Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
File: ioNVXKoizpubFoNQOhTjzdg24Bs.mft (raw, json)
Hash identifier: /kc/ZT1a3fvZI8v4CeBVjldZrb8ZW230+4IY/11JVAE=
Subject key identifier: D3:C4:7D:8D:2A:8C:36:1C:5F:72:D1:03:9D:2A:38:5E:54:6E:64:E3
Authority key identifier: 8A:83:55:5C:AA:22:CE:9B:9B:16:83:50:3A:14:E3:CD:D8:36:E0:1B
Certificate issuer: /CN=8a83555caa22ce9b9b1683503a14e3cdd836e01b
Certificate serial: 01964BFDDB724E9F31B3284F7AF9A2E4B5E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
Manifest number: 0D67
Signing time: Sat 19 Apr 2025 03:00:49 +0000
Manifest this update: Sat 19 Apr 2025 03:00:49 +0000
Manifest next update: Sun 20 Apr 2025 03:00:49 +0000
Files and hashes: 1: 8ltVewMht9tkkoh6ikhHpmbvP28.roa (hash: qZH42qz06gavyuSaiRbHo+yLoZK1W5iI0G1jpEdB8DA=)
2: ioNVXKoizpubFoNQOhTjzdg24Bs.crl (hash: YxKzB1nKz8cijUC8tW9Igw455xsPR2eevTa7YR13JPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 03:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:fd:db:72:4e:9f:31:b3:28:4f:7a:f9:a2:e4:b5:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a83555caa22ce9b9b1683503a14e3cdd836e01b
Validity
Not Before: Apr 19 03:00:49 2025 GMT
Not After : Apr 20 03:00:49 2025 GMT
Subject: CN=d3c47d8d2a8c361c5f72d1039d2a385e546e64e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e0:3b:bb:f3:d0:01:75:5c:f0:b3:bb:45:8f:
4a:d8:3d:e5:3c:bd:1b:26:31:67:63:b6:a6:b2:ea:
72:ee:cc:88:8b:e5:0e:83:07:52:6c:36:70:f6:02:
c8:3c:85:a0:4c:fc:3a:bb:5a:fc:2e:d7:f4:43:e4:
f6:ab:3a:e7:6f:b1:48:c0:5d:85:9c:3d:80:69:f4:
35:84:02:0b:27:08:73:e0:fd:11:1a:6d:a4:f8:af:
38:30:97:b1:98:ab:8f:f0:05:38:4b:78:de:cd:ce:
56:c6:b4:06:7e:73:81:0e:cc:f6:d5:3f:eb:74:fb:
9f:97:84:49:b0:73:4c:b3:c4:cd:e6:3e:8a:4e:7a:
44:be:2d:e9:ed:a6:bc:f1:69:61:1f:63:39:ee:06:
b2:ae:7b:a6:b8:c3:0a:66:28:78:9f:23:28:d8:bb:
fb:61:29:b6:5e:02:30:ca:0d:da:e0:e2:e2:83:6f:
9e:a5:78:37:09:a0:db:1a:de:2f:60:d8:cf:34:b8:
3b:61:28:ce:96:8c:d0:d1:e3:51:17:26:4e:df:33:
6d:46:28:c8:fd:68:a0:24:d3:03:d3:6f:00:9f:ed:
aa:79:ba:66:42:67:29:c0:71:1b:62:e5:75:dd:a4:
38:69:44:92:12:51:41:b9:d4:d9:0f:41:c5:34:73:
f6:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:C4:7D:8D:2A:8C:36:1C:5F:72:D1:03:9D:2A:38:5E:54:6E:64:E3
X509v3 Authority Key Identifier:
keyid:8A:83:55:5C:AA:22:CE:9B:9B:16:83:50:3A:14:E3:CD:D8:36:E0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:c3:69:97:1b:03:7a:db:63:e7:65:67:13:8a:7a:3d:05:e0:
9e:8d:02:5f:aa:e0:1e:ad:f3:cd:f9:5d:db:9c:63:ef:da:e4:
90:87:f8:be:24:30:71:bb:23:7b:6c:ec:01:b4:b5:2e:e6:76:
4e:c5:c0:b6:92:4b:aa:06:09:c8:ca:2c:93:02:98:39:a4:5a:
b0:ae:d3:84:56:5c:07:b4:11:4f:2b:ac:90:d8:1b:79:23:57:
5e:f1:5c:61:84:09:2c:3f:e0:bc:4c:18:a1:b1:e7:55:84:aa:
cc:c3:a9:5e:5a:70:0d:8c:e4:d6:44:ce:d7:d5:42:35:a7:83:
a3:91:ba:19:37:4f:ae:7a:41:a4:0f:00:ab:93:ab:e4:b9:78:
7b:e3:be:fe:a4:61:29:97:03:a6:0c:e4:47:b4:1d:07:9c:20:
bc:c9:04:5c:ab:59:6a:e4:08:8f:92:8d:14:8c:82:39:8f:34:
66:b0:a4:1c:95:94:89:04:d6:06:e3:c6:55:eb:bd:57:ca:01:
58:d6:20:3d:5a:40:8e:dc:20:df:c2:8a:1a:f9:99:2e:30:0f:
d8:6e:45:a5:80:79:f0:40:ce:21:ea:9d:fa:96:b4:16:ba:87:
4a:b2:fb:8b:9c:07:69:04:21:64:1a:b4:b6:4d:21:bf:bc:ac:
d2:c4:ec:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZL/dtyTp8xsyhPevmi5LXmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhODM1NTVjYWEyMmNlOWI5YjE2ODM1MDNhMTRlM2NkZDgz
NmUwMWIwHhcNMjUwNDE5MDMwMDQ5WhcNMjUwNDIwMDMwMDQ5WjAzMTEwLwYDVQQD
EyhkM2M0N2Q4ZDJhOGMzNjFjNWY3MmQxMDM5ZDJhMzg1ZTU0NmU2NGUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoeA7u/PQAXVc8LO7RY9K2D3lPL0b
JjFnY7amsupy7syIi+UOgwdSbDZw9gLIPIWgTPw6u1r8Ltf0Q+T2qzrnb7FIwF2F
nD2AafQ1hAILJwhz4P0RGm2k+K84MJexmKuP8AU4S3jezc5WxrQGfnOBDsz21T/r
dPufl4RJsHNMs8TN5j6KTnpEvi3p7aa88WlhH2M57gayrnumuMMKZih4nyMo2Lv7
YSm2XgIwyg3a4OLig2+epXg3CaDbGt4vYNjPNLg7YSjOlozQ0eNRFyZO3zNtRijI
/WigJNMD028An+2qebpmQmcpwHEbYuV13aQ4aUSSElFBudTZD0HFNHP2wwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNPEfY0qjDYcX3LRA50qOF5UbmTjMB8GA1UdIwQY
MBaAFIqDVVyqIs6bmxaDUDoU483YNuAbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaW9OVlhLb2l6cHViRm9OUU9oVGp6ZGcyNEJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy83YjljZjgtMjU0Mi00MWMyLTg4YzAt
MWYzMjU0NzNjZTY4LzEvaW9OVlhLb2l6cHViRm9OUU9oVGp6ZGcyNEJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy83YjljZjgtMjU0Mi00MWMyLTg4YzAtMWYzMjU0NzNjZTY4
LzEvaW9OVlhLb2l6cHViRm9OUU9oVGp6ZGcyNEJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPsNplxsD
ettj52VnE4p6PQXgno0CX6rgHq3zzfld25xj79rkkIf4viQwcbsje2zsAbS1LuZ2
TsXAtpJLqgYJyMoskwKYOaRasK7ThFZcB7QRTyuskNgbeSNXXvFcYYQJLD/gvEwY
obHnVYSqzMOpXlpwDYzk1kTO19VCNaeDo5G6GTdPrnpBpA8Aq5Or5Ll4e+O+/qRh
KZcDpgzkR7QdB5wgvMkEXKtZauQIj5KNFIyCOY80ZrCkHJWUiQTWBuPGVeu9V8oB
WNYgPVpAjtwg38KKGvmZLjAP2G5FpYB58EDOIeqd+pa0FrqHSrL7i5wHaQQhZBq0
tk0hv7ys0sTsVg==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:44:29 2025 by rpki-client