Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
File: i7dzgYUSSQpQCthD6irnF-8hsUw.mft (raw, json)
Hash identifier: vrPzlR2/1j/aNaSUNabgQwlyjj1zodF32pahVMdAFP4=
Subject key identifier: 9E:07:02:27:EB:3D:9F:22:27:42:DE:87:FA:1A:F8:27:CF:E7:44:E8
Authority key identifier: 8B:B7:73:81:85:12:49:0A:50:0A:D8:43:EA:2A:E7:17:EF:21:B1:4C
Certificate issuer: /CN=8bb773818512490a500ad843ea2ae717ef21b14c
Certificate serial: 01964D46F3DE256BF5CF064BB6FE7B693F4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
Manifest number: 14F9
Signing time: Sat 19 Apr 2025 09:00:17 +0000
Manifest this update: Sat 19 Apr 2025 09:00:17 +0000
Manifest next update: Sun 20 Apr 2025 09:00:17 +0000
Files and hashes: 1: L6BmwALeicC8VgFsadJhZLZOhdw.roa (hash: jlbIuI51ox4C1wny8/EXm0XGuTxyG7RmZ5JEvI5tNCo=)
2: i7dzgYUSSQpQCthD6irnF-8hsUw.crl (hash: 8uops6HXS7B784zXuheoOE6f9XCwT+yuz5TLggp+WUw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:46:f3:de:25:6b:f5:cf:06:4b:b6:fe:7b:69:3f:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bb773818512490a500ad843ea2ae717ef21b14c
Validity
Not Before: Apr 19 09:00:17 2025 GMT
Not After : Apr 20 09:00:17 2025 GMT
Subject: CN=9e070227eb3d9f222742de87fa1af827cfe744e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3b:98:32:34:fb:b1:9a:75:a2:ec:f4:eb:f6:
d6:ef:62:fe:3d:b8:f5:0b:03:a7:79:ba:04:6b:f2:
0c:81:13:a7:0d:dc:09:e8:a2:b4:f7:27:3f:e2:7c:
23:15:2d:6a:79:eb:cf:2a:b5:d2:99:c4:6b:4f:9c:
e8:59:ef:e2:b0:42:d0:f4:41:b4:fa:51:cb:a9:fd:
06:d5:72:8e:2c:07:07:ec:91:83:32:e0:70:91:4c:
fb:b7:a6:84:99:9f:17:b9:a7:0d:aa:b1:f9:ea:6d:
f7:a4:53:7a:3c:e6:10:46:f5:6a:20:a5:5e:eb:9a:
93:69:df:aa:63:d2:e9:19:11:96:8a:4c:6c:07:fc:
e5:55:64:2d:88:ff:36:10:55:87:a1:82:5b:6f:d0:
91:43:b2:37:f5:c8:d5:79:b2:70:dd:a4:3c:3e:4d:
45:3b:02:23:79:65:60:63:c8:d6:33:4e:02:c1:3c:
c0:22:8b:f4:42:cf:ef:1c:f0:50:e2:af:fa:bb:e0:
b5:b6:81:18:95:7a:39:43:6e:dd:19:f1:ee:79:8b:
79:2a:9b:ab:f9:2a:70:c2:19:08:fc:ec:ae:a4:90:
d4:38:ca:0e:8f:ab:3f:b1:47:f2:ee:f4:45:1a:e3:
fd:b2:c3:ff:74:ab:6c:d9:f7:35:ac:18:15:d0:8d:
66:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:07:02:27:EB:3D:9F:22:27:42:DE:87:FA:1A:F8:27:CF:E7:44:E8
X509v3 Authority Key Identifier:
keyid:8B:B7:73:81:85:12:49:0A:50:0A:D8:43:EA:2A:E7:17:EF:21:B1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:34:5a:d5:ed:9a:7b:e3:6b:d8:a7:26:7a:86:84:a3:f7:a3:
87:34:84:bc:c9:7c:74:ed:64:3f:f3:81:cb:3b:f6:7d:d9:a8:
f7:cf:39:8c:00:9c:ef:d5:3e:27:2f:24:29:a2:8d:39:27:00:
e6:74:13:b1:59:ad:d8:8e:48:37:d8:81:c3:1e:8b:0d:26:e3:
b2:8e:9e:67:2c:b2:72:be:3a:89:f2:b9:a9:97:25:ef:24:42:
51:44:63:60:81:36:ac:64:6b:2d:c1:4f:e7:1b:39:48:71:65:
fc:d0:db:53:c4:6e:8b:c9:57:1b:7a:0a:5d:14:5a:89:e4:80:
f0:99:30:fd:b3:3f:7c:83:3b:50:57:04:66:79:7d:c3:5c:ba:
2b:db:7d:99:be:67:52:30:9d:2c:c7:2b:6d:3c:cd:64:a0:61:
6b:b3:3f:c4:5a:3e:12:61:c3:b5:e7:57:c6:86:ae:c9:b6:e3:
0b:5f:77:f1:e8:36:76:d8:c6:84:9f:59:67:68:81:db:5b:2b:
de:e9:67:34:03:f3:df:a5:2c:31:33:b9:9b:b6:42:b2:5b:ef:
d7:3a:b2:90:7c:27:39:69:bf:ff:f4:9a:31:2e:6f:e1:c1:da:
33:7b:49:88:19:77:72:ef:06:80:16:3f:c5:11:b4:a1:c1:6f:
25:3a:d8:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZNRvPeJWv1zwZLtv57aT9LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiYjc3MzgxODUxMjQ5MGE1MDBhZDg0M2VhMmFlNzE3ZWYy
MWIxNGMwHhcNMjUwNDE5MDkwMDE3WhcNMjUwNDIwMDkwMDE3WjAzMTEwLwYDVQQD
Eyg5ZTA3MDIyN2ViM2Q5ZjIyMjc0MmRlODdmYTFhZjgyN2NmZTc0NGU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkjuYMjT7sZp1ouz06/bW72L+Pbj1
CwOneboEa/IMgROnDdwJ6KK09yc/4nwjFS1qeevPKrXSmcRrT5zoWe/isELQ9EG0
+lHLqf0G1XKOLAcH7JGDMuBwkUz7t6aEmZ8XuacNqrH56m33pFN6POYQRvVqIKVe
65qTad+qY9LpGRGWikxsB/zlVWQtiP82EFWHoYJbb9CRQ7I39cjVebJw3aQ8Pk1F
OwIjeWVgY8jWM04CwTzAIov0Qs/vHPBQ4q/6u+C1toEYlXo5Q27dGfHueYt5Kpur
+SpwwhkI/OyupJDUOMoOj6s/sUfy7vRFGuP9ssP/dKts2fc1rBgV0I1mGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ4HAifrPZ8iJ0Leh/oa+CfP50ToMB8GA1UdIwQY
MBaAFIu3c4GFEkkKUArYQ+oq5xfvIbFMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTdkemdZVVNTUXBRQ3RoRDZpcm5GLThoc1V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS81ZGVkNmMtYjQ2OS00MjBjLWIxNWUt
NTJiM2Y2OGRjMGMyLzEvaTdkemdZVVNTUXBRQ3RoRDZpcm5GLThoc1V3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS81ZGVkNmMtYjQ2OS00MjBjLWIxNWUtNTJiM2Y2OGRjMGMy
LzEvaTdkemdZVVNTUXBRQ3RoRDZpcm5GLThoc1V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlDRa1e2a
e+Nr2KcmeoaEo/ejhzSEvMl8dO1kP/OByzv2fdmo9885jACc79U+Jy8kKaKNOScA
5nQTsVmt2I5IN9iBwx6LDSbjso6eZyyycr46ifK5qZcl7yRCUURjYIE2rGRrLcFP
5xs5SHFl/NDbU8Rui8lXG3oKXRRaieSA8Jkw/bM/fIM7UFcEZnl9w1y6K9t9mb5n
UjCdLMcrbTzNZKBha7M/xFo+EmHDtedXxoauybbjC1938eg2dtjGhJ9ZZ2iB21sr
3ulnNAPz36UsMTO5m7ZCslvv1zqykHwnOWm///SaMS5v4cHaM3tJiBl3cu8GgBY/
xRG0ocFvJTrYlw==
-----END CERTIFICATE-----
Generated at Sat Apr 19 15:10:02 2025 by rpki-client