Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.mft
File: S-iWpBlThdS5S3KVmIzPv6ismcU.mft (raw, json)
Hash identifier: tOqnDMEqD7ez9yN2j1Qk2zz8ObgNPQ0rhN/EKvpqEhQ=
Subject key identifier: D1:43:5D:59:E5:C3:53:1A:51:37:86:79:31:6A:CC:4A:47:B8:67:DB
Authority key identifier: 4B:E8:96:A4:19:53:85:D4:B9:4B:72:95:98:8C:CF:BF:A8:AC:99:C5
Certificate issuer: /CN=4be896a4195385d4b94b7295988ccfbfa8ac99c5
Certificate serial: 0196A0BF4E1477EF0C82E5314E126ABD9D91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S-iWpBlThdS5S3KVmIzPv6ismcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.mft
Manifest number: 0BB9
Signing time: Mon 05 May 2025 14:00:13 +0000
Manifest this update: Mon 05 May 2025 14:00:13 +0000
Manifest next update: Tue 06 May 2025 14:00:13 +0000
Files and hashes: 1: 6KASjwCz7ilKa_zbYR8rA5RUBrc.roa (hash: T4+QVQXXLI7KFzCBe08m6pD6fADi9vWJFsV+O2tzwnA=)
2: S-iWpBlThdS5S3KVmIzPv6ismcU.crl (hash: 206l6ZZymgaZSkZLOmBKhTh63wTihgnNJo3m5OklfdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S-iWpBlThdS5S3KVmIzPv6ismcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 14:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:bf:4e:14:77:ef:0c:82:e5:31:4e:12:6a:bd:9d:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4be896a4195385d4b94b7295988ccfbfa8ac99c5
Validity
Not Before: May 5 14:00:13 2025 GMT
Not After : May 6 14:00:13 2025 GMT
Subject: CN=d1435d59e5c3531a51378679316acc4a47b867db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c6:5c:e0:0c:cd:b4:3b:e8:30:04:fe:bc:6d:
2f:54:18:29:f8:14:15:cb:32:a4:69:9f:f3:0f:5c:
17:7c:17:14:02:67:9b:79:07:83:cc:06:f8:c0:e8:
ec:62:97:76:38:14:60:2c:19:59:5f:ca:58:f3:f8:
c0:1f:1a:95:10:8f:c2:a4:4c:74:a6:d8:f2:66:b2:
3d:78:57:ba:cb:d2:ea:05:5f:0f:1c:f9:18:8c:ba:
75:3b:e2:98:24:00:67:de:95:f2:c2:f6:71:4b:53:
5d:92:f5:78:1b:ea:89:42:df:e4:74:b9:6f:63:e8:
0c:45:23:6a:73:e8:64:8f:14:8b:ef:50:db:40:2b:
7f:5e:13:0a:8c:40:f6:1a:41:63:88:b2:fc:b9:9f:
45:51:ce:3a:2c:62:c2:1b:ba:b7:33:39:a2:67:22:
0b:fc:35:1a:53:49:4d:39:bf:97:3c:c0:83:5c:13:
25:c5:0f:22:8d:fb:b4:f0:4b:2d:92:f8:d7:74:4d:
dc:ff:83:2b:3c:41:c4:b0:55:b3:07:e9:79:17:48:
a8:7d:24:84:10:7e:84:c8:f4:26:1d:d0:c8:92:23:
fd:f6:e1:fa:99:dd:d7:ca:f4:62:54:d1:64:d8:58:
2d:11:f1:a7:f9:a0:66:a2:dd:c8:00:ac:d3:d1:33:
ef:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:43:5D:59:E5:C3:53:1A:51:37:86:79:31:6A:CC:4A:47:B8:67:DB
X509v3 Authority Key Identifier:
keyid:4B:E8:96:A4:19:53:85:D4:B9:4B:72:95:98:8C:CF:BF:A8:AC:99:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S-iWpBlThdS5S3KVmIzPv6ismcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:b5:87:28:d5:6d:ac:f4:a8:fd:ef:fe:2d:8e:f1:d2:a0:43:
80:fc:3c:a7:14:ff:c5:87:f9:a3:7e:48:3f:b4:2f:90:5d:d2:
6f:23:1b:26:e6:7b:49:ae:9a:19:ab:b4:e4:d6:c5:b9:70:31:
dc:22:b3:fa:1e:9f:79:33:70:ff:86:be:9c:1e:35:d9:ff:f6:
f3:7f:d7:e9:65:54:6d:e0:d9:cf:eb:b5:b3:2a:f4:5d:7b:66:
72:d4:b9:a9:9d:24:cc:09:fd:9a:2f:2f:92:46:2f:ac:a3:72:
90:6f:4c:b8:85:ab:0d:f3:b3:1a:5d:8c:ed:68:30:93:7e:09:
22:ca:61:e5:f7:a6:28:a0:bd:a9:c7:f6:05:b0:b2:fe:a8:5d:
60:14:44:d4:75:25:28:60:a8:b4:72:08:ff:51:ae:36:ca:4b:
16:27:62:5a:9b:ca:59:51:67:46:ce:fd:58:bc:00:7b:03:68:
5c:da:bd:24:28:9c:5c:52:14:de:b5:8c:1b:e3:11:9f:21:bc:
d0:67:c4:81:41:6d:5f:99:1f:0a:1e:4d:06:6e:f4:b9:26:87:
b6:0c:07:cb:f1:6c:a5:26:8e:33:d6:e6:05:bb:e4:1b:60:ed:
46:3c:41:a9:8e:ed:10:92:bd:68:be:2d:10:12:f5:b5:cc:07:
cb:59:56:5d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZagv04Ud+8MguUxThJqvZ2RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiZTg5NmE0MTk1Mzg1ZDRiOTRiNzI5NTk4OGNjZmJmYThh
Yzk5YzUwHhcNMjUwNTA1MTQwMDEzWhcNMjUwNTA2MTQwMDEzWjAzMTEwLwYDVQQD
EyhkMTQzNWQ1OWU1YzM1MzFhNTEzNzg2NzkzMTZhY2M0YTQ3Yjg2N2RiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMZc4AzNtDvoMAT+vG0vVBgp+BQV
yzKkaZ/zD1wXfBcUAmebeQeDzAb4wOjsYpd2OBRgLBlZX8pY8/jAHxqVEI/CpEx0
ptjyZrI9eFe6y9LqBV8PHPkYjLp1O+KYJABn3pXywvZxS1NdkvV4G+qJQt/kdLlv
Y+gMRSNqc+hkjxSL71DbQCt/XhMKjED2GkFjiLL8uZ9FUc46LGLCG7q3MzmiZyIL
/DUaU0lNOb+XPMCDXBMlxQ8ijfu08EstkvjXdE3c/4MrPEHEsFWzB+l5F0iofSSE
EH6EyPQmHdDIkiP99uH6md3XyvRiVNFk2FgtEfGn+aBmot3IAKzT0TPvpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNFDXVnlw1MaUTeGeTFqzEpHuGfbMB8GA1UdIwQY
MBaAFEvolqQZU4XUuUtylZiMz7+orJnFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUy1pV3BCbFRoZFM1UzNLVm1JelB2NmlzbWNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS83YTEzZWUtYjczMS00ZmY5LWJlZjAt
NGIxNTgxZjA5ZDNiLzEvUy1pV3BCbFRoZFM1UzNLVm1JelB2NmlzbWNVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS83YTEzZWUtYjczMS00ZmY5LWJlZjAtNGIxNTgxZjA5ZDNi
LzEvUy1pV3BCbFRoZFM1UzNLVm1JelB2NmlzbWNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqbWHKNVt
rPSo/e/+LY7x0qBDgPw8pxT/xYf5o35IP7QvkF3SbyMbJuZ7Sa6aGau05NbFuXAx
3CKz+h6feTNw/4a+nB412f/283/X6WVUbeDZz+u1syr0XXtmctS5qZ0kzAn9mi8v
kkYvrKNykG9MuIWrDfOzGl2M7Wgwk34JIsph5femKKC9qcf2BbCy/qhdYBRE1HUl
KGCotHII/1GuNspLFidiWpvKWVFnRs79WLwAewNoXNq9JCicXFIU3rWMG+MRnyG8
0GfEgUFtX5kfCh5NBm70uSaHtgwHy/FspSaOM9bmBbvkG2DtRjxBqY7tEJK9aL4t
EBL1tcwHy1lWXQ==
-----END CERTIFICATE-----
Generated at Mon May 5 21:55:51 2025 by rpki-client