Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
File: ia6mmISBzqS5W2UTHMSYhPPtDj8.mft (raw, json)
Hash identifier: 14TpL6nRm/+RqlvKZcxz5W8SZAvtcKGSTCRMgIXRcfU=
Subject key identifier: AA:DC:0C:BD:BE:FD:93:FF:61:65:28:51:B4:BB:13:7C:69:D7:EA:A6
Authority key identifier: 89:AE:A6:98:84:81:CE:A4:B9:5B:65:13:1C:C4:98:84:F3:ED:0E:3F
Certificate issuer: /CN=89aea6988481cea4b95b65131cc49884f3ed0e3f
Certificate serial: 019629047B25DD8DEE30AEF5696E5858AA75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
Manifest number: 14E7
Signing time: Sat 12 Apr 2025 08:01:21 +0000
Manifest this update: Sat 12 Apr 2025 08:01:21 +0000
Manifest next update: Sun 13 Apr 2025 08:01:21 +0000
Files and hashes: 1: Fl6pOlPLU-YJzCc-HkB3wwedcd0.roa (hash: jlDQ+VkQoTEiq8ZQ7EeJUmtKUn70x3pUuA4q7simdPM=)
2: ia6mmISBzqS5W2UTHMSYhPPtDj8.crl (hash: HeyqlDd8B4pomRZ7ae8yiRuR9qKMovqPWPZMoDkEDRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 08:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:29:04:7b:25:dd:8d:ee:30:ae:f5:69:6e:58:58:aa:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89aea6988481cea4b95b65131cc49884f3ed0e3f
Validity
Not Before: Apr 12 08:01:21 2025 GMT
Not After : Apr 13 08:01:21 2025 GMT
Subject: CN=aadc0cbdbefd93ff61652851b4bb137c69d7eaa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:8a:3e:09:3d:bd:46:34:b3:4e:ae:53:e0:75:
b3:03:d6:db:5e:1e:3d:84:d5:0b:b9:5b:fd:c8:5c:
bb:cc:c9:b3:77:18:c1:0e:92:21:79:70:8e:3b:77:
6f:24:6f:fe:6f:88:77:15:af:6b:60:3f:b1:b1:e9:
f6:df:9f:db:7e:e7:61:08:81:12:b1:3c:93:1a:b9:
54:b1:13:59:ce:7c:68:ca:3b:b1:ec:d2:fc:98:fc:
70:55:5a:f3:0d:ae:ec:4e:ad:47:8a:b8:61:42:47:
47:79:fc:1d:e4:36:6e:29:6b:b6:2d:c7:9d:91:68:
f4:7a:8a:89:c7:af:50:18:7c:58:3c:f2:d4:46:41:
4e:58:1e:74:5c:ab:05:09:75:d0:fd:39:fd:e4:2e:
56:36:01:43:7c:67:b1:0e:c5:15:c2:8c:6b:a7:1a:
21:76:49:70:6f:cf:a5:37:31:b1:b1:49:b0:3f:31:
b9:80:75:1b:19:86:e8:31:92:70:52:5b:e6:13:fd:
49:43:98:0f:d0:77:f6:c2:29:f9:67:53:6e:d5:a8:
96:4e:8e:0f:ba:3b:50:a4:0a:42:8f:b8:42:61:57:
97:9c:70:9a:57:db:9a:c3:10:a8:d0:91:33:d3:45:
d2:a5:aa:55:5f:c4:8f:f1:29:5d:3f:9e:a2:95:e9:
9e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:DC:0C:BD:BE:FD:93:FF:61:65:28:51:B4:BB:13:7C:69:D7:EA:A6
X509v3 Authority Key Identifier:
keyid:89:AE:A6:98:84:81:CE:A4:B9:5B:65:13:1C:C4:98:84:F3:ED:0E:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:a0:03:9b:b1:19:9a:6f:81:68:b3:d4:cd:d0:72:4d:d0:80:
00:92:9c:9c:4f:d2:c8:56:4d:2a:e0:ec:92:a4:b3:17:3b:4b:
67:b1:ab:61:a0:2e:37:0d:8d:bb:b1:9f:aa:46:34:40:22:8e:
cb:6c:b7:ad:d1:f7:3e:23:4c:6d:96:ba:d1:f5:74:6e:ee:3d:
5c:87:66:20:58:a6:cd:1f:78:19:75:0c:43:f8:a8:32:a1:0f:
8c:1c:d9:7e:f2:02:89:18:d9:3f:0a:a6:a2:47:78:f7:4f:32:
cb:e0:34:67:9b:cf:12:ec:da:35:9b:55:8c:04:4c:b2:80:e3:
54:13:a7:0f:3b:10:10:5d:68:a7:29:a1:6e:ad:6a:4b:ab:a7:
74:16:84:e4:12:1f:73:a1:fa:e7:a8:ea:a2:67:2f:5e:ca:fe:
76:55:c5:17:b0:56:26:bd:08:f5:16:f2:47:04:6f:62:b5:3a:
4a:f4:83:09:95:4b:01:53:8e:cc:82:24:f9:7a:49:ee:9c:b9:
1a:ef:9c:c0:cd:77:69:e8:06:6d:51:06:51:83:46:d2:41:62:
ff:f7:df:af:2f:0d:54:b1:e6:07:03:ef:cd:b9:0b:33:aa:84:
5f:14:f4:80:cb:b7:c6:e7:25:a2:79:80:32:e0:81:be:9c:b8:
49:6a:49:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYpBHsl3Y3uMK71aW5YWKp1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5YWVhNjk4ODQ4MWNlYTRiOTViNjUxMzFjYzQ5ODg0ZjNl
ZDBlM2YwHhcNMjUwNDEyMDgwMTIxWhcNMjUwNDEzMDgwMTIxWjAzMTEwLwYDVQQD
EyhhYWRjMGNiZGJlZmQ5M2ZmNjE2NTI4NTFiNGJiMTM3YzY5ZDdlYWE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA44o+CT29RjSzTq5T4HWzA9bbXh49
hNULuVv9yFy7zMmzdxjBDpIheXCOO3dvJG/+b4h3Fa9rYD+xsen235/bfudhCIES
sTyTGrlUsRNZznxoyjux7NL8mPxwVVrzDa7sTq1HirhhQkdHefwd5DZuKWu2Lced
kWj0eoqJx69QGHxYPPLURkFOWB50XKsFCXXQ/Tn95C5WNgFDfGexDsUVwoxrpxoh
dklwb8+lNzGxsUmwPzG5gHUbGYboMZJwUlvmE/1JQ5gP0Hf2win5Z1Nu1aiWTo4P
ujtQpApCj7hCYVeXnHCaV9uawxCo0JEz00XSpapVX8SP8SldP56ilemeIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKrcDL2+/ZP/YWUoUbS7E3xp1+qmMB8GA1UdIwQY
MBaAFImuppiEgc6kuVtlExzEmITz7Q4/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWE2bW1JU0J6cVM1VzJVVEhNU1loUFB0RGo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8yYTU1YTUtMzMwNC00MTA4LThkOTIt
NGQ4ZTkwZTAzMzNiLzEvaWE2bW1JU0J6cVM1VzJVVEhNU1loUFB0RGo4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC8yYTU1YTUtMzMwNC00MTA4LThkOTItNGQ4ZTkwZTAzMzNi
LzEvaWE2bW1JU0J6cVM1VzJVVEhNU1loUFB0RGo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEaADm7EZ
mm+BaLPUzdByTdCAAJKcnE/SyFZNKuDskqSzFztLZ7GrYaAuNw2Nu7GfqkY0QCKO
y2y3rdH3PiNMbZa60fV0bu49XIdmIFimzR94GXUMQ/ioMqEPjBzZfvICiRjZPwqm
okd4908yy+A0Z5vPEuzaNZtVjARMsoDjVBOnDzsQEF1opymhbq1qS6undBaE5BIf
c6H656jqomcvXsr+dlXFF7BWJr0I9RbyRwRvYrU6SvSDCZVLAVOOzIIk+XpJ7py5
Gu+cwM13aegGbVEGUYNG0kFi//ffry8NVLHmBwPvzbkLM6qEXxT0gMu3xuclonmA
MuCBvpy4SWpJ7g==
-----END CERTIFICATE-----
Generated at Sat Apr 12 18:27:32 2025 by rpki-client