Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft
File: Icc6XY7GO-1lijj1wm8ZH91035I.mft (raw, json)
Hash identifier: XdA4lKYaa4w5XjAV4DnCox9Giu9VtItB+4zqFgw+R90=
Subject key identifier: 8A:6D:77:4D:3C:B6:A1:5F:6B:4C:36:EC:7B:8C:AD:1B:9B:76:C7:26
Authority key identifier: 21:C7:3A:5D:8E:C6:3B:ED:65:8A:38:F5:C2:6F:19:1F:DD:74:DF:92
Certificate issuer: /CN=21c73a5d8ec63bed658a38f5c26f191fdd74df92
Certificate serial: 01967868F4BF06A3DA501869C52DBE1D2C7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Icc6XY7GO-1lijj1wm8ZH91035I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft
Manifest number: 1512
Signing time: Sun 27 Apr 2025 18:01:06 +0000
Manifest this update: Sun 27 Apr 2025 18:01:06 +0000
Manifest next update: Mon 28 Apr 2025 18:01:06 +0000
Files and hashes: 1: 745x39IaKKbeM9M_OPciAoFxiI4.roa (hash: rIEFd72FIecG2+TT+EkabaQ2rf6+UODC9a0hMUMdVO0=)
2: Icc6XY7GO-1lijj1wm8ZH91035I.crl (hash: 4GNbBNFZvl2EHCOf9pB3gxbvTMAV91FNzYysbdVmrS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Icc6XY7GO-1lijj1wm8ZH91035I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:68:f4:bf:06:a3:da:50:18:69:c5:2d:be:1d:2c:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21c73a5d8ec63bed658a38f5c26f191fdd74df92
Validity
Not Before: Apr 27 18:01:06 2025 GMT
Not After : Apr 28 18:01:06 2025 GMT
Subject: CN=8a6d774d3cb6a15f6b4c36ec7b8cad1b9b76c726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:79:e0:26:58:8d:86:e6:10:d3:1e:a4:bd:cf:
d1:4f:eb:3f:55:40:23:4b:38:f2:d4:a7:87:3b:74:
35:d4:32:be:19:b9:c5:e0:65:4f:17:d2:6d:b2:33:
38:1c:c7:29:29:f9:b5:4e:94:a0:1a:a3:f5:f5:38:
78:c3:7b:12:75:7f:88:aa:78:f5:31:4e:b3:ff:c1:
80:37:e6:72:7f:d9:0f:88:20:15:1a:a6:ce:ff:b1:
8a:9d:b0:10:43:34:92:10:67:05:2a:1c:e4:19:42:
93:88:56:a4:b3:aa:b6:1d:31:4a:13:e8:4c:6f:e6:
ec:46:9f:cc:3d:ca:ce:76:c7:37:00:b6:fc:18:14:
64:79:9f:7c:39:8b:b4:0e:27:5a:25:45:88:ee:96:
04:da:82:a9:2c:d2:b5:3e:62:dd:80:8e:69:13:af:
c5:02:0b:41:ad:4f:d1:ae:23:96:e6:f7:07:a8:df:
04:a3:04:e5:3b:f2:b3:e9:06:d7:f8:66:c6:fc:be:
02:11:fc:17:16:ab:17:06:4a:fc:27:e7:5a:70:27:
9f:2f:64:a8:45:d6:ec:d1:d7:e4:df:c2:93:34:84:
a0:0c:22:3a:bd:b1:e8:f6:b0:ae:02:d1:b4:3b:12:
fa:a5:78:37:a0:93:90:f7:f6:a9:5a:3a:c6:13:a5:
7d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:6D:77:4D:3C:B6:A1:5F:6B:4C:36:EC:7B:8C:AD:1B:9B:76:C7:26
X509v3 Authority Key Identifier:
keyid:21:C7:3A:5D:8E:C6:3B:ED:65:8A:38:F5:C2:6F:19:1F:DD:74:DF:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Icc6XY7GO-1lijj1wm8ZH91035I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:60:32:33:4b:8c:97:f6:d8:f7:45:50:ee:87:df:6b:77:19:
ea:64:44:b1:c6:43:6a:f5:d2:fb:3c:56:4a:c7:62:0c:64:85:
35:7e:83:f9:fd:ff:a7:97:d1:2f:28:22:2b:3e:81:e6:d9:59:
14:38:3a:73:5d:4a:bb:11:7a:ed:13:81:d8:f1:71:db:e1:fa:
2e:7e:48:70:e4:a1:50:8e:06:71:2d:90:33:38:82:b8:ce:c9:
a5:7d:b1:aa:4c:ce:01:28:14:2c:7d:22:cb:39:43:10:b0:39:
96:67:00:6e:a7:e0:20:73:49:fe:03:a6:00:43:86:25:98:92:
4c:f0:df:d3:a2:dd:ee:4e:7c:35:6c:7a:c1:ef:a0:9a:7f:34:
84:89:20:02:b1:ec:7c:73:8f:bb:0c:ff:e8:40:66:27:2b:00:
57:b6:ec:c4:29:55:64:1e:33:b0:e2:04:18:95:91:6f:09:35:
50:fd:b7:75:d3:1f:5e:df:b8:ac:35:5b:1c:8d:14:07:2b:24:
19:40:23:86:1f:47:9b:22:28:bf:99:25:d4:78:e4:db:71:b4:
06:4f:40:4f:01:1b:ed:d5:40:47:ec:93:28:e1:0b:5f:20:4c:
aa:1c:27:79:68:fe:17:70:46:a8:cf:53:e8:21:aa:cd:46:43:
26:b3:ae:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ4aPS/BqPaUBhpxS2+HSx6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxYzczYTVkOGVjNjNiZWQ2NThhMzhmNWMyNmYxOTFmZGQ3
NGRmOTIwHhcNMjUwNDI3MTgwMTA2WhcNMjUwNDI4MTgwMTA2WjAzMTEwLwYDVQQD
Eyg4YTZkNzc0ZDNjYjZhMTVmNmI0YzM2ZWM3YjhjYWQxYjliNzZjNzI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwnngJliNhuYQ0x6kvc/RT+s/VUAj
Szjy1KeHO3Q11DK+GbnF4GVPF9JtsjM4HMcpKfm1TpSgGqP19Th4w3sSdX+Iqnj1
MU6z/8GAN+Zyf9kPiCAVGqbO/7GKnbAQQzSSEGcFKhzkGUKTiFaks6q2HTFKE+hM
b+bsRp/MPcrOdsc3ALb8GBRkeZ98OYu0DidaJUWI7pYE2oKpLNK1PmLdgI5pE6/F
AgtBrU/RriOW5vcHqN8EowTlO/Kz6QbX+GbG/L4CEfwXFqsXBkr8J+dacCefL2So
Rdbs0dfk38KTNISgDCI6vbHo9rCuAtG0OxL6pXg3oJOQ9/apWjrGE6V9fQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIptd008tqFfa0w27HuMrRubdscmMB8GA1UdIwQY
MBaAFCHHOl2OxjvtZYo49cJvGR/ddN+SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWNjNlhZN0dPLTFsaWpqMXdtOFpIOTEwMzVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9mODUwZWMtOTk1NC00ODVjLWFhMGIt
ZmQxMjBjMzFkYTcyLzEvSWNjNlhZN0dPLTFsaWpqMXdtOFpIOTEwMzVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi9mODUwZWMtOTk1NC00ODVjLWFhMGItZmQxMjBjMzFkYTcy
LzEvSWNjNlhZN0dPLTFsaWpqMXdtOFpIOTEwMzVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkWAyM0uM
l/bY90VQ7offa3cZ6mREscZDavXS+zxWSsdiDGSFNX6D+f3/p5fRLygiKz6B5tlZ
FDg6c11KuxF67ROB2PFx2+H6Ln5IcOShUI4GcS2QMziCuM7JpX2xqkzOASgULH0i
yzlDELA5lmcAbqfgIHNJ/gOmAEOGJZiSTPDf06Ld7k58NWx6we+gmn80hIkgArHs
fHOPuwz/6EBmJysAV7bsxClVZB4zsOIEGJWRbwk1UP23ddMfXt+4rDVbHI0UBysk
GUAjhh9HmyIov5kl1Hjk23G0Bk9ATwEb7dVAR+yTKOELXyBMqhwneWj+F3BGqM9T
6CGqzUZDJrOuPQ==
-----END CERTIFICATE-----
Generated at Sun Apr 27 19:46:03 2025 by rpki-client