Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
File: iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft (raw, json)
Hash identifier: aY17TsvTU7RjSoNjxqYU7JF144JMiU37kLk3gz/oHfs=
Subject key identifier: 0F:56:15:2F:5A:BE:3D:EA:78:7A:2B:10:4E:87:2C:02:58:0B:60:E2
Authority key identifier: 88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
Certificate issuer: /CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Certificate serial: 0197B70EE0E83369D834A2883112B2977D6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
Manifest number: 045D
Signing time: Sat 28 Jun 2025 15:01:34 +0000
Manifest this update: Sat 28 Jun 2025 15:01:34 +0000
Manifest next update: Sun 29 Jun 2025 15:01:34 +0000
Files and hashes: 1: XBo1pVVrARNWOJzVGLIS7aXEyvs.roa (hash: LHmi+bbPW6X6RSAyxvQlIttnolx/pGqPJGLDRqAXVIU=)
2: iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl (hash: 9Ggz+McMiAsMnU1i2jWd1EPwRuoYscsf13+FfGylGd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:e0:e8:33:69:d8:34:a2:88:31:12:b2:97:7d:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Validity
Not Before: Jun 28 15:01:34 2025 GMT
Not After : Jun 29 15:01:34 2025 GMT
Subject: CN=0f56152f5abe3dea787a2b104e872c02580b60e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8a:23:1a:78:82:0b:90:03:f7:e6:23:0e:3c:
41:8a:69:fe:f5:b3:65:1d:e1:43:5c:c0:f4:c0:ef:
fb:ca:11:50:75:f6:39:4e:42:89:15:63:49:7b:19:
6f:f5:52:a6:3b:c9:3e:d8:2b:b0:2b:ae:9e:7e:8e:
10:d5:e8:9d:87:20:2f:74:c7:8b:47:b0:28:32:e8:
17:b3:98:60:ef:7d:0d:fb:64:0c:0f:d1:24:1c:1d:
4b:7a:6b:eb:dc:34:13:e1:6e:4e:aa:c7:ba:e2:14:
44:0d:12:ef:48:c5:63:4b:a6:56:96:69:20:c3:05:
1c:a1:7a:62:70:b6:a1:7b:fa:6c:f8:6a:d6:1c:7b:
4b:4c:fb:82:44:91:b3:e2:c4:4a:b9:07:dd:81:52:
e0:6a:01:6e:05:1a:2e:5c:f9:02:1d:47:f1:3c:0c:
50:df:b6:90:bd:67:c8:fd:41:0b:19:f9:8a:f1:2d:
aa:fe:79:76:c9:ae:a0:e5:a1:2b:45:10:2c:d1:ae:
9e:bd:0d:37:93:5e:3f:9c:24:6f:d8:d7:49:37:85:
84:23:22:87:de:25:88:51:47:ee:00:21:44:52:a1:
14:98:ce:cd:31:58:72:44:10:da:99:d6:a8:df:39:
18:c8:8c:9d:79:07:cb:f4:df:12:f2:ea:9c:37:ce:
6c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:56:15:2F:5A:BE:3D:EA:78:7A:2B:10:4E:87:2C:02:58:0B:60:E2
X509v3 Authority Key Identifier:
keyid:88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:bd:96:53:e7:74:15:5f:b5:c3:23:4b:e5:22:4c:69:19:53:
82:89:03:81:da:72:ab:1c:12:d4:79:a7:e6:c0:cf:0e:1a:c2:
17:0a:e3:19:4e:43:71:38:3e:1c:45:b6:f6:ee:ca:9d:68:21:
69:52:1e:6c:8d:81:be:2d:b5:75:9d:d4:7c:02:4f:a0:92:77:
2d:44:50:57:2f:9e:9d:d5:79:05:8d:46:d3:9b:57:cd:93:bd:
04:bb:c8:1c:a5:3b:6e:52:1f:a4:a0:21:9b:83:84:0c:2b:af:
76:95:07:f6:f1:75:e9:e3:ef:71:5d:08:f9:ce:60:78:3d:2f:
7f:1d:73:01:37:07:fe:0d:31:d9:e3:f7:f8:4b:35:cb:35:85:
de:d0:8f:29:f2:2a:ab:e8:74:56:e2:47:eb:22:23:ab:21:8f:
43:ff:40:83:ac:34:0b:1c:17:72:b9:6b:31:a3:b5:f4:a1:f2:
ef:b4:48:ff:56:9d:7d:5c:60:be:7a:63:d5:7f:da:33:2e:c3:
24:0d:ff:32:38:5a:81:8b:e0:f9:ff:8b:c1:31:b7:61:af:69:
d8:a8:b1:17:57:86:bf:45:fa:64:72:f9:fd:8b:59:a8:ed:af:
20:f6:bb:c2:39:cc:89:ba:04:70:7a:47:4d:ef:23:a4:74:6a:
6a:19:e6:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DuDoM2nYNKKIMRKyl31qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ZjdiMGRkOWZmY2EyZjg1NzM0YzUzN2NiZWY1Y2NkMTE5
OWU1YmMwHhcNMjUwNjI4MTUwMTM0WhcNMjUwNjI5MTUwMTM0WjAzMTEwLwYDVQQD
EygwZjU2MTUyZjVhYmUzZGVhNzg3YTJiMTA0ZTg3MmMwMjU4MGI2MGUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4ojGniCC5AD9+YjDjxBimn+9bNl
HeFDXMD0wO/7yhFQdfY5TkKJFWNJexlv9VKmO8k+2CuwK66efo4Q1eidhyAvdMeL
R7AoMugXs5hg730N+2QMD9EkHB1Lemvr3DQT4W5Oqse64hREDRLvSMVjS6ZWlmkg
wwUcoXpicLahe/ps+GrWHHtLTPuCRJGz4sRKuQfdgVLgagFuBRouXPkCHUfxPAxQ
37aQvWfI/UELGfmK8S2q/nl2ya6g5aErRRAs0a6evQ03k14/nCRv2NdJN4WEIyKH
3iWIUUfuACFEUqEUmM7NMVhyRBDamdao3zkYyIydeQfL9N8S8uqcN85suwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA9WFS9avj3qeHorEE6HLAJYC2DiMB8GA1UdIwQY
MBaAFIj3sN2f/KL4VzTFN8vvXM0RmeW8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9kYzhjMDItNGY2ZC00OWY2LTg4MmMt
MTM2OTA1ZTJjN2M1LzEvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9kYzhjMDItNGY2ZC00OWY2LTg4MmMtMTM2OTA1ZTJjN2M1
LzEvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAML2WU+d0
FV+1wyNL5SJMaRlTgokDgdpyqxwS1Hmn5sDPDhrCFwrjGU5DcTg+HEW29u7KnWgh
aVIebI2Bvi21dZ3UfAJPoJJ3LURQVy+endV5BY1G05tXzZO9BLvIHKU7blIfpKAh
m4OEDCuvdpUH9vF16ePvcV0I+c5geD0vfx1zATcH/g0x2eP3+Es1yzWF3tCPKfIq
q+h0VuJH6yIjqyGPQ/9Ag6w0CxwXcrlrMaO19KHy77RI/1adfVxgvnpj1X/aMy7D
JA3/MjhagYvg+f+LwTG3Ya9p2KixF1eGv0X6ZHL5/YtZqO2vIPa7wjnMiboEcHpH
Te8jpHRqahnmlw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:50:18 2025 by rpki-client