Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
File: iOuqLxdpo932X4c9wx81HvB4rSU.mft (raw, json)
Hash identifier: hlnw2ltgSAqxOs64ISgsslo4KnDIzSl3nbkaJCLTFdI=
Subject key identifier: AD:29:9E:A0:26:0A:99:AF:6A:D2:A4:F9:3E:43:43:08:E7:82:8F:ED
Authority key identifier: 88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
Certificate issuer: /CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Certificate serial: 01969B62755A133B40A1C22D34EAD1921C29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
Manifest number: 0CC0
Signing time: Sun 04 May 2025 13:00:43 +0000
Manifest this update: Sun 04 May 2025 13:00:43 +0000
Manifest next update: Mon 05 May 2025 13:00:43 +0000
Files and hashes: 1: P5TwA4gqR6DNAZ9Tx38K6wVBeSw.roa (hash: JFHWlXs6ts8+WEohOsphMs0bmJPDZeURLkqEXMqad1U=)
2: iOuqLxdpo932X4c9wx81HvB4rSU.crl (hash: Ak86QMSL7lTlzPDVuY2W+JAi6sK1eLtOmQO3LX1ocN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 13:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9b:62:75:5a:13:3b:40:a1:c2:2d:34:ea:d1:92:1c:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Validity
Not Before: May 4 13:00:43 2025 GMT
Not After : May 5 13:00:43 2025 GMT
Subject: CN=ad299ea0260a99af6ad2a4f93e434308e7828fed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c8:a3:b3:4a:a1:ff:50:45:44:72:fa:52:e1:
26:69:35:db:6b:19:2c:78:84:9f:ef:41:d3:e0:45:
5b:bf:6d:6c:e2:6b:b8:1f:22:84:18:37:0b:5e:f1:
f1:f4:c7:4f:3f:6a:32:65:80:3e:e7:72:fa:46:53:
21:c5:fb:29:da:af:4b:75:71:ac:d1:06:40:42:c0:
a2:aa:9b:68:3f:74:2f:ca:67:ef:90:e4:2e:38:8a:
12:63:b4:96:c8:d2:de:72:ac:e1:6a:c2:b5:76:da:
ce:bb:b2:e1:c9:8a:0b:f9:3b:18:33:88:66:23:49:
47:8d:0f:25:47:ac:2a:56:07:d9:61:a2:85:ab:c3:
ee:3e:ba:7e:86:5e:1c:7c:4d:87:7f:d1:b4:34:ec:
09:af:26:70:82:d7:38:54:9d:cb:95:32:95:e1:a6:
f2:89:91:fa:e3:17:87:ca:14:e3:43:ae:1e:5a:51:
4a:92:93:28:b1:b9:87:25:54:ba:96:1d:21:28:f7:
8f:52:c8:da:86:a3:01:bb:e9:7b:c8:7a:fe:8e:89:
6e:ad:fc:56:28:e5:7a:e8:d6:a8:76:38:8b:ad:a1:
7a:c8:bd:9f:8a:aa:ec:cd:73:3f:bb:2a:b9:1f:d0:
cf:4b:79:0a:70:77:30:50:89:ce:a8:ba:80:09:e7:
b8:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:29:9E:A0:26:0A:99:AF:6A:D2:A4:F9:3E:43:43:08:E7:82:8F:ED
X509v3 Authority Key Identifier:
keyid:88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:d8:31:cb:95:27:41:f7:f4:24:fc:eb:06:95:47:82:47:4c:
25:2a:c1:24:fd:f6:46:80:2f:b7:53:1e:32:77:54:1a:34:fc:
97:d4:a4:bf:be:87:4f:cc:0c:cf:26:56:f5:29:c1:9d:fe:2e:
c9:cb:22:5b:1c:34:1a:9b:d3:f5:89:f7:dc:96:40:61:94:f2:
7f:9b:d0:2c:da:94:7c:72:fa:d8:3a:c1:3b:62:49:78:25:f2:
8b:54:3b:81:b7:a1:ce:d1:d4:03:0b:05:2a:3b:c8:20:e8:1d:
33:77:cb:76:f3:5f:b5:e3:d5:ab:8e:ac:c9:3e:c4:f5:86:19:
74:da:97:30:83:ee:7d:c5:20:72:ad:49:a3:63:01:ff:20:d9:
2d:9b:dc:55:1f:30:08:a9:b7:7a:85:49:72:b0:97:69:e2:e4:
b8:27:e8:ba:5b:1c:40:ff:c8:cc:6b:60:12:27:6d:32:29:82:
8d:0b:49:80:f9:4e:ee:39:c7:2a:af:bc:62:1f:fe:ef:be:8b:
d8:88:7e:f9:d0:39:3c:79:28:02:68:30:8e:b5:4b:f6:0a:1b:
4a:8c:5b:52:d6:9b:92:1a:83:1d:f2:f2:1b:de:0f:d9:48:45:
a6:ff:6d:de:f2:ec:fd:ca:53:27:ef:38:fa:2e:2f:ff:f1:07:
8e:6e:25:01
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZabYnVaEztAocItNOrRkhwpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ZWJhYTJmMTc2OWEzZGRmNjVmODczZGMzMWYzNTFlZjA3
OGFkMjUwHhcNMjUwNTA0MTMwMDQzWhcNMjUwNTA1MTMwMDQzWjAzMTEwLwYDVQQD
EyhhZDI5OWVhMDI2MGE5OWFmNmFkMmE0ZjkzZTQzNDMwOGU3ODI4ZmVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcijs0qh/1BFRHL6UuEmaTXbaxks
eISf70HT4EVbv21s4mu4HyKEGDcLXvHx9MdPP2oyZYA+53L6RlMhxfsp2q9LdXGs
0QZAQsCiqptoP3QvymfvkOQuOIoSY7SWyNLecqzhasK1dtrOu7LhyYoL+TsYM4hm
I0lHjQ8lR6wqVgfZYaKFq8PuPrp+hl4cfE2Hf9G0NOwJryZwgtc4VJ3LlTKV4aby
iZH64xeHyhTjQ64eWlFKkpMosbmHJVS6lh0hKPePUsjahqMBu+l7yHr+jolurfxW
KOV66NaodjiLraF6yL2fiqrszXM/uyq5H9DPS3kKcHcwUInOqLqACee4WwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK0pnqAmCpmvatKk+T5DQwjngo/tMB8GA1UdIwQY
MBaAFIjrqi8XaaPd9l+HPcMfNR7weK0lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaU91cUx4ZHBvOTMyWDRjOXd4ODFIdkI0clNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy84YmZjYzItNWRlZi00NGFhLTg3YzEt
MmJiZjQ2ODg0NTg1LzEvaU91cUx4ZHBvOTMyWDRjOXd4ODFIdkI0clNVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy84YmZjYzItNWRlZi00NGFhLTg3YzEtMmJiZjQ2ODg0NTg1
LzEvaU91cUx4ZHBvOTMyWDRjOXd4ODFIdkI0clNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG9gxy5Un
Qff0JPzrBpVHgkdMJSrBJP32RoAvt1MeMndUGjT8l9Skv76HT8wMzyZW9SnBnf4u
ycsiWxw0GpvT9Yn33JZAYZTyf5vQLNqUfHL62DrBO2JJeCXyi1Q7gbehztHUAwsF
KjvIIOgdM3fLdvNftePVq46syT7E9YYZdNqXMIPufcUgcq1Jo2MB/yDZLZvcVR8w
CKm3eoVJcrCXaeLkuCfoulscQP/IzGtgEidtMimCjQtJgPlO7jnHKq+8Yh/+776L
2Ih++dA5PHkoAmgwjrVL9gobSoxbUtabkhqDHfLyG94P2UhFpv9t3vLs/cpTJ+84
+i4v//EHjm4lAQ==
-----END CERTIFICATE-----
Generated at Sun May 4 20:23:37 2025 by rpki-client