Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft
File: IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft (raw, json)
Hash identifier: KjBG5VeXiez6lPN6FeN8m7qheQhjqM3NKIPqR3JJt/o=
Subject key identifier: 4F:EA:00:3D:C3:E5:7D:08:A3:30:EE:12:86:52:CA:95:C6:2A:5D:AC
Authority key identifier: 20:82:0F:79:64:81:AC:0E:96:37:C9:62:41:45:97:B1:FE:22:7C:24
Certificate issuer: /CN=20820f796481ac0e9637c962414597b1fe227c24
Certificate serial: 0196BFDD0006FF958E47CEA0CF1DAD381E14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IIIPeWSBrA6WN8liQUWXsf4ifCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft
Manifest number: 47
Signing time: Sun 11 May 2025 15:00:53 +0000
Manifest this update: Sun 11 May 2025 15:00:53 +0000
Manifest next update: Mon 12 May 2025 15:00:53 +0000
Files and hashes: 1: IIIPeWSBrA6WN8liQUWXsf4ifCQ.crl (hash: emUC74yAYnS1vUPNiur59DZVUtxjH6RnPJbsqJH7D7I=)
2: iLANhbyVV3zbKcRa5e1j5ys5bQ8.roa (hash: HvIZEmUJodoCUOQJmSLlhYyGWehRd8s2eUB4GrSGatI=)
3: vXv88BHimThnafaryEHozjYrlDI.roa (hash: DV1U9+gs3m5mNc5xoVIc27oNoGuDOyBahRAnw8thlug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IIIPeWSBrA6WN8liQUWXsf4ifCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 15:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:dd:00:06:ff:95:8e:47:ce:a0:cf:1d:ad:38:1e:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20820f796481ac0e9637c962414597b1fe227c24
Validity
Not Before: May 11 15:00:53 2025 GMT
Not After : May 12 15:00:53 2025 GMT
Subject: CN=4fea003dc3e57d08a330ee128652ca95c62a5dac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:01:9b:13:bf:fc:c9:cd:7d:8f:f4:21:54:2c:
1f:1b:97:52:b9:ba:aa:08:ba:43:99:6d:ac:e2:23:
9a:6c:9e:cb:38:68:dd:93:db:dc:ff:11:db:13:01:
9c:e0:ea:83:35:3c:84:fe:6f:68:c0:90:67:f5:be:
ca:f6:1f:78:0b:70:4f:46:82:44:42:20:46:91:ac:
c6:c6:a9:fa:71:d2:86:a1:b7:e3:60:36:94:85:6b:
f2:c3:57:3b:c3:59:68:a7:10:1f:b3:e9:8d:82:20:
b9:ec:42:5b:58:89:60:f6:46:5c:9f:e9:26:f8:57:
19:a0:80:69:64:2f:5e:8b:92:7f:ef:77:64:95:58:
96:b0:13:bb:3f:80:33:a8:54:1e:7f:d2:4d:7b:72:
47:8e:0b:4e:53:bc:13:c0:b9:cb:8b:b3:2e:d6:a4:
b2:02:ec:11:eb:b8:e8:17:42:ca:8f:2a:89:db:05:
55:88:4e:76:20:a2:a3:01:be:ff:aa:f8:b9:b7:82:
b8:b8:c1:44:52:b7:45:a9:92:10:6d:13:10:19:02:
56:c9:0f:ca:3a:db:6b:24:f2:a3:b4:34:d1:fb:70:
93:c4:14:95:bb:99:2c:f3:f8:05:fd:04:d7:ec:c6:
53:2e:66:e5:8c:3e:64:ba:cb:65:2c:c7:4d:2c:c5:
f9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:EA:00:3D:C3:E5:7D:08:A3:30:EE:12:86:52:CA:95:C6:2A:5D:AC
X509v3 Authority Key Identifier:
keyid:20:82:0F:79:64:81:AC:0E:96:37:C9:62:41:45:97:B1:FE:22:7C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IIIPeWSBrA6WN8liQUWXsf4ifCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:c0:81:cf:27:60:3b:08:37:17:a6:50:14:db:53:81:e5:9c:
4f:a6:e5:35:cc:69:2a:7a:56:30:47:f2:32:0e:0c:9c:b2:d7:
5f:71:51:48:50:d3:44:ac:c4:a2:1f:1b:ea:e3:51:6f:64:99:
bd:28:c8:17:4e:b1:21:7e:31:0f:8d:96:05:15:f5:e3:70:60:
1b:87:cc:39:4f:17:0c:bd:fe:4f:a3:a8:05:75:b0:a3:d8:be:
fa:e0:ee:d7:0a:6a:25:bd:54:44:28:cf:73:f8:05:59:06:99:
d3:77:5e:3a:59:e8:03:13:bd:c0:3f:36:ad:4c:d1:42:cc:38:
dc:f1:43:d9:a4:5c:5c:9e:54:52:ef:c7:a8:10:84:c8:e9:9f:
5d:7e:e9:a8:c5:b9:18:83:0f:ae:e1:d9:46:37:93:f3:f8:69:
39:34:6f:57:b8:6d:09:fc:63:79:8b:71:fa:29:bb:f7:41:58:
2a:7c:27:0e:d4:43:5f:87:de:fc:bf:a9:43:6e:f0:3f:e8:90:
be:54:5b:a4:fe:29:5f:38:04:b4:d0:f0:af:d5:97:ef:40:b2:
6f:98:1a:62:8c:ef:46:1a:8f:76:15:fb:ab:be:db:56:4a:92:
75:f8:c9:a8:a6:cd:be:b8:d0:ff:bd:f5:65:7a:f6:e3:fb:3e:
62:e5:9c:93
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa/3QAG/5WOR86gzx2tOB4UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwODIwZjc5NjQ4MWFjMGU5NjM3Yzk2MjQxNDU5N2IxZmUy
MjdjMjQwHhcNMjUwNTExMTUwMDUzWhcNMjUwNTEyMTUwMDUzWjAzMTEwLwYDVQQD
Eyg0ZmVhMDAzZGMzZTU3ZDA4YTMzMGVlMTI4NjUyY2E5NWM2MmE1ZGFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArgGbE7/8yc19j/QhVCwfG5dSubqq
CLpDmW2s4iOabJ7LOGjdk9vc/xHbEwGc4OqDNTyE/m9owJBn9b7K9h94C3BPRoJE
QiBGkazGxqn6cdKGobfjYDaUhWvyw1c7w1lopxAfs+mNgiC57EJbWIlg9kZcn+km
+FcZoIBpZC9ei5J/73dklViWsBO7P4AzqFQef9JNe3JHjgtOU7wTwLnLi7Mu1qSy
AuwR67joF0LKjyqJ2wVViE52IKKjAb7/qvi5t4K4uMFEUrdFqZIQbRMQGQJWyQ/K
OttrJPKjtDTR+3CTxBSVu5ks8/gF/QTX7MZTLmbljD5kustlLMdNLMX5zQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE/qAD3D5X0IozDuEoZSypXGKl2sMB8GA1UdIwQY
MBaAFCCCD3lkgawOljfJYkFFl7H+InwkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUlJUGVXU0JyQTZXTjhsaVFVV1hzZjRpZkNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9iOThiOWYtYjU4MS00ZTNlLWFlOGEt
OTg3ZDg2OTU2NmY2LzEvSUlJUGVXU0JyQTZXTjhsaVFVV1hzZjRpZkNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi9iOThiOWYtYjU4MS00ZTNlLWFlOGEtOTg3ZDg2OTU2NmY2
LzEvSUlJUGVXU0JyQTZXTjhsaVFVV1hzZjRpZkNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI8CBzydg
Owg3F6ZQFNtTgeWcT6blNcxpKnpWMEfyMg4MnLLXX3FRSFDTRKzEoh8b6uNRb2SZ
vSjIF06xIX4xD42WBRX143BgG4fMOU8XDL3+T6OoBXWwo9i++uDu1wpqJb1URCjP
c/gFWQaZ03deOlnoAxO9wD82rUzRQsw43PFD2aRcXJ5UUu/HqBCEyOmfXX7pqMW5
GIMPruHZRjeT8/hpOTRvV7htCfxjeYtx+im790FYKnwnDtRDX4fe/L+pQ27wP+iQ
vlRbpP4pXzgEtNDwr9WX70Cyb5gaYozvRhqPdhX7q77bVkqSdfjJqKbNvrjQ/731
ZXr24/s+YuWckw==
-----END CERTIFICATE-----
Generated at Sun May 11 20:59:17 2025 by rpki-client