Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft
File: IMjVw3OmvzurIpOUNguG0Alq7L0.mft (raw, json)
Hash identifier: N22afyGX2pBoIl5AsOeb/BYFQzk4xxUG/cjiO0Q/gEQ=
Subject key identifier: 42:F0:64:2F:14:53:A5:23:10:D3:90:78:81:87:D6:B7:7E:6B:63:1C
Authority key identifier: 20:C8:D5:C3:73:A6:BF:3B:AB:22:93:94:36:0B:86:D0:09:6A:EC:BD
Certificate issuer: /CN=20c8d5c373a6bf3bab229394360b86d0096aecbd
Certificate serial: 0196D2F58935D34E5E2EF6DD143DB3100623
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMjVw3OmvzurIpOUNguG0Alq7L0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft
Manifest number: 10DA
Signing time: Thu 15 May 2025 08:00:28 +0000
Manifest this update: Thu 15 May 2025 08:00:28 +0000
Manifest next update: Fri 16 May 2025 08:00:28 +0000
Files and hashes: 1: IMjVw3OmvzurIpOUNguG0Alq7L0.crl (hash: U6wvveKJZDG7/LSxpnORkwBkJYb1kO2IIFPuPZnAfmo=)
2: eKykDDSSUelkgfwH3TO0n13mPZk.roa (hash: P9dt2Lrz0okP2zrUj3Cql2lI4c4A2LE13LjuP2FhidE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IMjVw3OmvzurIpOUNguG0Alq7L0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d2:f5:89:35:d3:4e:5e:2e:f6:dd:14:3d:b3:10:06:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20c8d5c373a6bf3bab229394360b86d0096aecbd
Validity
Not Before: May 15 08:00:28 2025 GMT
Not After : May 16 08:00:28 2025 GMT
Subject: CN=42f0642f1453a52310d390788187d6b77e6b631c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d0:a1:a2:d0:e9:40:52:5a:6f:49:14:88:65:
ae:11:10:80:bf:de:6b:19:79:be:66:1e:ae:be:08:
9b:4a:58:88:6f:74:38:73:40:2d:9c:8b:2e:48:e2:
1d:3c:25:de:e8:58:63:e0:59:ce:d3:ec:5a:f7:00:
9e:e0:a7:ef:f3:3f:4b:af:7b:ef:b7:2e:65:30:3d:
3f:3f:27:d6:fe:00:c0:bd:81:3c:cd:83:3c:92:63:
47:37:b2:ca:b7:db:30:dd:dd:12:c8:de:ac:8f:27:
e5:1d:cf:b9:00:ca:8c:a2:b7:74:db:06:53:11:e5:
7d:03:3b:23:34:47:9e:de:4f:42:d4:5f:f2:b3:96:
2f:96:ec:82:91:4c:94:c9:70:fd:79:a3:d4:85:d0:
dd:c0:b9:8f:9b:fd:42:ab:f3:96:ab:fb:fd:5e:2d:
53:37:85:2c:d9:ff:8b:88:60:a6:76:b6:88:d2:66:
0d:b5:5e:a2:de:38:b4:26:59:33:1f:a1:64:4e:10:
6c:b6:76:bb:4b:4d:d7:80:37:bb:f6:f1:23:04:2f:
75:2c:58:f5:97:31:55:d9:43:85:f5:b6:b3:24:cf:
a3:2c:97:f6:53:9c:5e:8f:57:23:ac:f3:21:61:33:
e7:94:fc:ac:52:d1:3b:a8:40:13:44:10:d9:8d:8e:
87:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F0:64:2F:14:53:A5:23:10:D3:90:78:81:87:D6:B7:7E:6B:63:1C
X509v3 Authority Key Identifier:
keyid:20:C8:D5:C3:73:A6:BF:3B:AB:22:93:94:36:0B:86:D0:09:6A:EC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMjVw3OmvzurIpOUNguG0Alq7L0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:73:54:15:ea:73:a4:74:29:ca:40:54:d3:89:45:f9:b4:85:
92:63:a2:1f:1d:1f:31:14:87:54:61:a9:da:ac:14:b2:95:e8:
b4:aa:3c:49:43:68:60:74:ba:4e:7a:08:70:be:37:90:47:d3:
df:33:50:77:fe:5c:3c:3f:e1:32:d2:3b:b5:56:22:c1:04:39:
af:13:8b:c9:87:5c:72:38:84:8e:62:4f:29:d0:e4:16:bb:4a:
04:e8:85:dd:ca:49:b9:e1:6c:b3:97:19:4b:e8:b4:88:4b:4a:
c1:3d:49:1e:9c:6d:57:8c:7a:bd:ef:5f:71:4a:cc:31:c1:ea:
1f:f0:16:2b:46:29:2d:86:ec:9c:26:18:9d:56:64:65:0a:08:
87:c6:72:14:92:c8:52:0e:d5:8d:b1:7e:92:de:89:c3:37:d2:
d6:c5:e6:89:37:8d:ae:7b:a7:ec:72:a9:78:10:9a:02:e5:6d:
f1:f8:4d:8d:7e:07:99:25:6c:d1:e4:83:be:c1:6a:5d:41:e9:
f6:81:90:7c:3e:57:7b:47:5d:3d:ea:33:31:b6:78:da:d0:31:
ff:db:ed:82:a5:f2:00:9b:56:f9:c8:b0:c8:3a:d5:8a:23:61:
da:f4:d6:a6:49:2f:55:2a:d7:a9:aa:30:13:68:58:1f:ab:86:
a6:9b:37:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbS9Yk1005eLvbdFD2zEAYjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwYzhkNWMzNzNhNmJmM2JhYjIyOTM5NDM2MGI4NmQwMDk2
YWVjYmQwHhcNMjUwNTE1MDgwMDI4WhcNMjUwNTE2MDgwMDI4WjAzMTEwLwYDVQQD
Eyg0MmYwNjQyZjE0NTNhNTIzMTBkMzkwNzg4MTg3ZDZiNzdlNmI2MzFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNChotDpQFJab0kUiGWuERCAv95r
GXm+Zh6uvgibSliIb3Q4c0AtnIsuSOIdPCXe6Fhj4FnO0+xa9wCe4Kfv8z9Lr3vv
ty5lMD0/PyfW/gDAvYE8zYM8kmNHN7LKt9sw3d0SyN6sjyflHc+5AMqMord02wZT
EeV9AzsjNEee3k9C1F/ys5YvluyCkUyUyXD9eaPUhdDdwLmPm/1Cq/OWq/v9Xi1T
N4Us2f+LiGCmdraI0mYNtV6i3ji0JlkzH6FkThBstna7S03XgDe79vEjBC91LFj1
lzFV2UOF9bazJM+jLJf2U5xej1cjrPMhYTPnlPysUtE7qEATRBDZjY6H+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFELwZC8UU6UjENOQeIGH1rd+a2McMB8GA1UdIwQY
MBaAFCDI1cNzpr87qyKTlDYLhtAJauy9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSU1qVnczT212enVySXBPVU5ndUcwQWxxN0wwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy84ZTk4NTUtNTk4OS00ODZlLTk0MzYt
NTBhN2M5MjU5MWQwLzEvSU1qVnczT212enVySXBPVU5ndUcwQWxxN0wwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy84ZTk4NTUtNTk4OS00ODZlLTk0MzYtNTBhN2M5MjU5MWQw
LzEvSU1qVnczT212enVySXBPVU5ndUcwQWxxN0wwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAknNUFepz
pHQpykBU04lF+bSFkmOiHx0fMRSHVGGp2qwUspXotKo8SUNoYHS6TnoIcL43kEfT
3zNQd/5cPD/hMtI7tVYiwQQ5rxOLyYdccjiEjmJPKdDkFrtKBOiF3cpJueFss5cZ
S+i0iEtKwT1JHpxtV4x6ve9fcUrMMcHqH/AWK0YpLYbsnCYYnVZkZQoIh8ZyFJLI
Ug7VjbF+kt6JwzfS1sXmiTeNrnun7HKpeBCaAuVt8fhNjX4HmSVs0eSDvsFqXUHp
9oGQfD5Xe0ddPeozMbZ42tAx/9vtgqXyAJtW+ciwyDrViiNh2vTWpkkvVSrXqaow
E2hYH6uGpps3Bw==
-----END CERTIFICATE-----
Generated at Thu May 15 17:00:34 2025 by rpki-client