Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
File: ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft (raw, json)
Hash identifier: N6IetpeHZb8ngWy5XfvtW8dlS41OgkPyuUhw+cVOhe0=
Subject key identifier: 5B:98:86:BF:64:F0:A0:CF:8A:2A:40:DC:3D:06:5C:3D:38:B0:58:5A
Authority key identifier: 89:AE:D2:CF:F8:CE:31:B3:34:F8:3A:0B:30:5F:EE:F0:1D:71:DA:75
Certificate issuer: /CN=89aed2cff8ce31b334f83a0b305feef01d71da75
Certificate serial: 0196477BFCB97717A6314B2BDE0EBD1385F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
Manifest number: 14B1
Signing time: Fri 18 Apr 2025 06:00:29 +0000
Manifest this update: Fri 18 Apr 2025 06:00:29 +0000
Manifest next update: Sat 19 Apr 2025 06:00:29 +0000
Files and hashes: 1: TuA6dq5RUfQK0g-nhGPwelxAp8s.roa (hash: A068hT4+Hwiukpw4NAI0ekcWki3f2qgAy0smH/qbl44=)
2: ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl (hash: 0U2HDBgNaWZ7ehO6FctZTSs+WhfWnUtC1Og+anwhnI8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 06:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:7b:fc:b9:77:17:a6:31:4b:2b:de:0e:bd:13:85:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89aed2cff8ce31b334f83a0b305feef01d71da75
Validity
Not Before: Apr 18 06:00:29 2025 GMT
Not After : Apr 19 06:00:29 2025 GMT
Subject: CN=5b9886bf64f0a0cf8a2a40dc3d065c3d38b0585a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e8:09:2c:be:e2:d5:b3:80:fc:f8:2d:82:f5:
43:f7:80:5f:43:be:e6:9e:56:48:39:63:b1:0c:74:
df:17:9a:a1:99:9d:5a:ab:0a:4d:f8:a2:da:d9:f6:
72:5d:83:3d:02:18:4d:ae:72:f6:2a:e4:9b:0e:d9:
06:30:f3:f6:c3:12:ae:c1:b6:66:62:f5:f2:40:05:
b5:5f:40:ee:a8:3d:b3:e0:0b:21:92:ab:ec:9f:a0:
63:b7:5e:df:27:de:7b:80:a3:b6:5d:e4:0b:5d:71:
b5:e4:f0:0a:29:dd:84:f5:46:ca:87:62:bf:d4:4d:
6d:ca:e1:78:7c:24:23:0b:bb:22:9c:73:18:49:d4:
57:09:ad:90:a9:ca:4d:f0:e8:cd:14:45:f2:83:fa:
75:44:63:c0:1a:67:ec:c5:15:7a:33:0b:e6:b4:f3:
4b:24:1f:be:0b:21:ef:72:ef:af:1a:c8:6d:25:db:
b7:4a:ef:84:15:2a:46:a8:07:e2:df:3f:94:56:bb:
10:2b:22:11:79:88:ad:ee:c8:f6:4c:78:e3:20:e9:
c8:e9:44:92:7a:1e:a5:00:df:67:b4:12:d0:28:3e:
58:7b:5b:49:eb:74:e5:93:9d:70:14:49:f3:64:e9:
c3:58:ea:09:6e:f9:85:13:18:07:7e:4e:64:71:ef:
18:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:98:86:BF:64:F0:A0:CF:8A:2A:40:DC:3D:06:5C:3D:38:B0:58:5A
X509v3 Authority Key Identifier:
keyid:89:AE:D2:CF:F8:CE:31:B3:34:F8:3A:0B:30:5F:EE:F0:1D:71:DA:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:a2:47:95:b9:be:98:67:a0:c9:8f:ef:a8:0a:53:82:7b:17:
a7:dd:5d:ba:6b:f3:83:ed:82:52:3b:4e:75:ab:49:3e:5d:7f:
5e:27:45:e1:8c:67:18:ab:06:9f:9e:d9:82:f0:61:3c:cf:26:
3d:0b:ea:64:ea:d9:8d:ae:53:aa:0f:f4:c8:7b:4f:da:0d:18:
30:ea:66:61:89:94:bc:bc:8c:ae:48:5a:be:f1:8e:b4:d7:a7:
0b:10:98:48:13:d9:5f:d2:0f:78:be:8d:06:01:5d:33:e4:ad:
79:7e:b8:3e:cc:a7:d4:81:df:1e:c8:97:38:36:00:a5:c0:49:
1e:00:c7:1b:c2:69:06:32:e0:a9:fc:a7:12:a5:c2:4c:47:26:
d9:c5:16:49:6e:b1:e0:04:b4:13:f8:37:e5:bd:c4:32:26:85:
9c:cf:ac:4d:ce:2d:4d:3d:ae:0a:13:ec:da:9c:9a:88:04:5c:
55:f8:8a:74:89:19:57:18:61:06:d1:c7:a1:7f:22:35:22:e4:
66:3f:0b:77:8b:21:34:3a:27:11:1f:bc:59:83:ee:d4:b3:c8:
7f:67:a2:ce:e2:ff:3b:9c:41:3a:66:c1:aa:74:14:e4:7e:c0:
94:f5:4c:32:6e:de:de:3b:10:f6:a9:cf:4c:cc:8d:6d:0b:0a:
a0:16:be:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZHe/y5dxemMUsr3g69E4XwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5YWVkMmNmZjhjZTMxYjMzNGY4M2EwYjMwNWZlZWYwMWQ3
MWRhNzUwHhcNMjUwNDE4MDYwMDI5WhcNMjUwNDE5MDYwMDI5WjAzMTEwLwYDVQQD
Eyg1Yjk4ODZiZjY0ZjBhMGNmOGEyYTQwZGMzZDA2NWMzZDM4YjA1ODVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+gJLL7i1bOA/PgtgvVD94BfQ77m
nlZIOWOxDHTfF5qhmZ1aqwpN+KLa2fZyXYM9AhhNrnL2KuSbDtkGMPP2wxKuwbZm
YvXyQAW1X0DuqD2z4Ashkqvsn6Bjt17fJ957gKO2XeQLXXG15PAKKd2E9UbKh2K/
1E1tyuF4fCQjC7sinHMYSdRXCa2QqcpN8OjNFEXyg/p1RGPAGmfsxRV6MwvmtPNL
JB++CyHvcu+vGshtJdu3Su+EFSpGqAfi3z+UVrsQKyIReYit7sj2THjjIOnI6USS
eh6lAN9ntBLQKD5Ye1tJ63Tlk51wFEnzZOnDWOoJbvmFExgHfk5kce8YIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFuYhr9k8KDPiipA3D0GXD04sFhaMB8GA1UdIwQY
MBaAFImu0s/4zjGzNPg6CzBf7vAdcdp1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWE3U3pfak9NYk0wLURvTE1GX3U4QjF4Mm5VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9lOTBmNTEtODlhYS00OWViLTllYTYt
ZmJlOGJjNWEyOWZhLzEvaWE3U3pfak9NYk0wLURvTE1GX3U4QjF4Mm5VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9lOTBmNTEtODlhYS00OWViLTllYTYtZmJlOGJjNWEyOWZh
LzEvaWE3U3pfak9NYk0wLURvTE1GX3U4QjF4Mm5VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOKJHlbm+
mGegyY/vqApTgnsXp91dumvzg+2CUjtOdatJPl1/XidF4YxnGKsGn57ZgvBhPM8m
PQvqZOrZja5Tqg/0yHtP2g0YMOpmYYmUvLyMrkhavvGOtNenCxCYSBPZX9IPeL6N
BgFdM+SteX64Psyn1IHfHsiXODYApcBJHgDHG8JpBjLgqfynEqXCTEcm2cUWSW6x
4AS0E/g35b3EMiaFnM+sTc4tTT2uChPs2pyaiARcVfiKdIkZVxhhBtHHoX8iNSLk
Zj8Ld4shNDonER+8WYPu1LPIf2eizuL/O5xBOmbBqnQU5H7AlPVMMm7e3jsQ9qnP
TMyNbQsKoBa+kA==
-----END CERTIFICATE-----
Generated at Fri Apr 18 16:18:22 2025 by rpki-client