Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft
File: iAsPesuH0TTDhZ1y0NGmHkdRusA.mft (raw, json)
Hash identifier: HKaHh9y5Kpd2/61JCHkfIWdah2T+M9thllL7+Y233y0=
Subject key identifier: D6:72:FA:81:EA:31:98:06:F2:E3:4C:4A:58:9E:21:A3:DF:1C:EF:A6
Authority key identifier: 88:0B:0F:7A:CB:87:D1:34:C3:85:9D:72:D0:D1:A6:1E:47:51:BA:C0
Certificate issuer: /CN=880b0f7acb87d134c3859d72d0d1a61e4751bac0
Certificate serial: 0196B8917E523BF84EA00F4D1C1485761AAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iAsPesuH0TTDhZ1y0NGmHkdRusA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft
Manifest number: 0BDC
Signing time: Sat 10 May 2025 05:01:04 +0000
Manifest this update: Sat 10 May 2025 05:01:04 +0000
Manifest next update: Sun 11 May 2025 05:01:04 +0000
Files and hashes: 1: UubezK0uH4JLqxbhgPEY0N-6nSw.roa (hash: Oagl7z5x1jSe2CWCzxXuth3kqDf2dweMIxQL2+jadVg=)
2: iAsPesuH0TTDhZ1y0NGmHkdRusA.crl (hash: WouyE5cdpy6qPz29dG5f/iE+zsEH5DfilWHyNrYu7n4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iAsPesuH0TTDhZ1y0NGmHkdRusA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:91:7e:52:3b:f8:4e:a0:0f:4d:1c:14:85:76:1a:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880b0f7acb87d134c3859d72d0d1a61e4751bac0
Validity
Not Before: May 10 05:01:04 2025 GMT
Not After : May 11 05:01:04 2025 GMT
Subject: CN=d672fa81ea319806f2e34c4a589e21a3df1cefa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e8:27:54:5f:cc:cd:89:e3:36:b0:2a:8a:6f:
ad:e8:5b:76:86:ad:d7:e3:3a:f8:f7:5e:bf:a5:a0:
f4:98:6c:5f:43:44:b3:5e:49:1f:c9:d6:4f:cc:c3:
9e:03:e7:5d:ad:17:ec:eb:3b:c7:7b:b9:4f:3c:d6:
61:34:04:7a:99:4a:61:5f:de:a6:08:70:ac:38:82:
3b:d3:11:ac:27:37:8a:7e:33:22:97:4c:af:37:56:
de:0b:6a:5a:5a:e1:82:a4:dd:15:8a:2e:b5:78:de:
7b:eb:09:33:6e:5c:1a:8d:32:43:c5:b1:e9:e8:cc:
01:96:e3:4d:39:54:e1:05:e6:cb:49:27:59:26:f8:
83:73:dd:d1:cd:cb:ea:7a:6f:12:93:64:49:38:48:
da:9d:ca:e5:8f:87:c3:96:80:b9:5e:3a:bd:0d:57:
ba:c9:82:05:b2:3f:27:1d:40:20:53:6b:01:be:13:
95:8c:48:50:ab:76:86:81:d8:98:46:27:fd:b9:71:
52:1c:57:f8:88:78:b3:39:3a:39:de:ad:62:bd:58:
cc:64:e8:47:78:4d:1a:59:4d:98:5f:92:db:66:11:
28:cc:79:49:61:8f:1c:d0:f9:23:cb:e3:18:3a:34:
17:95:10:86:69:f9:c3:f7:9c:f9:17:73:de:8a:94:
28:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:72:FA:81:EA:31:98:06:F2:E3:4C:4A:58:9E:21:A3:DF:1C:EF:A6
X509v3 Authority Key Identifier:
keyid:88:0B:0F:7A:CB:87:D1:34:C3:85:9D:72:D0:D1:A6:1E:47:51:BA:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iAsPesuH0TTDhZ1y0NGmHkdRusA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:e5:cb:5f:96:1a:a0:b1:55:a7:c6:a1:de:e0:0a:08:20:50:
5b:83:51:0b:4a:96:9d:66:56:28:e4:62:a1:23:1e:3f:6d:47:
7b:4c:16:8d:c9:21:52:9f:e1:b4:a4:51:8d:06:6b:e2:a1:23:
4c:26:36:54:4d:1c:4c:3a:1e:d6:4f:27:98:b4:14:34:1e:86:
9d:ba:62:58:ba:9e:ca:55:4d:51:de:09:59:af:df:05:8b:0f:
ba:2a:e6:eb:0b:77:a1:e7:42:d2:1a:51:27:41:9e:5b:05:05:
72:92:00:62:8b:d7:60:b7:39:ea:23:2e:fa:4c:04:fa:41:c7:
f9:c7:dd:8e:4b:1c:c9:61:b3:7e:bf:23:f8:fb:7c:35:28:f6:
4e:2a:1c:64:6f:45:6d:32:37:66:7f:ca:60:ea:c2:55:99:e4:
e1:6d:92:3d:9c:9c:61:25:6e:c0:07:1d:52:ee:5a:9f:7d:c9:
72:7f:93:de:1d:9c:fe:df:03:c1:58:64:1b:f9:b7:ed:e4:f4:
83:2d:1b:c3:7f:29:b8:06:b0:f3:30:75:51:63:93:4e:e9:df:
2c:c6:08:0a:8a:d3:ce:b4:40:80:b6:38:a4:26:ee:70:e8:4b:
41:25:bb:dc:29:e2:90:11:fd:cd:0a:78:e0:04:06:8e:5d:e2:
9b:ea:cf:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa4kX5SO/hOoA9NHBSFdhqqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4MGIwZjdhY2I4N2QxMzRjMzg1OWQ3MmQwZDFhNjFlNDc1
MWJhYzAwHhcNMjUwNTEwMDUwMTA0WhcNMjUwNTExMDUwMTA0WjAzMTEwLwYDVQQD
EyhkNjcyZmE4MWVhMzE5ODA2ZjJlMzRjNGE1ODllMjFhM2RmMWNlZmE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi+gnVF/MzYnjNrAqim+t6Ft2hq3X
4zr4916/paD0mGxfQ0SzXkkfydZPzMOeA+ddrRfs6zvHe7lPPNZhNAR6mUphX96m
CHCsOII70xGsJzeKfjMil0yvN1beC2paWuGCpN0Vii61eN576wkzblwajTJDxbHp
6MwBluNNOVThBebLSSdZJviDc93Rzcvqem8Sk2RJOEjancrlj4fDloC5Xjq9DVe6
yYIFsj8nHUAgU2sBvhOVjEhQq3aGgdiYRif9uXFSHFf4iHizOTo53q1ivVjMZOhH
eE0aWU2YX5LbZhEozHlJYY8c0Pkjy+MYOjQXlRCGafnD95z5F3PeipQozwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNZy+oHqMZgG8uNMSlieIaPfHO+mMB8GA1UdIwQY
MBaAFIgLD3rLh9E0w4WdctDRph5HUbrAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUFzUGVzdUgwVFREaFoxeTBOR21Ia2RSdXNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi80NDVhNjYtYjc2Yi00YjQ4LWEwMmQt
YmMyODlhOTMxYjRiLzEvaUFzUGVzdUgwVFREaFoxeTBOR21Ia2RSdXNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi80NDVhNjYtYjc2Yi00YjQ4LWEwMmQtYmMyODlhOTMxYjRi
LzEvaUFzUGVzdUgwVFREaFoxeTBOR21Ia2RSdXNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAleXLX5Ya
oLFVp8ah3uAKCCBQW4NRC0qWnWZWKORioSMeP21He0wWjckhUp/htKRRjQZr4qEj
TCY2VE0cTDoe1k8nmLQUNB6GnbpiWLqeylVNUd4JWa/fBYsPuirm6wt3oedC0hpR
J0GeWwUFcpIAYovXYLc56iMu+kwE+kHH+cfdjkscyWGzfr8j+Pt8NSj2TiocZG9F
bTI3Zn/KYOrCVZnk4W2SPZycYSVuwAcdUu5an33Jcn+T3h2c/t8DwVhkG/m37eT0
gy0bw38puAaw8zB1UWOTTunfLMYICorTzrRAgLY4pCbucOhLQSW73CnikBH9zQp4
4AQGjl3im+rPFA==
-----END CERTIFICATE-----
Generated at Sat May 10 13:14:37 2025 by rpki-client