2:13:1a:42:8a:e2:da:aa:42:ea:34:c3:88:45:
48:d6:17:fa:0f:af:f2:83:d1:a1:32:7f:dd:ba:b3:24:28:cb:
99:db:bd:9d:a5:57:5d:79:28:67:ae:b9:1e:17:ce:79:3e:03:
36:3d:49:9c:d4:6c:8c:b8:97:10:0e:11:df:9e:b5:2e:53:6a:
dc:91:3f:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdI+jysPzugTqDodnQnodU/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhYWI0YzBjZjIxYzFhM2Q2ZWE0MTA2OGNiZTkwOGJlMzg4
ZTQ1MGEwHhcNMjUwNjA3MDYwMDQ4WhcNMjUwNjA4MDYwMDQ4WjAzMTEwLwYDVQQD
EygyNzZmZGEyMTg4Zjk0Mjc0ZWRjYWI4NWRlZTRmMWU0ODRhZGQxODU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7qErwEvAdX/6vlzlyXCbwoWY9PfP
RNT5W6KwWDdbpFfu2DRlpErIKEfEwcf4SEv8Q/udgw6oaSYWVLmxbh+GsG86kMZJ
5J8UDitMfAniyXecG9rxZr/RjrMLDya6bYIx6qlYLmtzFZJyR6HG6Y+32f929bLo
ror9UZQhCiXa6dJGMFAgP4/JYp1JqJdlgvraqianSiV8Ihx+ZFCz8K9sbUNrl5Xh
ibqOOkSccVSYcGDnMAaOWGzRcux50tW4Oc0ZIILUIkzGwQKg8b/5/op7NEvYJLhh
E5IOv2U1e4vnH94jcyaim9gNr1+4ZmxNAKF6wJJ0GimXyCudbCgZ2PL/UwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCdv2iGI+UJ07cq4Xe5PHkhK3RhXMB8GA1UdIwQY
MBaAFIqrTAzyHBo9bqQQaMvpCL44jkUKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS83NDBjMWUtMWE0Yy00Y2EyLWJkNTMt
NTM3YjFiNDlkZmU3LzEvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS83NDBjMWUtMWE0Yy00Y2EyLWJkNTMtNTM3YjFiNDlkZmU3
LzEvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmwRSdG1h
o2ZruP78EBHF4pIpTjjqaki0oXIkG0satz0vM5mn1TkoHR1HZQnqJPfJtEu8Dtge
YB9S7HI/qHPKJ+hYRm7j5M8pVbapSUDnXCUXaX3LropbIJx9AKCodv6NKiAW51iA
QvOpW8kVerHRolvib2GJ/4vSH3sv8JpJcN9jU2S94HIeUlkgacOUqbFHV0m4RsMK
/4ffMVjwS6agJLGEi3cXMVeIdFHjvRzOpQW8n0cgGXm9t7ITGkKK4tqqQuo0w4hF
SNYX+g+v8oPRoTJ/3bqzJCjLmdu9naVXXXkoZ665HhfOeT4DNj1JnNRsjLiXEA4R
3561LlNq3JE/6A==
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:05:50 2025 by rpki-client