Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft
File: IMz236cJVzqCG2PEy2lWBf0maAs.mft (raw, json)
Hash identifier: iWlyue5sOU8lCSN0PhGfV3r5qo8gLu83wxApYnH6B8E=
Subject key identifier: 5F:E4:4D:9D:28:5B:63:EF:ED:26:AF:8B:54:32:11:DD:EA:E3:FD:28
Authority key identifier: 20:CC:F6:DF:A7:09:57:3A:82:1B:63:C4:CB:69:56:05:FD:26:68:0B
Certificate issuer: /CN=20ccf6dfa709573a821b63c4cb695605fd26680b
Certificate serial: 0196B66BD9DAE53A215A09294E4BDCF6D1CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMz236cJVzqCG2PEy2lWBf0maAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft
Manifest number: 0236
Signing time: Fri 09 May 2025 19:00:43 +0000
Manifest this update: Fri 09 May 2025 19:00:43 +0000
Manifest next update: Sat 10 May 2025 19:00:43 +0000
Files and hashes: 1: 1-tKbN_ZmYZYPg8sHqensWcGTVVs.roa (hash: v2ZLz9fyZwTDL0Z+q25hZRbM8e9XXUUL53LO8fbkuEw=)
2: IMz236cJVzqCG2PEy2lWBf0maAs.crl (hash: wj4JdDVANF33sB/ebXElqVLklzsKHjSgTS9nsOYSZ7w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/IMz236cJVzqCG2PEy2lWBf0maAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 17:53:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b6:6b:d9:da:e5:3a:21:5a:09:29:4e:4b:dc:f6:d1:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20ccf6dfa709573a821b63c4cb695605fd26680b
Validity
Not Before: May 9 19:00:43 2025 GMT
Not After : May 10 19:00:43 2025 GMT
Subject: CN=5fe44d9d285b63efed26af8b543211ddeae3fd28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:bb:df:2a:89:70:cf:91:3f:f6:80:ee:45:6e:
81:2f:66:a9:cc:c6:1a:b0:01:7d:41:32:c0:3e:ff:
9e:6c:2b:2b:87:f7:f4:38:2c:20:50:5c:dd:62:05:
ad:ee:e3:0e:fb:f3:3f:c4:7d:97:4d:e0:40:ef:44:
11:69:78:89:1a:46:78:c9:0d:3e:99:df:38:a2:1b:
5b:df:46:7e:61:52:10:b3:6d:62:8b:c6:34:41:1f:
ae:21:61:37:95:f0:c0:bb:d9:0d:c9:0e:84:4c:37:
02:97:0b:84:40:e0:aa:b6:48:fa:9a:e0:f7:44:74:
12:e3:3c:31:cc:f9:d4:4c:48:1f:60:60:a7:3b:0d:
24:d4:91:a5:a3:83:1d:3a:7c:7d:74:3a:d4:b5:c6:
59:66:e2:be:a4:d7:35:15:73:1f:ed:18:61:e4:03:
db:46:f7:47:81:14:78:56:96:49:92:72:79:31:87:
b1:22:a8:2d:2e:a8:2f:61:27:d0:77:7d:70:d9:26:
9d:31:d4:c5:21:a2:54:04:7f:81:d1:13:67:b5:17:
ba:63:ef:0a:c2:42:bc:7b:35:53:79:ea:fb:80:15:
3a:f8:4d:f8:56:6d:54:36:d1:be:df:d5:76:01:65:
6a:d0:e7:ae:3b:16:89:d5:27:29:55:c9:8b:80:e4:
21:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:E4:4D:9D:28:5B:63:EF:ED:26:AF:8B:54:32:11:DD:EA:E3:FD:28
X509v3 Authority Key Identifier:
keyid:20:CC:F6:DF:A7:09:57:3A:82:1B:63:C4:CB:69:56:05:FD:26:68:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMz236cJVzqCG2PEy2lWBf0maAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:ca:de:1e:2f:48:f2:6e:5e:27:85:a3:d9:5b:a0:67:42:9e:
60:6e:6f:be:58:61:2d:a7:95:04:1f:db:f6:6d:50:15:f0:d4:
cb:a4:b3:57:a4:67:39:13:a1:ab:fb:b1:54:59:65:53:b2:0f:
2b:bc:fb:de:09:46:d7:04:8e:03:d7:d9:32:65:d2:c5:49:6a:
ed:8f:04:da:14:45:f6:80:10:f7:4e:48:38:e0:99:f2:90:51:
f2:f0:18:25:44:aa:10:d2:b2:c4:a1:d8:54:08:1c:95:71:35:
b7:60:7a:8c:bb:97:03:17:0c:04:54:4a:5a:81:20:96:23:27:
92:88:d1:7c:6c:52:40:19:6d:16:49:22:f4:da:d3:7a:9d:06:
1b:11:61:7e:f6:e6:56:83:32:46:21:71:9e:1c:b7:1f:82:5c:
26:2c:3f:3e:c7:7d:1a:34:d7:ee:97:dd:2b:09:39:38:76:19:
ae:11:3e:81:57:e8:24:1f:f5:53:70:01:d8:08:32:2b:1d:f7:
03:cb:fc:22:13:3b:ef:95:bd:c0:d5:6d:ff:ba:c3:50:c5:8f:
6d:25:09:f9:09:91:45:19:45:20:df:75:69:b7:b1:ad:39:d9:
07:50:37:a6:72:ce:d3:22:d8:8f:e6:81:62:ca:a0:61:c9:a3:
2d:ef:bb:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa2a9na5TohWgkpTkvc9tHNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwY2NmNmRmYTcwOTU3M2E4MjFiNjNjNGNiNjk1NjA1ZmQy
NjY4MGIwHhcNMjUwNTA5MTkwMDQzWhcNMjUwNTEwMTkwMDQzWjAzMTEwLwYDVQQD
Eyg1ZmU0NGQ5ZDI4NWI2M2VmZWQyNmFmOGI1NDMyMTFkZGVhZTNmZDI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bvfKolwz5E/9oDuRW6BL2apzMYa
sAF9QTLAPv+ebCsrh/f0OCwgUFzdYgWt7uMO+/M/xH2XTeBA70QRaXiJGkZ4yQ0+
md84ohtb30Z+YVIQs21ii8Y0QR+uIWE3lfDAu9kNyQ6ETDcClwuEQOCqtkj6muD3
RHQS4zwxzPnUTEgfYGCnOw0k1JGlo4MdOnx9dDrUtcZZZuK+pNc1FXMf7Rhh5APb
RvdHgRR4VpZJknJ5MYexIqgtLqgvYSfQd31w2SadMdTFIaJUBH+B0RNntRe6Y+8K
wkK8ezVTeer7gBU6+E34Vm1UNtG+39V2AWVq0OeuOxaJ1ScpVcmLgOQhRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF/kTZ0oW2Pv7Savi1QyEd3q4/0oMB8GA1UdIwQY
MBaAFCDM9t+nCVc6ghtjxMtpVgX9JmgLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSU16MjM2Y0pWenFDRzJQRXkybFdCZjBtYUFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8xOTI2OWMtOWQ1Yi00ZjA5LTk3ZWIt
M2EyOGY4YTljNzA3LzEvSU16MjM2Y0pWenFDRzJQRXkybFdCZjBtYUFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi8xOTI2OWMtOWQ1Yi00ZjA5LTk3ZWItM2EyOGY4YTljNzA3
LzEvSU16MjM2Y0pWenFDRzJQRXkybFdCZjBtYUFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT8reHi9I
8m5eJ4Wj2VugZ0KeYG5vvlhhLaeVBB/b9m1QFfDUy6SzV6RnOROhq/uxVFllU7IP
K7z73glG1wSOA9fZMmXSxUlq7Y8E2hRF9oAQ905IOOCZ8pBR8vAYJUSqENKyxKHY
VAgclXE1t2B6jLuXAxcMBFRKWoEgliMnkojRfGxSQBltFkki9NrTep0GGxFhfvbm
VoMyRiFxnhy3H4JcJiw/Psd9GjTX7pfdKwk5OHYZrhE+gVfoJB/1U3AB2AgyKx33
A8v8IhM775W9wNVt/7rDUMWPbSUJ+QmRRRlFIN91abexrTnZB1A3pnLO0yLYj+aB
YsqgYcmjLe+7kA==
-----END CERTIFICATE-----
Generated at Fri May 9 20:44:43 2025 by rpki-client