Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
File: immKFPthpoevCmP3xlXAAfZwEoI.mft (raw, json)
Hash identifier: +1v+wgZCMlwJsdSRlPI23+8vB0a+cXuWW5qLLjTAN+w=
Subject key identifier: 82:26:C2:D6:BA:BF:F0:B3:6B:0F:F2:F3:E6:BF:7D:84:63:70:B4:E9
Authority key identifier: 8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
Certificate issuer: /CN=8a698a14fb61a687af0a63f7c655c001f6701282
Certificate serial: 0196CA299C734C08C93E58FE105724326C0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
Manifest number: 02D4
Signing time: Tue 13 May 2025 15:00:46 +0000
Manifest this update: Tue 13 May 2025 15:00:46 +0000
Manifest next update: Wed 14 May 2025 15:00:46 +0000
Files and hashes: 1: P1m93kQnbl9hCPZ7gjvBSz2QduY.roa (hash: Vw3jwkUFPb+4FTO/pTKFTwQSjK1reP+BMicWKiuZXfs=)
2: immKFPthpoevCmP3xlXAAfZwEoI.crl (hash: /WYqaGELQHhSoLWJJCu9i8ktsNRga+5jVVbVxkANKKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ca:29:9c:73:4c:08:c9:3e:58:fe:10:57:24:32:6c:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a698a14fb61a687af0a63f7c655c001f6701282
Validity
Not Before: May 13 15:00:46 2025 GMT
Not After : May 14 15:00:46 2025 GMT
Subject: CN=8226c2d6babff0b36b0ff2f3e6bf7d846370b4e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:37:a1:de:6a:9b:63:1f:9c:18:4a:d1:bc:e3:
3a:cd:45:79:a1:82:2d:4f:bb:da:42:0b:37:62:83:
d5:eb:56:56:b2:b0:aa:96:97:76:12:3d:9d:00:fa:
2d:95:a5:b9:59:ac:12:49:09:2c:1c:98:79:43:d5:
58:92:f6:a6:1b:d4:41:28:2a:ed:a9:e9:65:ed:da:
28:86:ee:27:75:b0:21:23:11:fd:ee:f0:19:83:9d:
fb:25:b0:ab:db:d1:e6:b1:52:31:88:07:18:89:27:
b7:b4:bc:d7:20:10:69:7c:17:d4:47:79:43:65:bd:
5a:75:4f:a4:d3:d2:d1:f7:0b:da:d1:b5:89:6c:18:
6a:d3:1a:a7:e0:8b:19:fb:f3:e3:91:f9:9e:94:57:
eb:45:b5:88:d8:12:f2:22:1a:85:b5:6a:c9:0f:d6:
f3:c3:53:e4:21:f5:5f:b8:bb:ea:63:3c:43:0c:26:
3e:71:69:43:14:40:fa:78:64:6b:c5:73:95:3a:ab:
79:35:80:4e:7a:d8:24:c7:8d:a0:16:ec:47:3b:2e:
e5:78:43:47:97:b6:74:e8:ae:ff:2b:f4:01:42:d9:
a8:dd:5d:c1:e7:cc:a2:5a:d2:89:84:92:16:45:44:
fe:19:74:52:aa:f7:45:a3:17:97:89:a2:7c:9e:98:
b4:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:26:C2:D6:BA:BF:F0:B3:6B:0F:F2:F3:E6:BF:7D:84:63:70:B4:E9
X509v3 Authority Key Identifier:
keyid:8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:2a:53:44:f1:fc:7f:fd:48:d0:3e:f7:2b:8e:f1:0e:57:24:
eb:ea:20:47:c5:9a:3e:a3:51:fa:e2:de:11:7d:07:6c:9e:0a:
78:f9:b7:ed:ec:19:09:8e:c6:a6:dd:71:4a:9f:8a:b4:cf:a1:
04:6d:aa:d0:7b:78:75:f2:86:39:65:5e:33:98:df:1c:7c:5c:
ae:73:4c:c4:94:33:15:f9:df:d2:f6:4f:69:61:c3:33:35:47:
b5:fa:3c:19:12:d9:27:80:ea:9e:2b:37:34:44:20:b2:cf:2a:
16:83:a3:6a:b6:03:36:8a:12:65:51:f3:1e:be:ce:1e:92:12:
3b:eb:dc:95:0e:f4:5d:f1:6c:5c:1a:d7:31:24:83:d2:00:d0:
75:5a:f4:2c:bc:5a:1e:78:b8:07:57:8f:6f:38:ae:a5:62:0c:
75:71:a1:3c:27:fd:97:6b:ea:46:00:37:35:9b:fe:52:82:e2:
dd:b3:a5:fb:a1:35:60:ee:70:26:a8:c0:a3:3c:24:04:da:af:
f1:0b:4d:52:a0:d7:61:22:62:d5:2e:a2:8d:99:b0:b8:20:fd:
98:12:73:f5:5c:d0:05:1a:9f:4f:bb:7f:35:8b:da:65:02:30:
65:af:03:42:1b:88:a6:9b:7c:38:b5:6f:d8:5d:00:1c:98:16:
2b:a1:06:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbKKZxzTAjJPlj+EFckMmwLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhNjk4YTE0ZmI2MWE2ODdhZjBhNjNmN2M2NTVjMDAxZjY3
MDEyODIwHhcNMjUwNTEzMTUwMDQ2WhcNMjUwNTE0MTUwMDQ2WjAzMTEwLwYDVQQD
Eyg4MjI2YzJkNmJhYmZmMGIzNmIwZmYyZjNlNmJmN2Q4NDYzNzBiNGU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/Deh3mqbYx+cGErRvOM6zUV5oYIt
T7vaQgs3YoPV61ZWsrCqlpd2Ej2dAPotlaW5WawSSQksHJh5Q9VYkvamG9RBKCrt
qell7doohu4ndbAhIxH97vAZg537JbCr29HmsVIxiAcYiSe3tLzXIBBpfBfUR3lD
Zb1adU+k09LR9wva0bWJbBhq0xqn4IsZ+/PjkfmelFfrRbWI2BLyIhqFtWrJD9bz
w1PkIfVfuLvqYzxDDCY+cWlDFED6eGRrxXOVOqt5NYBOetgkx42gFuxHOy7leENH
l7Z06K7/K/QBQtmo3V3B58yiWtKJhJIWRUT+GXRSqvdFoxeXiaJ8npi0iQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIImwta6v/Czaw/y8+a/fYRjcLTpMB8GA1UdIwQY
MBaAFIppihT7YaaHrwpj98ZVwAH2cBKCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaW1tS0ZQdGhwb2V2Q21QM3hsWEFBZlp3RW9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8zM2QyMjYtN2M0My00YzgzLTk0YWQt
MjE4Mjg5ZDgxYzUzLzEvaW1tS0ZQdGhwb2V2Q21QM3hsWEFBZlp3RW9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS8zM2QyMjYtN2M0My00YzgzLTk0YWQtMjE4Mjg5ZDgxYzUz
LzEvaW1tS0ZQdGhwb2V2Q21QM3hsWEFBZlp3RW9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARCpTRPH8
f/1I0D73K47xDlck6+ogR8WaPqNR+uLeEX0HbJ4KePm37ewZCY7Gpt1xSp+KtM+h
BG2q0Ht4dfKGOWVeM5jfHHxcrnNMxJQzFfnf0vZPaWHDMzVHtfo8GRLZJ4Dqnis3
NEQgss8qFoOjarYDNooSZVHzHr7OHpISO+vclQ70XfFsXBrXMSSD0gDQdVr0LLxa
Hni4B1ePbziupWIMdXGhPCf9l2vqRgA3NZv+UoLi3bOl+6E1YO5wJqjAozwkBNqv
8QtNUqDXYSJi1S6ijZmwuCD9mBJz9VzQBRqfT7t/NYvaZQIwZa8DQhuIppt8OLVv
2F0AHJgWK6EGKA==
-----END CERTIFICATE-----
Generated at Tue May 13 19:44:31 2025 by rpki-client