Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
File: iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft (raw, json)
Hash identifier: kIjcPDsBDNarcu5fImzoNwac6dgk/+xwTJm28wi638M=
Subject key identifier: 15:26:E8:17:DE:CD:C1:0D:A9:96:F9:D2:6D:3F:F5:80:14:14:9C:24
Authority key identifier: 88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
Certificate issuer: /CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Certificate serial: 0196B8236C9E4F5FD6082694FABE08D902B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
Manifest number: 03D9
Signing time: Sat 10 May 2025 03:00:51 +0000
Manifest this update: Sat 10 May 2025 03:00:51 +0000
Manifest next update: Sun 11 May 2025 03:00:51 +0000
Files and hashes: 1: XBo1pVVrARNWOJzVGLIS7aXEyvs.roa (hash: LHmi+bbPW6X6RSAyxvQlIttnolx/pGqPJGLDRqAXVIU=)
2: iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl (hash: Chq5yRiaaxlGGEORJo281AdVIAn8dLElnm3+mzvaUpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 03:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:23:6c:9e:4f:5f:d6:08:26:94:fa:be:08:d9:02:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Validity
Not Before: May 10 03:00:51 2025 GMT
Not After : May 11 03:00:51 2025 GMT
Subject: CN=1526e817decdc10da996f9d26d3ff58014149c24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fd:8a:cf:9f:d4:0d:f5:da:6b:04:4c:56:fb:
ab:7b:9b:60:c7:ed:c1:3b:0d:78:88:7a:32:13:86:
3c:39:8c:7b:3b:db:80:24:08:37:a9:02:b3:4b:2e:
c1:fe:d3:cc:37:cd:2c:e8:8d:0a:9a:21:b8:b9:cb:
ee:d9:d5:1e:ae:a1:d7:e0:04:96:35:80:2b:c4:87:
58:84:2a:9e:d9:fa:65:ec:db:bc:5e:52:04:fa:30:
df:ff:44:3a:3b:f7:6a:cb:fa:ee:5d:4a:48:13:3a:
3c:be:49:a4:1b:6a:46:12:75:c8:e0:5a:a8:fe:a2:
37:dd:8f:42:5c:44:35:29:b3:97:15:67:00:78:5d:
08:7f:cc:b1:c2:9a:ad:49:a3:54:53:c9:4a:36:3f:
05:ea:8d:10:1f:75:5d:52:eb:1b:d9:5b:4a:86:46:
b7:de:79:df:5d:9a:74:bb:c4:5a:b5:6e:e2:eb:ef:
ff:fd:df:a7:4c:23:2b:fe:20:79:62:bf:8e:ef:35:
b1:dc:12:a9:16:30:41:b6:ac:a3:84:0a:69:0e:16:
25:e8:f7:07:b3:a0:38:7d:61:fa:49:60:34:af:01:
00:a3:b2:45:02:f2:1f:92:fd:04:e3:bc:1a:96:ee:
8c:d0:f1:fe:fc:75:e1:db:24:cc:0d:31:63:ff:d9:
a2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:26:E8:17:DE:CD:C1:0D:A9:96:F9:D2:6D:3F:F5:80:14:14:9C:24
X509v3 Authority Key Identifier:
keyid:88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:77:e0:ac:57:ba:84:c7:e7:ba:b7:76:e6:c2:42:31:62:f5:
c3:37:eb:fc:29:fe:78:a4:4e:14:58:a2:47:13:a0:9b:30:68:
fe:a4:8b:8c:e5:0d:0a:39:a1:19:d7:5e:77:ce:06:0e:1a:c8:
f7:b6:79:ad:e4:11:b4:7a:60:89:d9:f4:19:47:d6:41:4c:2f:
99:b5:8d:0d:3b:d2:f0:d3:e8:64:5a:a7:37:a9:d9:56:ce:a3:
82:2e:e9:38:aa:cf:f5:ae:42:07:7d:32:e8:af:63:02:b3:d5:
59:ad:0a:b1:d4:e9:ba:55:b8:bd:27:e0:6d:f4:64:53:fb:42:
1f:97:c1:8d:f5:b9:3a:c9:54:07:c4:a9:1f:2f:9e:96:23:e3:
8f:b9:5c:88:b1:4c:19:7d:ef:05:00:11:94:7e:9f:d8:7f:f8:
2b:b5:73:53:1c:4b:e2:4e:f4:ac:40:1e:86:74:bf:6a:3d:c7:
0c:43:92:5b:64:de:53:02:94:89:bf:37:4c:a0:9b:8f:af:80:
19:ef:c6:b0:1f:a9:04:bd:1a:53:c5:70:92:98:e0:7a:11:4c:
97:d9:ce:95:36:b1:47:0c:d2:dc:4e:f2:2f:d4:29:49:dd:00:
70:74:1c:5e:87:22:3e:c3:27:b0:63:26:8e:26:b6:ff:5e:2b:
22:30:f9:15
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa4I2yeT1/WCCaU+r4I2QK5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ZjdiMGRkOWZmY2EyZjg1NzM0YzUzN2NiZWY1Y2NkMTE5
OWU1YmMwHhcNMjUwNTEwMDMwMDUxWhcNMjUwNTExMDMwMDUxWjAzMTEwLwYDVQQD
EygxNTI2ZTgxN2RlY2RjMTBkYTk5NmY5ZDI2ZDNmZjU4MDE0MTQ5YzI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/2Kz5/UDfXaawRMVvure5tgx+3B
Ow14iHoyE4Y8OYx7O9uAJAg3qQKzSy7B/tPMN80s6I0KmiG4ucvu2dUerqHX4ASW
NYArxIdYhCqe2fpl7Nu8XlIE+jDf/0Q6O/dqy/ruXUpIEzo8vkmkG2pGEnXI4Fqo
/qI33Y9CXEQ1KbOXFWcAeF0If8yxwpqtSaNUU8lKNj8F6o0QH3VdUusb2VtKhka3
3nnfXZp0u8RatW7i6+///d+nTCMr/iB5Yr+O7zWx3BKpFjBBtqyjhAppDhYl6PcH
s6A4fWH6SWA0rwEAo7JFAvIfkv0E47walu6M0PH+/HXh2yTMDTFj/9miRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBUm6BfezcENqZb50m0/9YAUFJwkMB8GA1UdIwQY
MBaAFIj3sN2f/KL4VzTFN8vvXM0RmeW8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9kYzhjMDItNGY2ZC00OWY2LTg4MmMt
MTM2OTA1ZTJjN2M1LzEvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9kYzhjMDItNGY2ZC00OWY2LTg4MmMtMTM2OTA1ZTJjN2M1
LzEvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnXfgrFe6
hMfnurd25sJCMWL1wzfr/Cn+eKROFFiiRxOgmzBo/qSLjOUNCjmhGdded84GDhrI
97Z5reQRtHpgidn0GUfWQUwvmbWNDTvS8NPoZFqnN6nZVs6jgi7pOKrP9a5CB30y
6K9jArPVWa0KsdTpulW4vSfgbfRkU/tCH5fBjfW5OslUB8SpHy+eliPjj7lciLFM
GX3vBQARlH6f2H/4K7VzUxxL4k70rEAehnS/aj3HDEOSW2TeUwKUib83TKCbj6+A
Ge/GsB+pBL0aU8VwkpjgehFMl9nOlTaxRwzS3E7yL9QpSd0AcHQcXociPsMnsGMm
jia2/14rIjD5FQ==
-----END CERTIFICATE-----
Generated at Sat May 10 08:19:31 2025 by rpki-client