Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
File: iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft (raw, json)
Hash identifier: D3ebVi56EgtB3wGpHkWB4dPg6k3abv4zQ0AFv7BaQh4=
Subject key identifier: C2:2B:B9:90:9E:AA:B0:14:2B:2D:CA:82:38:41:32:4E:BF:66:CA:F5
Authority key identifier: 89:93:9F:F1:29:3B:7E:22:77:9F:C5:5B:4C:83:F1:3E:52:E9:44:28
Certificate issuer: /CN=89939ff1293b7e22779fc55b4c83f13e52e94428
Certificate serial: 0196A7D4940473543C9CCC7BC5E218350B2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
Manifest number: 14FF
Signing time: Tue 06 May 2025 23:00:48 +0000
Manifest this update: Tue 06 May 2025 23:00:48 +0000
Manifest next update: Wed 07 May 2025 23:00:48 +0000
Files and hashes: 1: QdF_t5GM6hFZDI7Ycz1kPbhRE0s.roa (hash: gZA+5nFU0e3J+dZOb0p/gBtvIfB/51rVDEOTe4nlfP8=)
2: iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl (hash: URv3YJl1csbabU6mYGR1xN+Vk6Q4H69vcwg8qd88T5c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a7:d4:94:04:73:54:3c:9c:cc:7b:c5:e2:18:35:0b:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89939ff1293b7e22779fc55b4c83f13e52e94428
Validity
Not Before: May 6 23:00:48 2025 GMT
Not After : May 7 23:00:48 2025 GMT
Subject: CN=c22bb9909eaab0142b2dca823841324ebf66caf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:fa:cf:2b:f3:66:8c:5f:08:a6:d9:e0:c1:2f:
66:d2:fc:4a:f0:f1:ea:43:1c:7c:8b:5a:f7:26:80:
68:8c:60:79:6e:ee:9c:56:69:73:5d:03:4a:a9:d1:
9f:9e:f0:12:30:66:d4:60:df:db:54:93:68:ef:06:
69:66:30:4b:36:90:70:91:f1:9b:71:0a:c3:d4:ab:
fc:a6:a0:b4:19:00:27:b6:2f:1f:73:c1:11:0c:75:
63:24:0d:7e:d8:59:f3:62:47:71:b4:07:94:5e:37:
66:55:73:51:72:8b:9a:c0:e9:61:c0:57:98:59:7f:
ef:61:5a:b5:dc:7a:0d:2d:33:1c:ab:e0:b3:13:77:
b4:2b:dc:86:92:e2:7f:05:fe:ca:3f:97:5b:4c:6a:
8f:04:7f:a9:c6:a7:63:0c:ef:b2:19:b0:70:f0:85:
fa:8a:46:09:85:ef:18:9f:85:1a:15:dd:f7:16:34:
cd:94:cc:03:43:3a:b2:bd:f0:c3:1f:9d:67:03:c2:
3d:f3:fe:3a:a6:f8:ce:fe:38:4a:65:a5:56:58:72:
78:81:e8:23:a4:f2:22:10:67:2e:ec:fe:90:e1:01:
0f:b3:f9:ec:3c:79:f5:8b:19:aa:18:b6:4c:94:80:
60:b1:07:1b:e9:1b:a3:32:95:27:c6:7e:dc:74:bd:
6f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:2B:B9:90:9E:AA:B0:14:2B:2D:CA:82:38:41:32:4E:BF:66:CA:F5
X509v3 Authority Key Identifier:
keyid:89:93:9F:F1:29:3B:7E:22:77:9F:C5:5B:4C:83:F1:3E:52:E9:44:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:32:13:bf:2b:63:00:86:c2:b6:59:0c:5e:de:a5:3a:a8:d7:
09:61:73:34:ab:e3:c0:31:0c:91:d8:7c:6f:29:29:ab:9a:64:
13:ca:81:05:c6:ed:c6:ab:4f:66:fb:75:18:fe:64:68:11:bd:
aa:67:57:00:f2:3c:da:2f:f1:8a:fc:38:95:3b:32:00:94:23:
a7:15:7e:4a:78:8c:88:10:4c:cd:2b:71:2b:d3:66:f7:38:fe:
70:c8:8c:d5:07:6c:0c:b7:ee:6d:fc:3f:e4:3b:be:ee:57:b2:
f6:0e:1e:3a:b5:2e:48:b2:69:5d:14:b1:bf:e3:c6:49:25:06:
2b:94:9f:4d:18:bc:f6:98:3e:40:c0:d6:73:68:2b:05:a9:53:
94:7c:5a:0a:69:33:2e:65:b5:ae:54:19:ec:4f:b1:b1:0e:e3:
16:ca:1d:77:f5:7d:d1:b6:59:16:4c:bc:08:fe:09:84:b9:e4:
2e:8c:a3:50:6c:fa:66:15:c7:ad:77:fe:7d:07:f0:d3:14:d8:
61:ee:fd:3f:d1:19:7d:c2:8c:78:5e:1c:90:dc:8a:52:21:98:
d5:e3:97:13:d0:27:fa:b3:b2:3b:b1:77:7c:6c:f3:e3:ad:5b:
8d:98:7d:6f:db:d8:74:28:0d:b2:cb:47:61:83:c5:ef:a9:5b:
6d:e5:65:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZan1JQEc1Q8nMx7xeIYNQstMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5OTM5ZmYxMjkzYjdlMjI3NzlmYzU1YjRjODNmMTNlNTJl
OTQ0MjgwHhcNMjUwNTA2MjMwMDQ4WhcNMjUwNTA3MjMwMDQ4WjAzMTEwLwYDVQQD
EyhjMjJiYjk5MDllYWFiMDE0MmIyZGNhODIzODQxMzI0ZWJmNjZjYWY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufrPK/NmjF8IptngwS9m0vxK8PHq
Qxx8i1r3JoBojGB5bu6cVmlzXQNKqdGfnvASMGbUYN/bVJNo7wZpZjBLNpBwkfGb
cQrD1Kv8pqC0GQAnti8fc8ERDHVjJA1+2FnzYkdxtAeUXjdmVXNRcouawOlhwFeY
WX/vYVq13HoNLTMcq+CzE3e0K9yGkuJ/Bf7KP5dbTGqPBH+pxqdjDO+yGbBw8IX6
ikYJhe8Yn4UaFd33FjTNlMwDQzqyvfDDH51nA8I98/46pvjO/jhKZaVWWHJ4gegj
pPIiEGcu7P6Q4QEPs/nsPHn1ixmqGLZMlIBgsQcb6RujMpUnxn7cdL1v3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMIruZCeqrAUKy3KgjhBMk6/Zsr1MB8GA1UdIwQY
MBaAFImTn/EpO34id5/FW0yD8T5S6UQoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVpPZjhTazdmaUozbjhWYlRJUHhQbExwUkNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9hMTBkZGYtYmI2ZS00YmIwLWJlZmYt
MGU2ODAwMGIzNTM3LzEvaVpPZjhTazdmaUozbjhWYlRJUHhQbExwUkNnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS9hMTBkZGYtYmI2ZS00YmIwLWJlZmYtMGU2ODAwMGIzNTM3
LzEvaVpPZjhTazdmaUozbjhWYlRJUHhQbExwUkNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAczITvytj
AIbCtlkMXt6lOqjXCWFzNKvjwDEMkdh8bykpq5pkE8qBBcbtxqtPZvt1GP5kaBG9
qmdXAPI82i/xivw4lTsyAJQjpxV+SniMiBBMzStxK9Nm9zj+cMiM1QdsDLfubfw/
5Du+7ley9g4eOrUuSLJpXRSxv+PGSSUGK5SfTRi89pg+QMDWc2grBalTlHxaCmkz
LmW1rlQZ7E+xsQ7jFsodd/V90bZZFky8CP4JhLnkLoyjUGz6ZhXHrXf+fQfw0xTY
Ye79P9EZfcKMeF4ckNyKUiGY1eOXE9An+rOyO7F3fGzz461bjZh9b9vYdCgNsstH
YYPF76lbbeVlAg==
-----END CERTIFICATE-----
Generated at Wed May 7 06:25:14 2025 by rpki-client