Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
File: I32X8VCOekR4mfWaVfuKpiQe9RA.mft (raw, json)
Hash identifier: T9DfLrq5vtZ/u92IyeD6RQWO6+fKA1DOBJrFPtz6Qvw=
Subject key identifier: 46:81:02:75:70:8C:90:84:BE:13:98:EF:2A:8B:0E:0D:41:A1:6A:6D
Authority key identifier: 23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
Certificate issuer: /CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Certificate serial: 01974AE8C6A06E4B8B0C16C7D8EB74CD35B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
Manifest number: 0409
Signing time: Sat 07 Jun 2025 15:00:58 +0000
Manifest this update: Sat 07 Jun 2025 15:00:58 +0000
Manifest next update: Sun 08 Jun 2025 15:00:58 +0000
Files and hashes: 1: AgvVH_Z5ZikBFIUyEGB_f4ftLfg.roa (hash: Ii6l1o1UjR6zsFk/Ik5xPFxEIQrzvV/YcOC6UeUTh7g=)
2: I32X8VCOekR4mfWaVfuKpiQe9RA.crl (hash: k+8svQ3oO1tdEBCfV5jownGnOrFNt2IyNg0elFKbCKQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:c6:a0:6e:4b:8b:0c:16:c7:d8:eb:74:cd:35:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Validity
Not Before: Jun 7 15:00:58 2025 GMT
Not After : Jun 8 15:00:58 2025 GMT
Subject: CN=46810275708c9084be1398ef2a8b0e0d41a16a6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:97:a1:ea:53:4f:a4:84:b5:99:1b:b3:3f:f4:
36:f7:1d:c3:c6:23:34:11:21:27:5a:57:f7:de:1b:
27:87:43:de:7a:85:89:7e:64:c5:88:2f:68:18:9a:
f1:ec:ee:5c:d4:82:ad:a5:12:2c:74:06:1a:4d:e4:
49:8d:09:11:2b:ca:e3:bd:01:34:89:9d:6a:f4:c6:
55:2d:5e:65:ba:09:d1:99:65:7a:5a:43:fa:f3:29:
15:70:cb:f3:2a:1d:0a:60:5e:b3:51:a4:49:9d:ea:
36:c0:f7:7f:ab:88:af:f4:aa:77:3f:5d:bd:2c:4c:
89:ad:35:ef:47:df:73:05:a4:0a:1f:c3:c7:98:4c:
30:f2:d6:c6:ac:1b:5b:be:66:6f:a6:48:2c:d8:cb:
70:0d:ff:0f:3a:e9:d4:cb:05:d6:fc:b4:cf:72:57:
8b:f4:2b:58:83:25:88:97:10:76:22:11:27:f8:00:
c5:69:91:19:c4:92:7a:e1:d0:65:ce:56:32:8e:dc:
b3:39:07:43:33:03:08:23:80:ab:8d:6f:73:12:68:
80:ef:61:32:2e:41:d4:03:64:8a:45:ae:3d:20:91:
ef:18:67:bc:7c:3e:94:b9:a8:4b:d5:04:1e:c6:50:
5d:c9:e1:15:08:34:f1:d2:77:79:98:c9:82:c3:04:
1a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:81:02:75:70:8C:90:84:BE:13:98:EF:2A:8B:0E:0D:41:A1:6A:6D
X509v3 Authority Key Identifier:
keyid:23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:50:a9:8c:1e:3a:14:fa:a4:8b:0b:f6:df:a8:0c:4e:3a:65:
db:d8:be:69:36:f8:a4:0a:12:b6:64:f9:de:44:4a:87:af:85:
93:90:7d:3f:ac:06:0e:fb:61:4b:de:72:02:c3:3f:aa:93:db:
3b:48:6e:c8:38:d0:a7:98:17:19:cd:38:b7:e0:2b:d9:05:bf:
4a:c0:09:89:fe:48:b2:e1:24:bc:a3:ee:5f:72:e0:87:c7:62:
23:4d:3d:c5:9b:f4:d5:be:9f:f4:7b:c5:7e:8e:00:e9:30:79:
55:ed:f7:1c:4e:88:48:15:d9:71:01:a2:e4:ba:32:e5:c4:87:
51:f8:e9:8d:56:46:d4:b9:2a:80:09:81:93:26:08:b9:82:4c:
5e:9f:3d:cf:a6:0f:da:cf:e7:04:89:da:3b:26:49:f2:69:bd:
95:08:5f:fc:bc:e4:15:14:c3:69:d7:77:e6:9a:a5:c2:a5:7a:
f5:08:28:25:68:00:87:61:05:33:52:3a:35:7f:f6:b0:66:73:
5d:10:f3:75:21:74:de:91:61:a2:97:43:91:bd:47:48:e0:08:
88:b9:96:0f:6d:53:27:28:91:f1:1b:58:49:2e:ca:3d:ef:44:
ed:f8:11:60:8c:cd:79:a6:a8:e2:56:84:2f:c0:36:6f:20:0c:
c9:ca:24:ce
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdK6MagbkuLDBbH2Ot0zTW4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzN2Q5N2YxNTA4ZTdhNDQ3ODk5ZjU5YTU1ZmI4YWE2MjQx
ZWY1MTAwHhcNMjUwNjA3MTUwMDU4WhcNMjUwNjA4MTUwMDU4WjAzMTEwLwYDVQQD
Eyg0NjgxMDI3NTcwOGM5MDg0YmUxMzk4ZWYyYThiMGUwZDQxYTE2YTZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Jeh6lNPpIS1mRuzP/Q29x3DxiM0
ESEnWlf33hsnh0PeeoWJfmTFiC9oGJrx7O5c1IKtpRIsdAYaTeRJjQkRK8rjvQE0
iZ1q9MZVLV5lugnRmWV6WkP68ykVcMvzKh0KYF6zUaRJneo2wPd/q4iv9Kp3P129
LEyJrTXvR99zBaQKH8PHmEww8tbGrBtbvmZvpkgs2MtwDf8POunUywXW/LTPcleL
9CtYgyWIlxB2IhEn+ADFaZEZxJJ64dBlzlYyjtyzOQdDMwMII4CrjW9zEmiA72Ey
LkHUA2SKRa49IJHvGGe8fD6UuahL1QQexlBdyeEVCDTx0nd5mMmCwwQaGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEaBAnVwjJCEvhOY7yqLDg1BoWptMB8GA1UdIwQY
MBaAFCN9l/FQjnpEeJn1mlX7iqYkHvUQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTMyWDhWQ09la1I0bWZXYVZmdUtwaVFlOVJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9mNTAzZDctMWZiNi00MzcwLWI0NGYt
NDRhNDFhOTMxMTNlLzEvSTMyWDhWQ09la1I0bWZXYVZmdUtwaVFlOVJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy9mNTAzZDctMWZiNi00MzcwLWI0NGYtNDRhNDFhOTMxMTNl
LzEvSTMyWDhWQ09la1I0bWZXYVZmdUtwaVFlOVJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuFCpjB46
FPqkiwv236gMTjpl29i+aTb4pAoStmT53kRKh6+Fk5B9P6wGDvthS95yAsM/qpPb
O0huyDjQp5gXGc04t+Ar2QW/SsAJif5IsuEkvKPuX3Lgh8diI009xZv01b6f9HvF
fo4A6TB5Ve33HE6ISBXZcQGi5Loy5cSHUfjpjVZG1LkqgAmBkyYIuYJMXp89z6YP
2s/nBInaOyZJ8mm9lQhf/LzkFRTDadd35pqlwqV69QgoJWgAh2EFM1I6NX/2sGZz
XRDzdSF03pFhopdDkb1HSOAIiLmWD21TJyiR8RtYSS7KPe9E7fgRYIzNeaao4laE
L8A2byAMycokzg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 23:13:40 2025 by rpki-client