Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft
File: I08I-kIiU1wK8moNc0fb8XJUcZY.mft (raw, json)
Hash identifier: 4fiy9kj5oMalzcxzDxSXuWfPMnv2E5yvH+jBkf4bKvQ=
Subject key identifier: C0:EB:78:E1:A2:BA:15:C7:7D:48:F9:1C:F5:9E:48:2C:AC:69:8C:90
Authority key identifier: 23:4F:08:FA:42:22:53:5C:0A:F2:6A:0D:73:47:DB:F1:72:54:71:96
Certificate issuer: /CN=234f08fa4222535c0af26a0d7347dbf172547196
Certificate serial: 0196C79665A1A04591DCEA49299D436B94B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I08I-kIiU1wK8moNc0fb8XJUcZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft
Manifest number: 27
Signing time: Tue 13 May 2025 03:00:44 +0000
Manifest this update: Tue 13 May 2025 03:00:44 +0000
Manifest next update: Wed 14 May 2025 03:00:44 +0000
Files and hashes: 1: I08I-kIiU1wK8moNc0fb8XJUcZY.crl (hash: bkkxly6P4FLJDZTKKT0eAvgkn0RhU3KVQj9O/UuoB/M=)
2: PMihf48EDZLf86f7BmXfYmZbV4M.roa (hash: kAi2yEZhpDZ5dFlA+0hzmB2XiAS3L8tb6zCyB/FGwDw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/I08I-kIiU1wK8moNc0fb8XJUcZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:96:65:a1:a0:45:91:dc:ea:49:29:9d:43:6b:94:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=234f08fa4222535c0af26a0d7347dbf172547196
Validity
Not Before: May 13 03:00:44 2025 GMT
Not After : May 14 03:00:44 2025 GMT
Subject: CN=c0eb78e1a2ba15c77d48f91cf59e482cac698c90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ef:08:5a:62:4a:1c:18:f9:a0:c9:ac:4c:f1:
f2:7b:1d:32:da:ed:c8:a0:b3:ef:34:d8:f3:8d:86:
8f:e1:ac:d1:61:12:c8:6a:95:ce:5b:57:b4:31:a5:
06:6b:bd:93:9e:36:7e:a0:58:dc:70:4e:bb:f1:6d:
05:72:ca:2b:a0:1c:93:4d:ae:d8:e8:15:ee:04:25:
28:21:d9:70:e3:a2:4e:51:c0:c0:00:43:87:f5:be:
47:56:e1:a6:a4:09:da:1d:5b:7f:17:47:2d:90:2b:
2a:26:26:97:95:71:34:88:4b:65:72:4f:30:ee:b4:
64:e0:80:19:92:b2:98:42:98:49:4f:0b:36:a0:44:
21:84:52:59:ce:d7:eb:de:1b:f9:f6:8e:c3:cf:b0:
af:ff:e8:82:06:30:63:89:24:38:aa:0d:e9:d2:7b:
ce:b6:f8:2b:5f:df:17:5d:ee:12:b4:d5:ef:53:41:
47:af:4c:ba:81:e9:4e:cb:47:8e:08:41:e9:38:ca:
7e:a7:0c:f1:56:fe:d2:0c:cb:91:6b:d5:5c:e2:83:
5a:6e:44:d3:c6:b1:19:6a:81:d9:10:e4:2b:b6:b3:
dd:55:24:6b:2c:8f:a8:76:c3:e1:56:17:a5:16:4f:
35:65:e5:77:c4:b3:7a:7a:7d:51:34:34:11:c4:ef:
9a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:EB:78:E1:A2:BA:15:C7:7D:48:F9:1C:F5:9E:48:2C:AC:69:8C:90
X509v3 Authority Key Identifier:
keyid:23:4F:08:FA:42:22:53:5C:0A:F2:6A:0D:73:47:DB:F1:72:54:71:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I08I-kIiU1wK8moNc0fb8XJUcZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:4e:4c:5c:8b:78:7c:a4:f0:b4:46:4d:9e:57:c9:28:4a:0a:
e6:9a:c0:cc:f8:dc:71:39:1a:b7:07:e7:ec:cc:98:c5:1d:ac:
41:1d:b6:d2:49:21:7c:a5:ad:b0:b3:a3:71:17:98:ea:28:03:
1a:24:19:1b:b7:d0:e4:0a:27:cb:89:93:d1:a7:44:60:1c:4e:
1f:8f:64:c9:48:82:5a:58:e3:72:35:ae:43:a9:37:f1:ff:01:
86:ae:62:84:b3:28:e4:4d:d5:37:24:06:74:f5:56:4b:c8:83:
25:b5:4c:c5:af:df:38:9e:11:fe:c6:2b:83:54:f0:91:b3:03:
fc:0d:30:dd:c2:e4:4c:66:db:90:1c:96:73:2a:20:fe:ed:15:
4a:e5:85:04:c7:1c:27:a5:0e:d6:86:a2:a4:a8:5b:58:75:10:
1b:cb:5d:4d:2b:4c:2b:61:5e:20:bc:f3:20:eb:b2:dd:0a:0d:
2d:09:be:20:0f:fb:21:6a:87:26:e1:ce:88:31:21:22:78:a2:
91:26:86:2a:b7:0b:1f:dc:a8:41:d9:9f:01:56:30:59:64:e8:
fe:49:8c:9c:7e:40:fa:c7:de:30:bf:f3:48:0c:53:5c:40:ec:
b3:ab:01:16:f7:7a:7e:08:20:9f:2e:9e:9c:10:2f:84:71:65:
d5:89:fc:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbHlmWhoEWR3OpJKZ1Da5SyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzNGYwOGZhNDIyMjUzNWMwYWYyNmEwZDczNDdkYmYxNzI1
NDcxOTYwHhcNMjUwNTEzMDMwMDQ0WhcNMjUwNTE0MDMwMDQ0WjAzMTEwLwYDVQQD
EyhjMGViNzhlMWEyYmExNWM3N2Q0OGY5MWNmNTllNDgyY2FjNjk4YzkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1e8IWmJKHBj5oMmsTPHyex0y2u3I
oLPvNNjzjYaP4azRYRLIapXOW1e0MaUGa72TnjZ+oFjccE678W0FcsoroByTTa7Y
6BXuBCUoIdlw46JOUcDAAEOH9b5HVuGmpAnaHVt/F0ctkCsqJiaXlXE0iEtlck8w
7rRk4IAZkrKYQphJTws2oEQhhFJZztfr3hv59o7Dz7Cv/+iCBjBjiSQ4qg3p0nvO
tvgrX98XXe4StNXvU0FHr0y6gelOy0eOCEHpOMp+pwzxVv7SDMuRa9Vc4oNabkTT
xrEZaoHZEOQrtrPdVSRrLI+odsPhVhelFk81ZeV3xLN6en1RNDQRxO+aeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMDreOGiuhXHfUj5HPWeSCysaYyQMB8GA1UdIwQY
MBaAFCNPCPpCIlNcCvJqDXNH2/FyVHGWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTA4SS1rSWlVMXdLOG1vTmMwZmI4WEpVY1pZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi82MzhhOWMtZWM2NC00NWRlLWJjMmUt
MmJlN2VkYzc5MzJkLzEvSTA4SS1rSWlVMXdLOG1vTmMwZmI4WEpVY1pZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi82MzhhOWMtZWM2NC00NWRlLWJjMmUtMmJlN2VkYzc5MzJk
LzEvSTA4SS1rSWlVMXdLOG1vTmMwZmI4WEpVY1pZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp05MXIt4
fKTwtEZNnlfJKEoK5prAzPjccTkatwfn7MyYxR2sQR220kkhfKWtsLOjcReY6igD
GiQZG7fQ5Aony4mT0adEYBxOH49kyUiCWljjcjWuQ6k38f8Bhq5ihLMo5E3VNyQG
dPVWS8iDJbVMxa/fOJ4R/sYrg1TwkbMD/A0w3cLkTGbbkByWcyog/u0VSuWFBMcc
J6UO1oaipKhbWHUQG8tdTStMK2FeILzzIOuy3QoNLQm+IA/7IWqHJuHOiDEhInii
kSaGKrcLH9yoQdmfAVYwWWTo/kmMnH5A+sfeML/zSAxTXEDss6sBFvd6fgggny6e
nBAvhHFl1Yn8OA==
-----END CERTIFICATE-----
Generated at Tue May 13 09:31:50 2025 by rpki-client