Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
File: iA2KtqoscvB5dV92zwEgql3dx98.mft (raw, json)
Hash identifier: oZQr0D+s8YuZqBifAa9FHBASDhNli1XZWNgmyvIS87U=
Subject key identifier: DE:6F:99:4A:80:43:68:C9:72:4D:70:91:E6:E3:64:59:B7:DA:8D:4E
Authority key identifier: 88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
Certificate issuer: /CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Certificate serial: 01974742F9831EE2C57C96D05A0FF84FF48D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
Manifest number: 0D5C
Signing time: Fri 06 Jun 2025 22:01:00 +0000
Manifest this update: Fri 06 Jun 2025 22:01:00 +0000
Manifest next update: Sat 07 Jun 2025 22:01:00 +0000
Files and hashes: 1: hi3FrnF-3jLI3lIxcnrMYtC-4ow.roa (hash: Hon+3addqQMzwZi2hE3IgLssZw3bA0MMDqOLsP3ZK0E=)
2: iA2KtqoscvB5dV92zwEgql3dx98.crl (hash: qlw8ZKHVIHGc5IroJpNucYOUaydK3kLCq8lhl82Hky8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:42:f9:83:1e:e2:c5:7c:96:d0:5a:0f:f8:4f:f4:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Validity
Not Before: Jun 6 22:01:00 2025 GMT
Not After : Jun 7 22:01:00 2025 GMT
Subject: CN=de6f994a804368c9724d7091e6e36459b7da8d4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:03:1d:e1:b0:8d:6c:fc:26:70:a7:96:e6:5a:
9d:c1:3b:ea:95:63:db:cc:35:46:a7:85:33:c6:01:
56:2e:57:0a:9f:28:84:b1:7a:97:2e:94:f5:3c:13:
00:e0:11:2d:c8:e7:aa:df:bb:74:04:be:29:3d:9b:
78:9d:dc:02:a1:45:15:a8:fd:81:ee:8a:f7:fa:a8:
c0:73:de:c2:b2:bd:46:83:52:64:47:ee:12:97:04:
aa:34:00:c2:46:62:12:fa:d3:4f:7c:30:ba:b0:13:
9b:d9:f9:c5:42:f2:5f:c5:9b:b3:ca:c7:00:d8:5a:
54:55:50:a5:15:49:a8:4d:51:f0:d4:53:13:59:4a:
80:0f:0a:a6:95:02:17:ae:4f:49:1d:84:f7:1c:43:
15:d0:6d:3f:bc:42:b4:5d:19:e7:e2:b4:77:d7:c9:
73:06:dd:eb:1e:26:71:0e:b8:49:74:c5:45:ce:6f:
dc:17:a5:54:33:a4:ed:21:e2:f6:f1:93:54:64:d4:
b6:09:b5:71:e4:e0:0d:24:e3:fa:f3:77:72:c4:8a:
d9:d2:d5:fb:22:d8:13:69:07:c6:f3:28:42:6b:97:
9e:02:c7:90:ee:88:51:95:04:47:f4:d2:75:ba:ba:
21:6b:9d:52:9a:72:e1:37:20:74:aa:24:26:96:a3:
30:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:6F:99:4A:80:43:68:C9:72:4D:70:91:E6:E3:64:59:B7:DA:8D:4E
X509v3 Authority Key Identifier:
keyid:88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:af:fc:95:0e:00:5f:97:75:1e:53:46:b5:db:bb:b2:13:64:
6b:4c:df:b2:f0:e0:e2:7c:20:f2:af:72:b5:f8:25:0a:ac:0d:
14:2f:ae:79:61:9d:a6:77:65:e6:74:50:95:31:36:41:de:3f:
d7:9d:e2:a7:6b:50:e1:a5:44:6b:73:20:3d:2e:cf:de:49:24:
9b:14:b0:65:6a:8b:4b:8f:52:11:16:6a:46:fa:d4:83:81:ca:
56:df:b1:e5:1f:85:fd:cd:e3:7b:09:a8:00:22:47:c2:dd:37:
02:eb:59:cd:c9:9f:1b:5e:4a:03:69:ac:97:99:53:45:c6:2b:
a9:6d:50:41:49:c6:d6:8a:4e:df:69:c6:c1:47:68:b3:52:1d:
76:c0:4a:29:d9:44:3e:99:49:03:d6:47:f1:fd:29:04:bb:ce:
6f:1f:05:d8:d3:7f:fa:56:cf:91:36:11:89:b0:5d:40:65:e4:
9f:03:a0:13:8d:f3:b2:8f:f4:7a:3d:b2:85:c0:66:6a:eb:c8:
30:e3:5b:9e:0e:0b:04:aa:86:14:14:5d:e8:bc:e4:de:6c:8d:
96:62:97:a5:08:a8:38:b8:86:68:af:cf:f8:4e:61:67:bc:d3:
66:f7:0d:a0:36:b0:d8:28:14:2d:7f:c6:62:05:64:ff:a6:05:
f4:c1:14:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdHQvmDHuLFfJbQWg/4T/SNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4MGQ4YWI2YWEyYzcyZjA3OTc1NWY3NmNmMDEyMGFhNWRk
ZGM3ZGYwHhcNMjUwNjA2MjIwMTAwWhcNMjUwNjA3MjIwMTAwWjAzMTEwLwYDVQQD
EyhkZTZmOTk0YTgwNDM2OGM5NzI0ZDcwOTFlNmUzNjQ1OWI3ZGE4ZDRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqwMd4bCNbPwmcKeW5lqdwTvqlWPb
zDVGp4UzxgFWLlcKnyiEsXqXLpT1PBMA4BEtyOeq37t0BL4pPZt4ndwCoUUVqP2B
7or3+qjAc97Csr1Gg1JkR+4SlwSqNADCRmIS+tNPfDC6sBOb2fnFQvJfxZuzyscA
2FpUVVClFUmoTVHw1FMTWUqADwqmlQIXrk9JHYT3HEMV0G0/vEK0XRnn4rR318lz
Bt3rHiZxDrhJdMVFzm/cF6VUM6TtIeL28ZNUZNS2CbVx5OANJOP683dyxIrZ0tX7
ItgTaQfG8yhCa5eeAseQ7ohRlQRH9NJ1uroha51SmnLhNyB0qiQmlqMwFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN5vmUqAQ2jJck1wkebjZFm32o1OMB8GA1UdIwQY
MBaAFIgNiraqLHLweXVfds8BIKpd3cffMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUEyS3Rxb3NjdkI1ZFY5Mnp3RWdxbDNkeDk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC9jODRjZDMtNjcyYi00NGIyLThjZTAt
NDAyODk0NzlhYzA1LzEvaUEyS3Rxb3NjdkI1ZFY5Mnp3RWdxbDNkeDk4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC9jODRjZDMtNjcyYi00NGIyLThjZTAtNDAyODk0NzlhYzA1
LzEvaUEyS3Rxb3NjdkI1ZFY5Mnp3RWdxbDNkeDk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZq/8lQ4A
X5d1HlNGtdu7shNka0zfsvDg4nwg8q9ytfglCqwNFC+ueWGdpndl5nRQlTE2Qd4/
153ip2tQ4aVEa3MgPS7P3kkkmxSwZWqLS49SERZqRvrUg4HKVt+x5R+F/c3jewmo
ACJHwt03AutZzcmfG15KA2msl5lTRcYrqW1QQUnG1opO32nGwUdos1IddsBKKdlE
PplJA9ZH8f0pBLvObx8F2NN/+lbPkTYRibBdQGXknwOgE43zso/0ej2yhcBmauvI
MONbng4LBKqGFBRd6Lzk3myNlmKXpQioOLiGaK/P+E5hZ7zTZvcNoDaw2CgULX/G
YgVk/6YF9MEUBg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:20:27 2025 by rpki-client