Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
File: ICZNUaES0LwizqcxTLBs9aGuM-k.mft (raw, json)
Hash identifier: 8DZ6pYZ+bQI38mootVxK4qwK4jHOERJkYQ/4EtYOWzY=
Subject key identifier: EE:FC:45:7C:DD:16:1A:71:D4:24:BC:8D:5E:ED:8C:B1:8C:B1:FF:87
Authority key identifier: 20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
Certificate issuer: /CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Certificate serial: 01974AE893E318AF7BDE91867EB362408EB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
Manifest number: 1510
Signing time: Sat 07 Jun 2025 15:00:45 +0000
Manifest this update: Sat 07 Jun 2025 15:00:45 +0000
Manifest next update: Sun 08 Jun 2025 15:00:45 +0000
Files and hashes: 1: FXy87TSnS3zZKpD3cubdEzL9JTI.roa (hash: ev8YOzfcP94Okj6loLdeokLYKFfF9CSd4o8ZPprNj7U=)
2: ICZNUaES0LwizqcxTLBs9aGuM-k.crl (hash: RnbT8NqA/VgWRcyp/PhwiR0Ya6j4nGP+B/pgPWTc3AI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:93:e3:18:af:7b:de:91:86:7e:b3:62:40:8e:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Validity
Not Before: Jun 7 15:00:45 2025 GMT
Not After : Jun 8 15:00:45 2025 GMT
Subject: CN=eefc457cdd161a71d424bc8d5eed8cb18cb1ff87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f3:4a:f0:9b:6b:04:82:5d:30:70:47:55:7a:
ba:2e:81:1d:3f:f5:24:7f:21:49:9c:7e:b1:db:c6:
f4:11:af:fe:32:d0:48:2a:f8:ac:5b:ae:17:33:c1:
46:a7:f6:5b:9d:12:7c:ed:cb:80:5e:ae:f8:b7:f3:
5c:fb:d8:2c:5b:3c:c1:e4:cb:ef:64:32:8b:c3:07:
e0:b9:f2:b7:f6:ed:ae:c0:a3:a2:a0:ab:e7:9d:a4:
12:82:5f:60:e1:58:08:cd:84:cd:88:63:fd:32:f7:
23:27:88:87:94:aa:7d:44:25:15:e8:d9:12:25:dd:
8f:6a:1c:e2:49:f7:03:61:7e:f8:a3:98:09:1b:01:
81:b2:f7:76:f2:26:30:dc:c5:4d:25:bb:f2:76:25:
da:1a:55:b5:c9:8e:b7:cb:85:b5:50:84:74:8b:12:
9c:d8:de:b6:a4:63:cf:7c:72:7c:ea:bd:1b:95:af:
54:d2:36:c1:7a:a1:ec:75:fb:51:9c:9e:dd:3c:55:
3e:f1:e4:bc:e9:bd:e6:d9:73:51:cb:95:46:d2:32:
0d:81:b1:14:9d:4d:b2:d3:c5:de:7f:2c:0b:58:b5:
b8:21:d2:da:9a:b3:da:f2:2d:35:8d:0c:72:d9:b5:
13:55:4a:5b:e4:6f:6a:60:7b:de:cb:ba:0b:87:e1:
51:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:FC:45:7C:DD:16:1A:71:D4:24:BC:8D:5E:ED:8C:B1:8C:B1:FF:87
X509v3 Authority Key Identifier:
keyid:20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:e0:2c:50:25:a9:57:0b:42:ff:4e:80:41:80:78:f2:f1:3b:
9a:0f:66:66:44:15:61:42:6e:2e:e2:40:ac:51:fb:ab:d5:62:
26:fe:8c:0d:e2:9f:d9:32:49:0e:3d:5d:67:66:57:aa:10:64:
cb:19:92:f9:d6:7c:43:24:5b:cf:6c:d4:7c:61:00:32:63:a6:
44:69:c7:02:c9:3f:85:15:77:22:c1:74:a4:50:27:b4:06:ac:
75:1b:74:b2:c3:10:26:cc:4f:4f:20:e8:c7:5b:32:66:61:a1:
ce:e9:fa:12:b4:8c:32:11:60:fa:fc:07:60:b6:c6:12:11:f5:
75:6c:5f:9d:2a:bd:ad:15:e0:82:10:2b:b3:75:d7:ad:6c:ac:
d2:da:6a:74:2d:7a:40:46:f4:bd:cc:2d:ed:a4:73:01:11:38:
4f:2f:eb:16:7a:6b:64:99:dc:0e:4c:6e:83:60:77:8f:f8:b2:
95:52:c3:65:6c:ed:b9:c8:b1:1b:1d:c5:10:8d:83:b6:01:73:
a8:5c:49:8d:5f:40:05:92:c7:2d:d6:77:63:7b:d5:ab:06:26:
3d:fd:ba:12:37:7c:c2:12:df:63:16:b5:14:83:58:72:c4:33:
90:8d:f9:1b:45:7c:0b:b9:60:83:ad:94:bb:f1:3d:3b:a2:24:
2d:4a:23:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdK6JPjGK973pGGfrNiQI62MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwMjY0ZDUxYTExMmQwYmMyMmNlYTczMTRjYjA2Y2Y1YTFh
ZTMzZTkwHhcNMjUwNjA3MTUwMDQ1WhcNMjUwNjA4MTUwMDQ1WjAzMTEwLwYDVQQD
EyhlZWZjNDU3Y2RkMTYxYTcxZDQyNGJjOGQ1ZWVkOGNiMThjYjFmZjg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnfNK8JtrBIJdMHBHVXq6LoEdP/Uk
fyFJnH6x28b0Ea/+MtBIKvisW64XM8FGp/ZbnRJ87cuAXq74t/Nc+9gsWzzB5Mvv
ZDKLwwfgufK39u2uwKOioKvnnaQSgl9g4VgIzYTNiGP9MvcjJ4iHlKp9RCUV6NkS
Jd2PahziSfcDYX74o5gJGwGBsvd28iYw3MVNJbvydiXaGlW1yY63y4W1UIR0ixKc
2N62pGPPfHJ86r0bla9U0jbBeqHsdftRnJ7dPFU+8eS86b3m2XNRy5VG0jINgbEU
nU2y08XefywLWLW4IdLamrPa8i01jQxy2bUTVUpb5G9qYHvey7oLh+FRzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO78RXzdFhpx1CS8jV7tjLGMsf+HMB8GA1UdIwQY
MBaAFCAmTVGhEtC8Is6nMUywbPWhrjPpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUNaTlVhRVMwTHdpenFjeFRMQnM5YUd1TS1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy84ODc4ZDktNGYxYy00MjZiLThhNDAt
NjU4MTIwYWU2OGUxLzEvSUNaTlVhRVMwTHdpenFjeFRMQnM5YUd1TS1rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy84ODc4ZDktNGYxYy00MjZiLThhNDAtNjU4MTIwYWU2OGUx
LzEvSUNaTlVhRVMwTHdpenFjeFRMQnM5YUd1TS1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzOAsUCWp
VwtC/06AQYB48vE7mg9mZkQVYUJuLuJArFH7q9ViJv6MDeKf2TJJDj1dZ2ZXqhBk
yxmS+dZ8QyRbz2zUfGEAMmOmRGnHAsk/hRV3IsF0pFAntAasdRt0ssMQJsxPTyDo
x1syZmGhzun6ErSMMhFg+vwHYLbGEhH1dWxfnSq9rRXgghArs3XXrWys0tpqdC16
QEb0vcwt7aRzARE4Ty/rFnprZJncDkxug2B3j/iylVLDZWztucixGx3FEI2DtgFz
qFxJjV9ABZLHLdZ3Y3vVqwYmPf26Ejd8whLfYxa1FINYcsQzkI35G0V8C7lgg62U
u/E9O6IkLUojwA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 16:53:00 2025 by rpki-client