Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
File: IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft (raw, json)
Hash identifier: miBhgqn2ZytEvBhLX1FaX8UrsvLgqCsmtQvWxF2S7q0=
Subject key identifier: 35:44:AF:2A:27:9E:8C:12:CF:37:17:C5:C1:BF:2C:CC:5E:D2:C3:DD
Authority key identifier: 21:01:B6:38:8D:64:35:F5:49:90:90:53:82:B4:1D:C9:67:5F:D4:90
Certificate issuer: /CN=2101b6388d6435f54990905382b41dc9675fd490
Certificate serial: 01969F07FC8BDD9C12AE61495A49F1E49555
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
Manifest number: 03B4
Signing time: Mon 05 May 2025 06:00:22 +0000
Manifest this update: Mon 05 May 2025 06:00:22 +0000
Manifest next update: Tue 06 May 2025 06:00:22 +0000
Files and hashes: 1: EAD0diuoZK02qxxsVWWiclAVX5I.roa (hash: kzXgijoQ+OFnt0McFOmyH17ijOy9UUEek/dQbYMoKFU=)
2: IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl (hash: SSWVph5WTyzD7nyz6JLM0tMhv7ZgJTbp8/NzC5FgC7Y=)
3: nyGLR8VZWMaY-kU1NUM_fc4iRjM.roa (hash: voylSjHlayiNYZNWUzC6whbKd8QLUjoGC1qGpaQazoM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:07:fc:8b:dd:9c:12:ae:61:49:5a:49:f1:e4:95:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2101b6388d6435f54990905382b41dc9675fd490
Validity
Not Before: May 5 06:00:22 2025 GMT
Not After : May 6 06:00:22 2025 GMT
Subject: CN=3544af2a279e8c12cf3717c5c1bf2ccc5ed2c3dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e9:f8:b6:a5:14:5d:8d:8c:0d:bd:19:90:cb:
bc:ec:44:09:34:c4:63:49:c7:6f:04:79:fc:ae:91:
fb:2a:a0:48:97:12:7a:20:02:c4:af:c3:9b:58:00:
16:58:6b:7f:d6:5a:77:30:df:fe:35:fe:74:2a:a1:
c6:9b:3a:b2:9d:28:8e:4d:d1:9f:83:9b:59:db:74:
3b:65:69:32:30:cd:76:68:61:6d:51:35:fc:80:70:
cc:53:23:a8:25:0d:1f:90:8e:20:de:89:be:5c:5b:
2b:b3:23:e2:31:5d:49:78:f1:28:36:c4:b1:0b:0a:
5a:45:ed:81:80:e1:68:8e:8a:6a:b2:4c:6e:ec:95:
db:42:42:cf:e8:69:62:46:3d:05:bc:fc:6b:64:a6:
c8:9c:d5:fb:f1:40:33:be:77:b6:ac:96:89:50:14:
8a:65:06:bb:03:e3:52:e3:b6:4b:98:22:b1:72:42:
e2:a1:cb:5a:79:ca:75:ea:5c:42:c1:0c:05:60:22:
e0:e8:6f:2a:1d:0b:7e:33:cb:18:1b:f8:e3:8d:9b:
5d:3f:81:7c:e7:bc:f0:cc:d1:f5:96:14:11:e3:a9:
25:e1:bc:c2:34:2f:66:35:69:44:90:7c:ce:c2:28:
88:4b:8b:7f:a7:b4:38:52:45:d9:60:b9:dc:2e:c3:
8d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:44:AF:2A:27:9E:8C:12:CF:37:17:C5:C1:BF:2C:CC:5E:D2:C3:DD
X509v3 Authority Key Identifier:
keyid:21:01:B6:38:8D:64:35:F5:49:90:90:53:82:B4:1D:C9:67:5F:D4:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:bb:f2:fc:de:3e:74:cd:ac:f8:60:dc:12:34:1b:1b:a4:28:
ff:27:72:ad:59:97:a8:40:9d:c0:41:5f:63:ba:0e:ce:a3:e5:
5a:cc:77:2d:4d:3f:ad:d2:7d:3c:2b:08:6c:56:b8:e4:20:52:
18:a5:6b:f2:e3:a6:39:eb:3d:13:01:12:e6:bc:12:c2:43:08:
c6:1a:3b:f6:5d:27:28:10:ff:d4:e2:93:13:28:dd:98:ac:c3:
33:24:be:fa:31:3f:48:cf:1d:de:5a:63:73:8f:f3:fe:eb:fd:
b0:9a:12:21:3a:84:76:ef:ba:5b:42:be:43:e5:38:65:26:b4:
5b:e1:7a:e7:3b:ae:d3:7f:a0:b2:ae:a8:8e:fd:70:3f:56:00:
bf:bc:a4:0a:71:9e:32:04:5c:0e:f3:5e:8b:46:b0:2d:ce:68:
2d:48:bb:ab:0f:61:a4:23:2e:fd:cd:5f:d4:6b:4f:af:c5:4e:
0e:78:01:4d:bb:3c:2c:13:c0:ca:aa:8b:0c:55:9a:21:e6:63:
55:4b:30:f3:0e:7b:b9:25:0b:51:97:90:51:c3:35:33:4a:90:
94:c2:5b:8c:d9:67:6c:5b:0b:95:f6:b9:b1:c7:22:3a:e0:d4:
31:df:f4:b8:9d:00:91:06:f6:30:67:2b:50:b8:c9:87:cf:23:
4e:8c:27:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZafB/yL3ZwSrmFJWknx5JVVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxMDFiNjM4OGQ2NDM1ZjU0OTkwOTA1MzgyYjQxZGM5Njc1
ZmQ0OTAwHhcNMjUwNTA1MDYwMDIyWhcNMjUwNTA2MDYwMDIyWjAzMTEwLwYDVQQD
EygzNTQ0YWYyYTI3OWU4YzEyY2YzNzE3YzVjMWJmMmNjYzVlZDJjM2RkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOn4tqUUXY2MDb0ZkMu87EQJNMRj
ScdvBHn8rpH7KqBIlxJ6IALEr8ObWAAWWGt/1lp3MN/+Nf50KqHGmzqynSiOTdGf
g5tZ23Q7ZWkyMM12aGFtUTX8gHDMUyOoJQ0fkI4g3om+XFsrsyPiMV1JePEoNsSx
CwpaRe2BgOFojopqskxu7JXbQkLP6GliRj0FvPxrZKbInNX78UAzvne2rJaJUBSK
ZQa7A+NS47ZLmCKxckLioctaecp16lxCwQwFYCLg6G8qHQt+M8sYG/jjjZtdP4F8
57zwzNH1lhQR46kl4bzCNC9mNWlEkHzOwiiIS4t/p7Q4UkXZYLncLsONgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDVEryonnowSzzcXxcG/LMxe0sPdMB8GA1UdIwQY
MBaAFCEBtjiNZDX1SZCQU4K0HclnX9SQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVFHMk9JMWtOZlZKa0pCVGdyUWR5V2RmMUpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9jMjA5NWEtM2IzZC00YWM0LTljMzIt
NGRmODkxMjE4OGY3LzEvSVFHMk9JMWtOZlZKa0pCVGdyUWR5V2RmMUpBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9jMjA5NWEtM2IzZC00YWM0LTljMzItNGRmODkxMjE4OGY3
LzEvSVFHMk9JMWtOZlZKa0pCVGdyUWR5V2RmMUpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHrvy/N4+
dM2s+GDcEjQbG6Qo/ydyrVmXqECdwEFfY7oOzqPlWsx3LU0/rdJ9PCsIbFa45CBS
GKVr8uOmOes9EwES5rwSwkMIxho79l0nKBD/1OKTEyjdmKzDMyS++jE/SM8d3lpj
c4/z/uv9sJoSITqEdu+6W0K+Q+U4ZSa0W+F65zuu03+gsq6ojv1wP1YAv7ykCnGe
MgRcDvNei0awLc5oLUi7qw9hpCMu/c1f1GtPr8VODngBTbs8LBPAyqqLDFWaIeZj
VUsw8w57uSULUZeQUcM1M0qQlMJbjNlnbFsLlfa5scciOuDUMd/0uJ0AkQb2MGcr
ULjJh88jTownIw==
-----END CERTIFICATE-----
Generated at Mon May 5 08:30:07 2025 by rpki-client