Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
File: iPdXItsls3I97Npdhw32m_DYZa4.mft (raw, json)
Hash identifier: vOXsQbSAvt8rlUECB8iksT138yJjLo32PEXdxx8FPR0=
Subject key identifier: A1:4B:BE:08:D4:97:9C:12:9A:BD:69:52:4D:A9:30:1A:D4:53:C7:5A
Authority key identifier: 88:F7:57:22:DB:25:B3:72:3D:EC:DA:5D:87:0D:F6:9B:F0:D8:65:AE
Certificate issuer: /CN=88f75722db25b3723decda5d870df69bf0d865ae
Certificate serial: 0196A2771B72A9E55BC91A57EFB63FA00B6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
Manifest number: 0F1E
Signing time: Mon 05 May 2025 22:00:36 +0000
Manifest this update: Mon 05 May 2025 22:00:36 +0000
Manifest next update: Tue 06 May 2025 22:00:36 +0000
Files and hashes: 1: iPdXItsls3I97Npdhw32m_DYZa4.crl (hash: WD6MKSRfe3KOmvZE15CVzqvNITtx/6tAGP9Ps8Fuoq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a2:77:1b:72:a9:e5:5b:c9:1a:57:ef:b6:3f:a0:0b:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f75722db25b3723decda5d870df69bf0d865ae
Validity
Not Before: May 5 22:00:36 2025 GMT
Not After : May 6 22:00:36 2025 GMT
Subject: CN=a14bbe08d4979c129abd69524da9301ad453c75a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:df:f7:8e:b7:e6:a4:79:5c:29:9a:65:12:d0:
3d:34:ff:bd:cd:8d:cf:9c:9d:34:27:3a:13:79:71:
0a:a1:9b:49:50:2e:03:f0:58:74:87:04:17:2b:09:
4a:73:c8:d5:0c:5f:99:1a:50:d1:9a:bb:d1:18:ea:
43:f9:b0:c6:d8:36:31:9e:4c:8d:ae:98:9c:75:28:
ec:7a:6a:6b:ae:f6:2f:72:67:79:7e:9c:26:fb:0c:
a2:b4:78:eb:f9:36:e4:1e:74:18:fa:32:db:e8:fe:
c3:2d:d2:62:cc:e7:4a:c9:95:e4:ea:56:eb:1a:fe:
7b:ef:47:57:09:5d:87:7f:6e:04:c8:87:42:75:95:
f5:73:16:f8:ba:f4:b0:95:3e:fe:8f:11:79:64:e8:
d8:a5:94:ed:33:6e:e6:66:67:9b:48:3a:f2:1f:3b:
00:20:e4:c7:2b:91:96:fe:ce:20:d2:9f:aa:d4:64:
74:41:01:ad:de:06:2c:0c:9f:af:a0:87:25:ee:ea:
5e:9c:92:9b:d1:3e:3a:63:cb:66:2c:8b:a4:e7:41:
01:6f:c0:73:de:38:a7:85:0b:26:ed:13:26:80:7f:
c1:ce:cd:ff:b8:04:7d:39:ee:12:0a:0e:f7:77:1d:
ee:f2:0f:a9:54:b5:49:73:fb:e5:a9:08:bf:bb:62:
5e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:4B:BE:08:D4:97:9C:12:9A:BD:69:52:4D:A9:30:1A:D4:53:C7:5A
X509v3 Authority Key Identifier:
keyid:88:F7:57:22:DB:25:B3:72:3D:EC:DA:5D:87:0D:F6:9B:F0:D8:65:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:31:4b:0d:5e:c7:11:b2:f9:75:51:3a:a4:0d:70:db:f1:18:
22:2c:78:a6:a0:6c:ed:c8:ea:fd:d8:1f:ba:f7:0f:14:bb:31:
93:b5:b4:2c:2f:3e:3c:12:ac:80:42:d5:08:5b:92:49:2a:3f:
16:ac:6b:f8:66:de:81:f5:85:b0:cd:da:9d:8d:c2:8d:bf:b6:
3a:76:8e:9c:62:98:23:e5:d6:d1:50:f3:41:34:31:7d:cd:dd:
d6:a7:66:0a:7a:63:af:2c:ff:50:e4:69:c1:24:5a:8e:23:d9:
e7:52:01:e1:51:5c:f0:f2:ca:93:32:55:3c:91:c4:00:9b:6d:
7c:1e:59:bf:f4:24:08:57:3f:ba:3d:45:cb:60:c7:dc:00:e9:
c0:fc:c0:a0:99:a4:84:af:85:c6:0f:c0:2e:68:18:6a:71:fa:
37:47:32:ce:c5:90:14:e6:1b:9d:15:e8:4f:3b:ad:6f:cd:87:
69:aa:65:4b:ab:a8:a2:a2:3a:ae:c2:22:39:47:9c:52:0f:62:
a3:d4:3b:da:ec:aa:c0:be:00:90:be:7c:93:4a:c8:69:7d:31:
c8:ea:c7:21:71:c3:d3:9e:23:ff:3c:46:84:de:59:e5:de:d9:
9a:7b:cc:ef:21:22:8e:38:a9:fd:86:a2:36:8c:3a:43:0d:db:
74:95:40:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaidxtyqeVbyRpX77Y/oAttMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4Zjc1NzIyZGIyNWIzNzIzZGVjZGE1ZDg3MGRmNjliZjBk
ODY1YWUwHhcNMjUwNTA1MjIwMDM2WhcNMjUwNTA2MjIwMDM2WjAzMTEwLwYDVQQD
EyhhMTRiYmUwOGQ0OTc5YzEyOWFiZDY5NTI0ZGE5MzAxYWQ0NTNjNzVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArd/3jrfmpHlcKZplEtA9NP+9zY3P
nJ00JzoTeXEKoZtJUC4D8Fh0hwQXKwlKc8jVDF+ZGlDRmrvRGOpD+bDG2DYxnkyN
rpicdSjsemprrvYvcmd5fpwm+wyitHjr+TbkHnQY+jLb6P7DLdJizOdKyZXk6lbr
Gv5770dXCV2Hf24EyIdCdZX1cxb4uvSwlT7+jxF5ZOjYpZTtM27mZmebSDryHzsA
IOTHK5GW/s4g0p+q1GR0QQGt3gYsDJ+voIcl7upenJKb0T46Y8tmLIuk50EBb8Bz
3jinhQsm7RMmgH/Bzs3/uAR9Oe4SCg73dx3u8g+pVLVJc/vlqQi/u2JeRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKFLvgjUl5wSmr1pUk2pMBrUU8daMB8GA1UdIwQY
MBaAFIj3VyLbJbNyPezaXYcN9pvw2GWuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVBkWEl0c2xzM0k5N05wZGh3MzJtX0RZWmE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8yZmE3MjUtOTQ1Yy00OGRmLWI2Mjkt
MmQxNDBlNGM1YTNmLzEvaVBkWEl0c2xzM0k5N05wZGh3MzJtX0RZWmE0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny8yZmE3MjUtOTQ1Yy00OGRmLWI2MjktMmQxNDBlNGM1YTNm
LzEvaVBkWEl0c2xzM0k5N05wZGh3MzJtX0RZWmE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADTFLDV7H
EbL5dVE6pA1w2/EYIix4pqBs7cjq/dgfuvcPFLsxk7W0LC8+PBKsgELVCFuSSSo/
Fqxr+GbegfWFsM3anY3Cjb+2OnaOnGKYI+XW0VDzQTQxfc3d1qdmCnpjryz/UORp
wSRajiPZ51IB4VFc8PLKkzJVPJHEAJttfB5Zv/QkCFc/uj1Fy2DH3ADpwPzAoJmk
hK+Fxg/ALmgYanH6N0cyzsWQFOYbnRXoTzutb82HaaplS6uooqI6rsIiOUecUg9i
o9Q72uyqwL4AkL58k0rIaX0xyOrHIXHD054j/zxGhN5Z5d7ZmnvM7yEijjip/Yai
Now6Qw3bdJVAwg==
-----END CERTIFICATE-----
Generated at Tue May 6 03:17:53 2025 by rpki-client