Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/3b8a40-7610-4e4d-9b37-741fa4e10e36/1/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.mft
File: ia4iC0do2m4nbmpi7dZ0bY_Dwfs.mft (raw, json)
Hash identifier: 1PUqrly/ZeZTLGalpVjfgAb8Se2AfIM6NaUNFdsKY9o=
Subject key identifier: 82:18:F9:25:C8:B5:AB:E2:0C:AA:6F:AD:A3:4B:51:9F:F8:60:6D:FC
Authority key identifier: 89:AE:22:0B:47:68:DA:6E:27:6E:6A:62:ED:D6:74:6D:8F:C3:C1:FB
Certificate issuer: /CN=89ae220b4768da6e276e6a62edd6746d8fc3c1fb
Certificate serial: 01964C351ECFF83183CA7CDCBCA90FE63322
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/3b8a40-7610-4e4d-9b37-741fa4e10e36/1/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.mft
Manifest number: 0CAE
Signing time: Sat 19 Apr 2025 04:01:11 +0000
Manifest this update: Sat 19 Apr 2025 04:01:11 +0000
Manifest next update: Sun 20 Apr 2025 04:01:11 +0000
Files and hashes: 1: ia4iC0do2m4nbmpi7dZ0bY_Dwfs.crl (hash: HVH4uYLFrBzf2DP3gzbpiU0otk58ZxwTudoaBpc238k=)
2: qmO8Fiuuh9KuRm81yMzephu_U-o.roa (hash: JTX7Cj1zPyi8sR8Cn5QR+pzD+tvVds3MwvVGO5fjdhw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/3b8a40-7610-4e4d-9b37-741fa4e10e36/1/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/3b8a40-7610-4e4d-9b37-741fa4e10e36/1/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:35:1e:cf:f8:31:83:ca:7c:dc:bc:a9:0f:e6:33:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ae220b4768da6e276e6a62edd6746d8fc3c1fb
Validity
Not Before: Apr 19 04:01:11 2025 GMT
Not After : Apr 20 04:01:11 2025 GMT
Subject: CN=8218f925c8b5abe20caa6fada34b519ff8606dfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cd:fe:34:96:99:26:ac:03:6c:16:51:c3:42:
c2:3d:75:22:1d:ea:ad:aa:29:fc:7e:24:1d:c0:a6:
f3:cf:ab:f3:95:ce:e4:e2:38:17:6e:cc:e4:61:10:
e1:4c:7c:a9:fc:9c:69:3a:28:12:be:b1:bf:2e:2c:
03:d6:ed:aa:01:0c:95:45:2c:18:5b:fb:56:c6:82:
9b:8d:46:5b:2a:04:60:0a:3f:46:02:02:d0:f9:c0:
64:01:d4:d8:61:ab:d0:f2:36:24:ea:92:65:f2:73:
51:93:11:91:3e:39:92:1c:2b:a8:fb:b7:66:38:b8:
0c:94:36:6e:f2:6d:5f:62:5f:04:a4:e9:4b:69:0d:
94:ac:4d:ea:de:bb:67:4f:45:aa:3d:86:66:54:12:
36:11:b0:87:a9:c6:5c:e6:99:b1:36:6f:8b:5c:59:
cb:20:1e:b6:eb:a3:5c:14:ff:22:eb:0a:f1:d2:98:
2b:a8:6d:d2:f8:e8:8c:bd:7a:82:ca:ab:c5:9d:67:
d0:aa:77:4e:85:bb:62:43:a5:92:5f:9b:20:d0:85:
e0:2c:e6:fe:7a:8d:54:16:70:f6:ed:98:58:95:d0:
02:00:98:7c:cf:ac:54:c8:cf:06:4d:85:02:2e:bb:
b2:20:15:85:f3:76:f6:8d:01:3d:dd:b8:e8:f0:7f:
60:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:18:F9:25:C8:B5:AB:E2:0C:AA:6F:AD:A3:4B:51:9F:F8:60:6D:FC
X509v3 Authority Key Identifier:
keyid:89:AE:22:0B:47:68:DA:6E:27:6E:6A:62:ED:D6:74:6D:8F:C3:C1:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/3b8a40-7610-4e4d-9b37-741fa4e10e36/1/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/3b8a40-7610-4e4d-9b37-741fa4e10e36/1/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:0a:17:ef:7b:35:0a:06:b3:57:f2:ac:95:d0:b5:cc:ba:86:
32:bc:0e:ea:09:ca:20:93:06:5d:11:60:25:3a:16:c1:ab:7a:
1b:a9:c8:63:80:01:6b:e9:82:e3:54:1d:06:1d:d2:e1:5a:54:
7c:2b:55:e1:58:85:24:7b:c9:b2:0b:03:43:10:e8:b1:c5:7e:
8c:bc:a6:10:ba:60:bb:38:0b:92:5d:af:07:55:6e:87:17:d1:
e9:2c:ba:ea:c7:f4:1c:bd:5d:f3:ee:52:e8:13:b5:6f:a1:61:
86:80:1f:be:a2:68:22:7c:54:dc:48:26:c3:b7:76:4d:57:f7:
aa:0f:78:26:4b:49:fc:af:4a:94:30:95:7e:a2:bb:39:a1:2d:
60:07:f0:fe:99:7e:15:32:2d:9d:84:f1:76:ea:68:f3:84:5d:
8c:15:d6:cd:38:d4:74:56:9f:99:d6:d6:34:a7:65:68:81:ef:
69:79:e0:6c:56:27:bc:b4:cd:8e:11:2a:97:a8:37:47:ab:bf:
b2:13:cc:0d:a6:44:02:35:01:2a:7b:06:18:a8:21:a2:83:93:
47:83:3f:8f:8e:23:92:ea:69:fe:d6:f8:53:91:02:8e:74:ef:
1e:99:d4:a3:20:3f:90:a0:c2:1e:5b:3b:a0:8e:b3:53:b6:4b:
5a:58:3c:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZMNR7P+DGDynzcvKkP5jMiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5YWUyMjBiNDc2OGRhNmUyNzZlNmE2MmVkZDY3NDZkOGZj
M2MxZmIwHhcNMjUwNDE5MDQwMTExWhcNMjUwNDIwMDQwMTExWjAzMTEwLwYDVQQD
Eyg4MjE4ZjkyNWM4YjVhYmUyMGNhYTZmYWRhMzRiNTE5ZmY4NjA2ZGZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk83+NJaZJqwDbBZRw0LCPXUiHeqt
qin8fiQdwKbzz6vzlc7k4jgXbszkYRDhTHyp/JxpOigSvrG/LiwD1u2qAQyVRSwY
W/tWxoKbjUZbKgRgCj9GAgLQ+cBkAdTYYavQ8jYk6pJl8nNRkxGRPjmSHCuo+7dm
OLgMlDZu8m1fYl8EpOlLaQ2UrE3q3rtnT0WqPYZmVBI2EbCHqcZc5pmxNm+LXFnL
IB6266NcFP8i6wrx0pgrqG3S+OiMvXqCyqvFnWfQqndOhbtiQ6WSX5sg0IXgLOb+
eo1UFnD27ZhYldACAJh8z6xUyM8GTYUCLruyIBWF83b2jQE93bjo8H9giwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIIY+SXItaviDKpvraNLUZ/4YG38MB8GA1UdIwQY
MBaAFImuIgtHaNpuJ25qYu3WdG2Pw8H7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWE0aUMwZG8ybTRuYm1waTdkWjBiWV9Ed2ZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC8zYjhhNDAtNzYxMC00ZTRkLTliMzct
NzQxZmE0ZTEwZTM2LzEvaWE0aUMwZG8ybTRuYm1waTdkWjBiWV9Ed2ZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC8zYjhhNDAtNzYxMC00ZTRkLTliMzctNzQxZmE0ZTEwZTM2
LzEvaWE0aUMwZG8ybTRuYm1waTdkWjBiWV9Ed2ZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApAoX73s1
CgazV/KsldC1zLqGMrwO6gnKIJMGXRFgJToWwat6G6nIY4ABa+mC41QdBh3S4VpU
fCtV4ViFJHvJsgsDQxDoscV+jLymELpguzgLkl2vB1VuhxfR6Sy66sf0HL1d8+5S
6BO1b6FhhoAfvqJoInxU3Egmw7d2TVf3qg94JktJ/K9KlDCVfqK7OaEtYAfw/pl+
FTItnYTxdupo84RdjBXWzTjUdFafmdbWNKdlaIHvaXngbFYnvLTNjhEql6g3R6u/
shPMDaZEAjUBKnsGGKghooOTR4M/j44jkupp/tb4U5ECjnTvHpnUoyA/kKDCHls7
oI6zU7ZLWlg8GQ==
-----END CERTIFICATE-----
Generated at Sat Apr 19 14:05:30 2025 by rpki-client