Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
File: ioNVXKoizpubFoNQOhTjzdg24Bs.mft (raw, json)
Hash identifier: 47CyO+FiQk0oqfQlqR6UXrpxt3Q5yHSKc9Wpg0DwPRo=
Subject key identifier: 67:3C:84:A8:0C:AC:43:EC:F7:7D:22:21:05:53:E7:FF:71:91:7A:8A
Authority key identifier: 8A:83:55:5C:AA:22:CE:9B:9B:16:83:50:3A:14:E3:CD:D8:36:E0:1B
Certificate issuer: /CN=8a83555caa22ce9b9b1683503a14e3cdd836e01b
Certificate serial: 0197470BA7084BE21454156F223577B70A19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
Manifest number: 0DE9
Signing time: Fri 06 Jun 2025 21:00:35 +0000
Manifest this update: Fri 06 Jun 2025 21:00:35 +0000
Manifest next update: Sat 07 Jun 2025 21:00:35 +0000
Files and hashes: 1: 8ltVewMht9tkkoh6ikhHpmbvP28.roa (hash: qZH42qz06gavyuSaiRbHo+yLoZK1W5iI0G1jpEdB8DA=)
2: ioNVXKoizpubFoNQOhTjzdg24Bs.crl (hash: qX/tfTlioOdN+U0hoQNUBfTFTQYbD3lnugIZu6Uazz0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:a7:08:4b:e2:14:54:15:6f:22:35:77:b7:0a:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a83555caa22ce9b9b1683503a14e3cdd836e01b
Validity
Not Before: Jun 6 21:00:35 2025 GMT
Not After : Jun 7 21:00:35 2025 GMT
Subject: CN=673c84a80cac43ecf77d22210553e7ff71917a8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f8:82:fe:89:15:52:50:f4:d9:1e:13:d6:5c:
ec:b0:41:c6:82:fd:fb:b9:2e:8b:d9:d0:25:f9:58:
85:07:32:66:85:90:54:35:bb:45:9a:80:f3:29:35:
5a:87:d6:b4:dd:a9:20:18:84:0d:8a:3e:05:d0:b5:
1f:da:92:4c:f7:52:5e:e1:a8:04:be:56:13:6b:62:
27:f2:91:06:04:51:72:08:e9:85:31:40:87:a8:41:
e2:4d:34:5a:43:1f:af:6a:05:f3:e6:9c:bf:e6:ba:
2e:d5:bd:53:d9:24:aa:48:34:1c:18:8b:21:bf:55:
92:4c:3c:c3:b6:a3:b5:2b:54:81:91:5e:54:97:cc:
29:af:33:0d:dd:77:29:8a:f8:3e:af:35:6d:8d:bc:
0b:db:81:08:bd:0c:bf:a3:e5:dc:43:b1:52:0f:51:
bc:74:72:a5:b8:34:7a:08:4c:d6:07:bb:8c:c0:9c:
01:e4:59:fa:63:7e:ef:5a:08:73:69:76:01:f2:17:
99:a3:c2:5b:93:14:b5:06:12:15:9e:17:11:f1:c9:
3f:64:ed:0d:a5:48:22:44:f9:4d:c3:70:b6:89:e8:
90:49:50:f9:9f:65:4f:5c:4b:57:33:d9:0a:44:8c:
da:bd:7a:a9:07:94:85:7c:d2:0c:da:f7:f3:a9:82:
4c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:3C:84:A8:0C:AC:43:EC:F7:7D:22:21:05:53:E7:FF:71:91:7A:8A
X509v3 Authority Key Identifier:
keyid:8A:83:55:5C:AA:22:CE:9B:9B:16:83:50:3A:14:E3:CD:D8:36:E0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:0e:61:9c:dc:6c:2a:63:fa:b8:30:ab:d3:44:d0:ce:2f:af:
f6:fc:7c:5c:c6:eb:6e:1d:7b:26:37:9a:d9:5c:64:2f:c9:98:
44:bf:ca:7b:cf:8a:e2:49:2e:8e:f4:0c:df:2f:29:05:de:76:
c6:02:fe:ab:14:87:6f:f8:6b:9f:5f:c4:4f:e0:92:71:05:7b:
2c:26:d2:5f:63:32:34:ae:01:00:c5:61:6a:ba:c7:ee:01:4e:
06:25:bd:a2:75:f3:bc:07:47:b8:2d:4c:ae:4b:4d:92:6c:ea:
ad:82:5f:d4:39:ad:ff:6b:48:b5:91:2b:86:ca:5d:10:70:7e:
2f:2f:e7:ef:4b:75:a8:4e:82:54:49:e7:e3:92:c0:1f:ba:50:
19:5a:2a:70:81:c9:ae:5d:fd:24:79:0f:d8:39:c3:cc:c8:96:
0c:15:ef:8e:71:2f:97:27:9d:c3:e7:8d:40:55:96:0a:c9:7d:
fc:06:15:3d:ca:f6:b5:a5:53:ba:87:d0:6c:89:b2:e9:28:32:
be:57:51:e7:c7:06:71:24:54:44:30:13:e4:3f:8f:80:96:ba:
6c:f1:a4:34:1b:fe:d8:76:98:26:f6:97:04:ac:8d:11:c3:15:
24:50:b9:5c:34:cf:80:6e:53:ef:2a:97:66:84:34:7a:3c:26:
e9:5d:29:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdHC6cIS+IUVBVvIjV3twoZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhODM1NTVjYWEyMmNlOWI5YjE2ODM1MDNhMTRlM2NkZDgz
NmUwMWIwHhcNMjUwNjA2MjEwMDM1WhcNMjUwNjA3MjEwMDM1WjAzMTEwLwYDVQQD
Eyg2NzNjODRhODBjYWM0M2VjZjc3ZDIyMjEwNTUzZTdmZjcxOTE3YThhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjPiC/okVUlD02R4T1lzssEHGgv37
uS6L2dAl+ViFBzJmhZBUNbtFmoDzKTVah9a03akgGIQNij4F0LUf2pJM91Je4agE
vlYTa2In8pEGBFFyCOmFMUCHqEHiTTRaQx+vagXz5py/5rou1b1T2SSqSDQcGIsh
v1WSTDzDtqO1K1SBkV5Ul8wprzMN3Xcpivg+rzVtjbwL24EIvQy/o+XcQ7FSD1G8
dHKluDR6CEzWB7uMwJwB5Fn6Y37vWghzaXYB8heZo8JbkxS1BhIVnhcR8ck/ZO0N
pUgiRPlNw3C2ieiQSVD5n2VPXEtXM9kKRIzavXqpB5SFfNIM2vfzqYJMawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGc8hKgMrEPs930iIQVT5/9xkXqKMB8GA1UdIwQY
MBaAFIqDVVyqIs6bmxaDUDoU483YNuAbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaW9OVlhLb2l6cHViRm9OUU9oVGp6ZGcyNEJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy83YjljZjgtMjU0Mi00MWMyLTg4YzAt
MWYzMjU0NzNjZTY4LzEvaW9OVlhLb2l6cHViRm9OUU9oVGp6ZGcyNEJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy83YjljZjgtMjU0Mi00MWMyLTg4YzAtMWYzMjU0NzNjZTY4
LzEvaW9OVlhLb2l6cHViRm9OUU9oVGp6ZGcyNEJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASg5hnNxs
KmP6uDCr00TQzi+v9vx8XMbrbh17Jjea2VxkL8mYRL/Ke8+K4kkujvQM3y8pBd52
xgL+qxSHb/hrn1/ET+CScQV7LCbSX2MyNK4BAMVharrH7gFOBiW9onXzvAdHuC1M
rktNkmzqrYJf1Dmt/2tItZErhspdEHB+Ly/n70t1qE6CVEnn45LAH7pQGVoqcIHJ
rl39JHkP2DnDzMiWDBXvjnEvlyedw+eNQFWWCsl9/AYVPcr2taVTuofQbImy6Sgy
vldR58cGcSRURDAT5D+PgJa6bPGkNBv+2HaYJvaXBKyNEcMVJFC5XDTPgG5T7yqX
ZoQ0ejwm6V0p2A==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:25:30 2025 by rpki-client