Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
File: i7i2EnIdTUwtB8v-LklemGoPAm0.mft (raw, json)
Hash identifier: 6515j5Zq0e5tBNQwtY4rMuWmNHN+7m98jYwPG8jDwAM=
Subject key identifier: BA:CE:32:04:10:E3:32:76:8C:F6:A4:1A:F7:23:28:2D:CA:B5:93:2F
Authority key identifier: 8B:B8:B6:12:72:1D:4D:4C:2D:07:CB:FE:2E:49:5E:98:6A:0F:02:6D
Certificate issuer: /CN=8bb8b612721d4d4c2d07cbfe2e495e986a0f026d
Certificate serial: 01964A0EEC8D08449E6E5830FBCA2AE21A82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
Manifest number: 04D9
Signing time: Fri 18 Apr 2025 18:00:14 +0000
Manifest this update: Fri 18 Apr 2025 18:00:14 +0000
Manifest next update: Sat 19 Apr 2025 18:00:14 +0000
Files and hashes: 1: i2xjHboexoRTpg38Qi-okoPsUcQ.roa (hash: x9dOoFm67St5fPryA+wWNLVDwzCG4EBSO5jTeQtPIqE=)
2: i7i2EnIdTUwtB8v-LklemGoPAm0.crl (hash: QLeRW0X7FbaqsPLHqFWzVJAivAsRsN4Byg9PmTV7WCA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 14:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:0e:ec:8d:08:44:9e:6e:58:30:fb:ca:2a:e2:1a:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bb8b612721d4d4c2d07cbfe2e495e986a0f026d
Validity
Not Before: Apr 18 18:00:14 2025 GMT
Not After : Apr 19 18:00:14 2025 GMT
Subject: CN=bace320410e332768cf6a41af723282dcab5932f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:86:ff:55:8b:c7:dc:39:ca:7e:b8:dd:9d:2a:
63:3d:4a:60:47:fa:0a:5b:99:21:18:2d:eb:af:0a:
a2:86:de:af:75:1e:6a:d0:10:72:9b:6d:93:4e:33:
5e:d7:ae:20:3d:af:be:d7:c2:09:95:e2:26:25:ba:
d7:67:0e:7e:65:15:35:09:0b:e8:c7:74:4d:5d:a9:
62:b6:77:a5:bc:e7:48:ea:23:cd:d7:68:5a:3b:b2:
85:71:58:a1:fb:16:26:d8:3f:00:9f:45:2a:63:af:
4d:53:95:01:8e:6c:a3:4a:a9:67:83:a4:bb:17:ad:
ad:f2:fb:0f:d4:55:a4:d3:18:0c:79:3c:ae:87:26:
a7:d6:1f:76:73:9b:ed:aa:50:3e:47:d7:34:af:5a:
ca:42:8d:f4:4f:26:63:5d:5d:13:c9:e0:fa:92:15:
58:67:2a:cb:73:49:87:34:e0:ec:6c:0d:7d:56:84:
8c:53:d8:f1:86:76:97:39:03:c4:66:fc:5d:89:36:
49:6b:a5:a7:23:bf:e7:f3:19:59:24:4a:87:df:97:
8e:c1:a5:f6:9f:d2:a8:9c:62:82:02:89:4f:a0:58:
6b:e4:7d:7f:74:be:58:a3:2f:7c:ad:b1:b5:ab:be:
63:f4:2f:4d:2c:54:5c:1c:f6:b5:96:75:29:17:62:
d6:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:CE:32:04:10:E3:32:76:8C:F6:A4:1A:F7:23:28:2D:CA:B5:93:2F
X509v3 Authority Key Identifier:
keyid:8B:B8:B6:12:72:1D:4D:4C:2D:07:CB:FE:2E:49:5E:98:6A:0F:02:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:75:b1:51:31:6d:13:d4:48:ad:5a:41:b1:aa:b9:27:91:c3:
43:8e:06:60:84:5e:ca:c8:c4:e2:41:22:c6:b9:67:56:d0:5d:
5b:33:0c:72:1c:35:64:a1:13:a7:9f:05:96:64:69:80:da:d9:
88:5c:2a:fc:63:a0:41:01:8f:ab:b8:66:aa:e5:a1:e5:3a:2a:
85:e1:11:53:70:0d:a5:a7:9e:be:fa:af:65:04:82:60:27:a6:
31:52:c0:45:78:46:ba:c6:f2:cf:e5:8b:ea:d2:59:99:24:10:
aa:3f:7a:a9:13:f6:aa:63:83:5c:e8:25:a0:a0:95:9f:f1:c4:
b6:1c:ea:d7:7f:48:40:30:c4:67:a3:d1:75:21:2f:a8:94:cb:
24:2f:43:8f:36:1d:47:c1:0d:c5:de:bc:09:0c:e6:02:32:f0:
21:6c:58:54:7a:b2:77:1b:bb:f9:b6:0e:6d:32:99:72:42:1b:
36:8f:46:f4:3f:d4:f9:03:ff:3b:45:0d:d3:72:dd:09:55:c0:
b0:c0:cb:0d:e8:ce:7d:f7:1f:ec:e4:4b:92:56:37:2f:1a:37:
b7:d0:4c:f1:b4:9a:ff:22:b6:76:dd:1d:6c:c8:dc:a8:23:e5:
ff:40:5f:12:ce:4d:78:1f:9d:3e:07:1f:65:2f:04:90:d3:f2:
b0:01:45:35
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZKDuyNCESeblgw+8oq4hqCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiYjhiNjEyNzIxZDRkNGMyZDA3Y2JmZTJlNDk1ZTk4NmEw
ZjAyNmQwHhcNMjUwNDE4MTgwMDE0WhcNMjUwNDE5MTgwMDE0WjAzMTEwLwYDVQQD
EyhiYWNlMzIwNDEwZTMzMjc2OGNmNmE0MWFmNzIzMjgyZGNhYjU5MzJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnob/VYvH3DnKfrjdnSpjPUpgR/oK
W5khGC3rrwqiht6vdR5q0BBym22TTjNe164gPa++18IJleImJbrXZw5+ZRU1CQvo
x3RNXalitnelvOdI6iPN12haO7KFcVih+xYm2D8An0UqY69NU5UBjmyjSqlng6S7
F62t8vsP1FWk0xgMeTyuhyan1h92c5vtqlA+R9c0r1rKQo30TyZjXV0TyeD6khVY
ZyrLc0mHNODsbA19VoSMU9jxhnaXOQPEZvxdiTZJa6WnI7/n8xlZJEqH35eOwaX2
n9KonGKCAolPoFhr5H1/dL5Yoy98rbG1q75j9C9NLFRcHPa1lnUpF2LWBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLrOMgQQ4zJ2jPakGvcjKC3KtZMvMB8GA1UdIwQY
MBaAFIu4thJyHU1MLQfL/i5JXphqDwJtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTdpMkVuSWRUVXd0Qjh2LUxrbGVtR29QQW0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi83MTkyYzItYTc4OC00ZjU2LWJlNmIt
YmI0OTNjNDZkZjNlLzEvaTdpMkVuSWRUVXd0Qjh2LUxrbGVtR29QQW0wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi83MTkyYzItYTc4OC00ZjU2LWJlNmItYmI0OTNjNDZkZjNl
LzEvaTdpMkVuSWRUVXd0Qjh2LUxrbGVtR29QQW0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY3WxUTFt
E9RIrVpBsaq5J5HDQ44GYIReysjE4kEixrlnVtBdWzMMchw1ZKETp58FlmRpgNrZ
iFwq/GOgQQGPq7hmquWh5ToqheERU3ANpaeevvqvZQSCYCemMVLARXhGusbyz+WL
6tJZmSQQqj96qRP2qmODXOgloKCVn/HEthzq139IQDDEZ6PRdSEvqJTLJC9DjzYd
R8ENxd68CQzmAjLwIWxYVHqydxu7+bYObTKZckIbNo9G9D/U+QP/O0UN03LdCVXA
sMDLDejOffcf7ORLklY3Lxo3t9BM8bSa/yK2dt0dbMjcqCPl/0BfEs5NeB+dPgcf
ZS8EkNPysAFFNQ==
-----END CERTIFICATE-----
Generated at Fri Apr 18 22:19:14 2025 by rpki-client