Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
File: IZUnwiTwCiiy9MtOExLXSNXKUWk.mft (raw, json)
Hash identifier: Cd/38w9rBerCE7YlQUjS9e7DN6zvksiwXSWDcsp4cn4=
Subject key identifier: E3:70:7A:63:65:C0:40:C9:45:EE:23:E0:AA:77:96:8D:9B:6E:67:38
Authority key identifier: 21:95:27:C2:24:F0:0A:28:B2:F4:CB:4E:13:12:D7:48:D5:CA:51:69
Certificate issuer: /CN=219527c224f00a28b2f4cb4e1312d748d5ca5169
Certificate serial: 0196BA11AE3902268919B3A53188D768201E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
Manifest number: 1530
Signing time: Sat 10 May 2025 12:00:42 +0000
Manifest this update: Sat 10 May 2025 12:00:42 +0000
Manifest next update: Sun 11 May 2025 12:00:42 +0000
Files and hashes: 1: IZUnwiTwCiiy9MtOExLXSNXKUWk.crl (hash: DNdL7MWwAdewCKMLPjdMM1UxlghLMM2paQZwajpNkZU=)
2: l8INnv3QTRexkISN97lg6HuKeCY.roa (hash: pDEsYARUuEJK1pYQPfyythtLkxkCfRaxj9c1qzwCEIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 12:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:11:ae:39:02:26:89:19:b3:a5:31:88:d7:68:20:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=219527c224f00a28b2f4cb4e1312d748d5ca5169
Validity
Not Before: May 10 12:00:42 2025 GMT
Not After : May 11 12:00:42 2025 GMT
Subject: CN=e3707a6365c040c945ee23e0aa77968d9b6e6738
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:23:c0:87:ae:f0:ae:62:5f:e4:37:32:be:a9:
30:7b:90:cb:7e:f4:92:ff:f8:ee:f3:9e:ab:74:25:
3b:44:c1:64:2a:b7:f8:24:f8:d6:b4:c3:06:f7:f2:
ac:e8:42:f9:98:53:d7:82:4d:8e:dc:ef:06:20:3b:
37:6d:67:83:c7:17:a0:31:f9:13:e2:1d:50:e9:bc:
c6:a2:89:9d:9d:74:04:47:b0:46:30:1c:82:08:ff:
88:91:d5:da:6b:71:6b:b1:ee:15:5b:6c:d9:1b:eb:
f9:45:13:30:12:e1:13:e8:3a:ad:de:91:f6:a6:47:
00:0b:a7:58:da:88:09:11:82:19:a6:4c:ff:02:17:
b4:e6:08:6a:64:e4:49:bd:3d:fd:5b:99:02:44:74:
02:62:af:9a:c8:28:f3:04:65:cd:2c:4f:09:a5:c8:
6f:40:43:b7:78:ff:2a:83:60:06:d0:94:3f:2f:27:
35:63:c7:fa:67:1d:37:ec:ed:c5:40:96:6c:00:5d:
42:14:ab:fc:6f:41:d5:53:f8:4f:cb:7d:f2:b9:34:
97:31:78:a5:b8:b4:3a:25:52:a7:9f:62:91:5c:3a:
df:b2:b3:ed:95:c2:23:73:1e:23:4a:b9:0b:8e:12:
f8:30:26:8b:0f:06:0e:92:f0:d7:0e:6e:bb:38:4f:
b0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:70:7A:63:65:C0:40:C9:45:EE:23:E0:AA:77:96:8D:9B:6E:67:38
X509v3 Authority Key Identifier:
keyid:21:95:27:C2:24:F0:0A:28:B2:F4:CB:4E:13:12:D7:48:D5:CA:51:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:8d:36:0b:e0:51:2b:87:2d:3b:a7:6a:9e:8b:bc:c1:08:c8:
20:69:b0:ba:78:20:53:ba:0f:ae:89:2f:2f:eb:e5:80:2e:89:
9d:ff:6d:bf:b3:30:d3:14:75:85:27:8a:46:7e:5a:3d:50:20:
32:33:c1:7c:5f:a5:1c:d2:38:cf:c8:87:db:16:ad:84:56:15:
50:ec:c3:ca:0c:f7:9e:d8:ad:36:8a:ba:27:e8:0a:56:1d:f3:
7c:cd:fc:df:f1:ad:f8:e1:5f:c1:f9:f5:8f:78:98:4c:d4:24:
73:73:7c:74:71:bf:b0:ee:31:9d:e4:9f:d9:01:f7:fa:f0:56:
84:bb:31:5e:90:fd:06:65:34:61:94:e4:dc:df:3b:22:bb:3e:
f3:4b:ad:82:ea:11:f3:1e:df:54:80:d0:42:23:67:25:f1:9f:
2c:ce:fe:d8:b3:6c:f4:f7:be:ee:8c:fc:3e:9f:f1:12:ef:f9:
00:80:d1:ea:76:a3:7d:ca:25:1c:1f:71:54:67:5a:a8:f1:97:
29:4f:3f:72:7d:28:36:9e:c4:c0:5a:24:49:d0:3e:35:56:dd:
88:e3:c1:43:55:31:96:44:39:68:90:7f:10:1c:5a:77:19:43:
f2:f3:2f:48:1f:36:b8:80:d8:0c:b5:66:f1:06:7b:49:f0:dd:
ac:ac:4b:9e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa6Ea45AiaJGbOlMYjXaCAeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxOTUyN2MyMjRmMDBhMjhiMmY0Y2I0ZTEzMTJkNzQ4ZDVj
YTUxNjkwHhcNMjUwNTEwMTIwMDQyWhcNMjUwNTExMTIwMDQyWjAzMTEwLwYDVQQD
EyhlMzcwN2E2MzY1YzA0MGM5NDVlZTIzZTBhYTc3OTY4ZDliNmU2NzM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7SPAh67wrmJf5Dcyvqkwe5DLfvSS
//ju856rdCU7RMFkKrf4JPjWtMMG9/Ks6EL5mFPXgk2O3O8GIDs3bWeDxxegMfkT
4h1Q6bzGoomdnXQER7BGMByCCP+IkdXaa3Frse4VW2zZG+v5RRMwEuET6Dqt3pH2
pkcAC6dY2ogJEYIZpkz/Ahe05ghqZORJvT39W5kCRHQCYq+ayCjzBGXNLE8Jpchv
QEO3eP8qg2AG0JQ/Lyc1Y8f6Zx037O3FQJZsAF1CFKv8b0HVU/hPy33yuTSXMXil
uLQ6JVKnn2KRXDrfsrPtlcIjcx4jSrkLjhL4MCaLDwYOkvDXDm67OE+wIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFONwemNlwEDJRe4j4Kp3lo2bbmc4MB8GA1UdIwQY
MBaAFCGVJ8Ik8AoosvTLThMS10jVylFpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVpVbndpVHdDaWl5OU10T0V4TFhTTlhLVVdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi84NTQwZGItZjkwMS00MzNiLTgxYmIt
OTdkNTVmMzkxNTYxLzEvSVpVbndpVHdDaWl5OU10T0V4TFhTTlhLVVdrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi84NTQwZGItZjkwMS00MzNiLTgxYmItOTdkNTVmMzkxNTYx
LzEvSVpVbndpVHdDaWl5OU10T0V4TFhTTlhLVVdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhY02C+BR
K4ctO6dqnou8wQjIIGmwunggU7oProkvL+vlgC6Jnf9tv7Mw0xR1hSeKRn5aPVAg
MjPBfF+lHNI4z8iH2xathFYVUOzDygz3ntitNoq6J+gKVh3zfM383/Gt+OFfwfn1
j3iYTNQkc3N8dHG/sO4xneSf2QH3+vBWhLsxXpD9BmU0YZTk3N87Irs+80utguoR
8x7fVIDQQiNnJfGfLM7+2LNs9Pe+7oz8Pp/xEu/5AIDR6najfcolHB9xVGdaqPGX
KU8/cn0oNp7EwFokSdA+NVbdiOPBQ1UxlkQ5aJB/EBxadxlD8vMvSB82uIDYDLVm
8QZ7SfDdrKxLng==
-----END CERTIFICATE-----
Generated at Sat May 10 16:48:35 2025 by rpki-client