Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
File: iBmVbdzq4CLP4SPaNzxrERZANo0.mft (raw, json)
Hash identifier: Rlm7gv3gih0WO2NjKT7C8yEox2q8xkU7XNYu+5kGqJA=
Subject key identifier: F3:01:30:79:29:A4:5D:8E:27:83:6E:E2:93:A8:E5:30:6F:DD:6A:4F
Authority key identifier: 88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
Certificate issuer: /CN=8819956ddceae022cfe123da373c6b111640368d
Certificate serial: 01968A6F2458F84E3CFF2B487D67100B2C18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
Manifest number: 112B
Signing time: Thu 01 May 2025 06:01:01 +0000
Manifest this update: Thu 01 May 2025 06:01:01 +0000
Manifest next update: Fri 02 May 2025 06:01:01 +0000
Files and hashes: 1: JZQSwG4wbJPMZQTbI1xSGViuvto.roa (hash: 7nxSYve4K7+DiIBeaX8vSWVp7u4kFJYyJFHRolTK/UI=)
2: iBmVbdzq4CLP4SPaNzxrERZANo0.crl (hash: t5OQIwiB5O82iNJrRVua/zW+zj/+gHYJobzPtMDxB8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 06:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8a:6f:24:58:f8:4e:3c:ff:2b:48:7d:67:10:0b:2c:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8819956ddceae022cfe123da373c6b111640368d
Validity
Not Before: May 1 06:01:01 2025 GMT
Not After : May 2 06:01:01 2025 GMT
Subject: CN=f301307929a45d8e27836ee293a8e5306fdd6a4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ff:6e:a1:69:a2:35:58:86:5f:d4:7b:4b:00:
5b:9e:40:3b:61:17:40:72:ab:61:b9:bb:a7:66:ee:
1c:87:60:5b:d8:ea:99:88:27:cc:38:5d:39:1b:4f:
0b:82:a4:81:1b:0c:b7:90:92:f2:1f:88:7c:57:17:
b0:2e:05:e1:e7:e8:c1:8f:83:a1:57:36:56:5b:7c:
ac:ba:15:a3:44:1e:98:1b:29:60:f1:67:3c:37:4f:
bd:0d:f8:e1:b6:7f:88:75:9f:9c:14:9a:eb:70:af:
c0:b3:28:91:07:43:e8:09:47:48:c2:93:3c:ed:fb:
c7:b7:67:81:3c:c4:61:f9:6b:cd:88:df:9d:81:6b:
9a:9a:99:18:9a:71:77:c1:eb:ec:b7:d0:e6:c7:01:
14:54:a1:50:95:ac:59:98:3d:0d:6e:7a:74:78:2a:
02:5b:7d:e2:6f:c1:d5:99:82:61:77:ec:e8:72:63:
ad:5d:82:a6:dd:39:88:2d:27:28:7d:72:41:ad:ad:
b8:1b:23:bc:c5:35:2e:b3:ab:05:00:63:f6:02:ca:
45:48:40:88:a1:0b:9c:67:4d:f3:1f:02:be:6f:03:
bc:20:07:01:9f:d0:72:0d:15:2e:7b:10:9f:ce:20:
b9:6a:ba:ee:ee:72:41:b9:d1:64:76:23:47:1d:59:
6f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:01:30:79:29:A4:5D:8E:27:83:6E:E2:93:A8:E5:30:6F:DD:6A:4F
X509v3 Authority Key Identifier:
keyid:88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:88:67:5f:3e:28:d4:ac:72:c4:a4:d4:68:13:af:4c:60:a8:
04:11:72:15:6f:cb:e9:69:13:26:d2:58:f7:e2:75:d0:c6:af:
a9:6f:c6:79:bf:eb:aa:22:48:10:11:20:69:36:ba:70:21:a3:
9e:5d:6d:9d:69:5c:1b:f5:c7:c9:50:ca:cf:a7:4c:ea:89:71:
f1:92:50:ab:06:00:8b:4c:73:a1:49:c8:e2:8c:f7:df:6a:1f:
34:b1:9e:0a:28:ca:60:84:36:41:69:9f:64:88:3b:e4:b9:b9:
44:bf:30:e9:62:f8:15:7f:60:08:27:f6:e1:eb:ae:41:90:26:
0b:69:92:00:8b:9e:1f:db:2b:c3:8e:c9:07:9f:f7:cb:a2:89:
f9:ca:8b:29:8a:67:50:2b:c2:ea:57:61:75:e0:1e:e9:6c:6d:
22:10:d5:76:81:0e:67:7a:96:a6:2b:15:a5:40:37:ad:ef:fa:
d8:36:f5:b1:1c:56:ad:14:fc:df:a5:b5:1d:df:28:2a:a3:b1:
f3:f9:8f:c9:6c:6e:d1:53:d6:07:88:26:76:b4:f6:0f:72:03:
3b:ba:56:fe:c2:01:cd:2d:02:1e:53:70:02:c4:65:ad:45:23:
95:38:7d:19:ce:8f:97:ef:d9:7c:a0:2f:a6:91:ae:68:3c:e3:
ae:64:cf:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaKbyRY+E48/ytIfWcQCywYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4MTk5NTZkZGNlYWUwMjJjZmUxMjNkYTM3M2M2YjExMTY0
MDM2OGQwHhcNMjUwNTAxMDYwMTAxWhcNMjUwNTAyMDYwMTAxWjAzMTEwLwYDVQQD
EyhmMzAxMzA3OTI5YTQ1ZDhlMjc4MzZlZTI5M2E4ZTUzMDZmZGQ2YTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmv9uoWmiNViGX9R7SwBbnkA7YRdA
cqthubunZu4ch2Bb2OqZiCfMOF05G08LgqSBGwy3kJLyH4h8VxewLgXh5+jBj4Oh
VzZWW3ysuhWjRB6YGylg8Wc8N0+9Dfjhtn+IdZ+cFJrrcK/AsyiRB0PoCUdIwpM8
7fvHt2eBPMRh+WvNiN+dgWuampkYmnF3wevst9DmxwEUVKFQlaxZmD0Nbnp0eCoC
W33ib8HVmYJhd+zocmOtXYKm3TmILScofXJBra24GyO8xTUus6sFAGP2AspFSECI
oQucZ03zHwK+bwO8IAcBn9ByDRUuexCfziC5arru7nJBudFkdiNHHVlvDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPMBMHkppF2OJ4Nu4pOo5TBv3WpPMB8GA1UdIwQY
MBaAFIgZlW3c6uAiz+Ej2jc8axEWQDaNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUJtVmJkenE0Q0xQNFNQYU56eHJFUlpBTm8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy85ODg3NjgtZjE3Yi00ZjU5LWJlMDkt
MmRlYjE0YzI5MGVkLzEvaUJtVmJkenE0Q0xQNFNQYU56eHJFUlpBTm8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy85ODg3NjgtZjE3Yi00ZjU5LWJlMDktMmRlYjE0YzI5MGVk
LzEvaUJtVmJkenE0Q0xQNFNQYU56eHJFUlpBTm8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG4hnXz4o
1KxyxKTUaBOvTGCoBBFyFW/L6WkTJtJY9+J10MavqW/Geb/rqiJIEBEgaTa6cCGj
nl1tnWlcG/XHyVDKz6dM6olx8ZJQqwYAi0xzoUnI4oz332ofNLGeCijKYIQ2QWmf
ZIg75Lm5RL8w6WL4FX9gCCf24euuQZAmC2mSAIueH9srw47JB5/3y6KJ+cqLKYpn
UCvC6ldhdeAe6WxtIhDVdoEOZ3qWpisVpUA3re/62Db1sRxWrRT836W1Hd8oKqOx
8/mPyWxu0VPWB4gmdrT2D3IDO7pW/sIBzS0CHlNwAsRlrUUjlTh9Gc6Pl+/ZfKAv
ppGuaDzjrmTPKg==
-----END CERTIFICATE-----
Generated at Thu May 1 12:02:26 2025 by rpki-client