Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
File: iwVEhe5ixvGTlhPLogZp7vRQT3k.mft (raw, json)
Hash identifier: CAWa0gw0B1kkAGfIJeJG0hvL/REEThRt9UDE5qibNw0=
Subject key identifier: E1:65:95:43:06:99:2E:59:19:EC:D9:9D:4F:12:64:68:DD:FD:69:29
Authority key identifier: 8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
Certificate issuer: /CN=8b054485ee62c6f1939613cba20669eef4504f79
Certificate serial: 01965793D02FEE0B8078597F47EA45A5B689
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
Manifest number: 0AF0
Signing time: Mon 21 Apr 2025 09:00:26 +0000
Manifest this update: Mon 21 Apr 2025 09:00:26 +0000
Manifest next update: Tue 22 Apr 2025 09:00:26 +0000
Files and hashes: 1: FmWPQsDQv1I31vsCB-XoPwOttAE.roa (hash: xjF9H58/BASj6CKq3v5pVooMgpKIb+h+UMw0XGNXQo8=)
2: W0D9WIXmr4DG_xEj-xUZT82-dxQ.roa (hash: fBvWuzB9wp05SoO5x+Vb/EneDFqD/kJHT0KgvrAsF24=)
3: aheTt6_pS0K22xA67glREELod8A.roa (hash: qWC2pzWM7a75jc5rNLOSS10p2/VCBqYrjSpxRU7D9zI=)
4: g_SxF-_E_VpwVrwNdmKsnzbOYaM.roa (hash: wSo0WU3KC/Wo2i+eQ7vlG4IlKtTmfnJLRouHYXZqnO4=)
5: iwVEhe5ixvGTlhPLogZp7vRQT3k.crl (hash: /lGHszgUXmRQr5qEBt2WbS3z11zIA2MdLjVvTe1lmV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:93:d0:2f:ee:0b:80:78:59:7f:47:ea:45:a5:b6:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b054485ee62c6f1939613cba20669eef4504f79
Validity
Not Before: Apr 21 09:00:26 2025 GMT
Not After : Apr 22 09:00:26 2025 GMT
Subject: CN=e165954306992e5919ecd99d4f126468ddfd6929
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:10:22:68:8d:57:b4:83:df:1e:07:bb:dc:92:
81:bc:e2:84:55:0a:5b:fe:e7:f7:c2:36:84:78:24:
a4:32:01:f0:26:92:4f:23:24:e6:11:0a:92:a2:50:
b6:00:ab:e2:e9:79:19:6a:76:29:82:48:3d:4c:b6:
fe:ab:41:99:fc:72:e7:57:cb:b5:cc:28:2d:33:e4:
d4:e5:97:79:88:a8:8d:de:c5:90:e2:f5:b3:c5:bc:
89:08:d2:0d:aa:a2:af:3d:aa:4f:9e:6f:0f:de:77:
29:99:5d:63:01:14:ee:c7:b0:8b:a4:8e:79:9a:d2:
0f:24:cc:78:38:d6:9e:27:4d:25:60:34:4e:bd:65:
72:38:e5:a4:13:e5:16:28:14:67:29:f8:cc:fc:2c:
50:ec:53:f1:c7:7f:26:5d:55:a5:19:c0:f4:d5:bf:
15:2b:91:d2:c9:36:e8:f3:7e:47:b6:78:fe:2b:8b:
19:5c:28:17:32:a3:e5:57:a8:30:98:50:6a:dc:12:
dc:e0:5c:44:3b:eb:4a:ee:b5:cb:e4:71:4a:f7:24:
40:63:2b:d5:09:eb:36:89:68:7a:4a:91:00:7f:ca:
d9:2e:ce:98:06:e0:c4:c1:7e:34:57:c3:ce:ae:24:
03:46:37:a3:54:5f:20:bf:97:4b:0e:73:da:4a:0f:
b8:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:65:95:43:06:99:2E:59:19:EC:D9:9D:4F:12:64:68:DD:FD:69:29
X509v3 Authority Key Identifier:
keyid:8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:a9:36:7b:22:7e:c1:33:3a:c9:3a:a4:e4:b7:51:93:60:7f:
cd:c4:96:e4:7d:c0:9a:b1:f5:59:72:f1:66:c5:ab:12:50:1c:
d4:8e:00:ec:ad:22:d1:cd:36:8c:3d:74:f3:88:ab:8c:f9:84:
ec:3c:15:1b:1c:49:82:0d:3c:91:0d:bd:0f:34:c8:b5:f9:43:
d5:20:a2:46:09:26:72:ce:24:7e:5f:52:4e:43:b2:7d:b2:6e:
5e:b0:93:1b:c4:d0:39:6f:0f:7f:63:d7:02:1f:c4:44:d6:85:
c9:52:20:90:0f:2b:fd:88:cf:f8:78:af:92:19:bc:7f:fd:b1:
68:cc:00:77:a2:0b:09:d9:19:ec:50:f2:0a:0f:76:61:02:e9:
2e:19:31:fd:d9:17:c3:f3:40:70:e0:2e:63:8f:d1:a9:3d:1b:
48:bd:45:fe:a7:ea:de:31:de:bb:86:1a:36:1d:5e:15:36:fe:
32:4d:35:6c:60:72:35:cf:61:1a:f8:3a:b3:b5:0a:ad:25:21:
5b:5a:4b:0b:91:97:9a:0d:9e:a3:8e:a0:e2:58:ba:20:bf:ac:
42:1e:b5:87:fa:92:6c:46:7f:49:4f:7d:3b:3c:4e:e9:06:0d:
b1:c8:69:69:4f:3f:11:08:9b:96:2b:e9:64:4a:6c:a5:a0:9f:
2f:90:d5:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZXk9Av7guAeFl/R+pFpbaJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiMDU0NDg1ZWU2MmM2ZjE5Mzk2MTNjYmEyMDY2OWVlZjQ1
MDRmNzkwHhcNMjUwNDIxMDkwMDI2WhcNMjUwNDIyMDkwMDI2WjAzMTEwLwYDVQQD
EyhlMTY1OTU0MzA2OTkyZTU5MTllY2Q5OWQ0ZjEyNjQ2OGRkZmQ2OTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxAiaI1XtIPfHge73JKBvOKEVQpb
/uf3wjaEeCSkMgHwJpJPIyTmEQqSolC2AKvi6XkZanYpgkg9TLb+q0GZ/HLnV8u1
zCgtM+TU5Zd5iKiN3sWQ4vWzxbyJCNINqqKvPapPnm8P3ncpmV1jARTux7CLpI55
mtIPJMx4ONaeJ00lYDROvWVyOOWkE+UWKBRnKfjM/CxQ7FPxx38mXVWlGcD01b8V
K5HSyTbo835Htnj+K4sZXCgXMqPlV6gwmFBq3BLc4FxEO+tK7rXL5HFK9yRAYyvV
Ces2iWh6SpEAf8rZLs6YBuDEwX40V8POriQDRjejVF8gv5dLDnPaSg+4mQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOFllUMGmS5ZGezZnU8SZGjd/WkpMB8GA1UdIwQY
MBaAFIsFRIXuYsbxk5YTy6IGae70UE95MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXdWRWhlNWl4dkdUbGhQTG9nWnA3dlJRVDNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC83NzljMDktZjQ5YS00YjM4LWE3Nzgt
NmJjMzkwOTk1Y2FiLzEvaXdWRWhlNWl4dkdUbGhQTG9nWnA3dlJRVDNrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC83NzljMDktZjQ5YS00YjM4LWE3NzgtNmJjMzkwOTk1Y2Fi
LzEvaXdWRWhlNWl4dkdUbGhQTG9nWnA3dlJRVDNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM6k2eyJ+
wTM6yTqk5LdRk2B/zcSW5H3AmrH1WXLxZsWrElAc1I4A7K0i0c02jD1084irjPmE
7DwVGxxJgg08kQ29DzTItflD1SCiRgkmcs4kfl9STkOyfbJuXrCTG8TQOW8Pf2PX
Ah/ERNaFyVIgkA8r/YjP+Hivkhm8f/2xaMwAd6ILCdkZ7FDyCg92YQLpLhkx/dkX
w/NAcOAuY4/RqT0bSL1F/qfq3jHeu4YaNh1eFTb+Mk01bGByNc9hGvg6s7UKrSUh
W1pLC5GXmg2eo46g4li6IL+sQh61h/qSbEZ/SU99OzxO6QYNschpaU8/EQiblivp
ZEpspaCfL5DV/Q==
-----END CERTIFICATE-----
Generated at Mon Apr 21 19:32:38 2025 by rpki-client