Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
File: IAxw024BOwfk5tjsPqTuQTtKqpg.mft (raw, json)
Hash identifier: PseHd7ReAVepjBxNIgYDbIIsQWeYfIRQgIqkoKRsD+I=
Subject key identifier: 38:3C:DC:64:44:C9:59:DC:E2:9F:FE:FD:85:1C:62:4A:3F:E0:97:9F
Authority key identifier: 20:0C:70:D3:6E:01:3B:07:E4:E6:D8:EC:3E:A4:EE:41:3B:4A:AA:98
Certificate issuer: /CN=200c70d36e013b07e4e6d8ec3ea4ee413b4aaa98
Certificate serial: 01976BF4371D02AC5B7577D06AFF3CB89926
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IAxw024BOwfk5tjsPqTuQTtKqpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 01:00:56 +0000
Manifest this update: Sat 14 Jun 2025 01:00:56 +0000
Manifest next update: Sun 15 Jun 2025 01:00:56 +0000
Files and hashes: 1: IAxw024BOwfk5tjsPqTuQTtKqpg.crl (hash: l2chPqepDpZtx1qsosntmKvFSOkFfe+DhP5ADXM0yXA=)
2: xInhnEQ1Wnjyaeg0NstEg1xaXmc.roa (hash: v0sQzu+7Kta5k4gVJi492esLH7WHwA4RWeUkfyAHe34=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IAxw024BOwfk5tjsPqTuQTtKqpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:37:1d:02:ac:5b:75:77:d0:6a:ff:3c:b8:99:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=200c70d36e013b07e4e6d8ec3ea4ee413b4aaa98
Validity
Not Before: Jun 14 01:00:56 2025 GMT
Not After : Jun 15 01:00:56 2025 GMT
Subject: CN=383cdc6444c959dce29ffefd851c624a3fe0979f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:28:58:7f:99:f7:16:61:21:ce:cd:79:c7:e4:
33:0a:e3:cd:1b:42:71:83:42:9c:46:91:a7:1a:72:
f5:7f:a4:11:af:16:ce:92:94:b2:3d:59:03:b9:a9:
b8:cd:d3:46:8e:53:28:08:a7:5c:1b:8b:b7:a4:3a:
2c:73:73:63:12:b0:9c:82:fb:0b:5b:f4:c7:3a:07:
93:6f:59:24:81:f9:84:cf:2e:cb:0c:1e:c5:12:3c:
8e:ac:bd:da:52:d0:0a:b3:69:e1:82:23:c5:88:c2:
58:0e:d5:fe:64:7e:49:35:78:e0:96:cf:bd:d8:b4:
c8:20:a4:64:d7:10:b9:4e:43:18:2b:41:84:28:1e:
66:35:68:d2:80:84:53:61:8b:9c:43:69:0a:16:25:
4f:d9:8f:83:fa:b9:7e:25:39:82:83:5c:2a:ee:7a:
dc:d1:d6:41:27:18:bc:46:21:fd:54:23:ba:18:c3:
77:63:de:ae:0e:92:02:9b:f7:19:0e:53:e4:be:9a:
b3:7f:ce:a2:d6:ee:34:9b:19:25:aa:55:17:69:6b:
be:f8:78:0a:5a:2d:cf:6d:7f:9e:65:ec:0a:47:50:
a7:61:66:86:39:89:ff:e7:3a:dc:b7:a1:59:27:0d:
d4:3a:ff:cd:de:ee:d3:7f:a5:f4:9c:36:74:e5:ab:
e8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:3C:DC:64:44:C9:59:DC:E2:9F:FE:FD:85:1C:62:4A:3F:E0:97:9F
X509v3 Authority Key Identifier:
keyid:20:0C:70:D3:6E:01:3B:07:E4:E6:D8:EC:3E:A4:EE:41:3B:4A:AA:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IAxw024BOwfk5tjsPqTuQTtKqpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:44:f3:d4:c5:46:24:f5:f0:b0:7f:05:bc:64:63:7d:96:c7:
82:fb:90:19:fe:7f:81:de:f6:dd:d5:6a:2e:47:92:a2:c3:43:
73:2d:b2:b5:ee:73:c2:c2:ee:31:40:de:c7:06:c1:d9:b8:95:
91:c2:2c:a5:c0:4b:9e:84:ce:8b:39:78:2e:2d:00:a6:d1:75:
01:e5:51:97:3d:da:39:47:54:58:f5:62:5b:a3:41:81:b0:81:
67:18:3b:09:fd:e2:9e:8a:8f:ef:40:d1:56:81:2c:d0:5f:2d:
12:05:b6:8c:c0:03:c7:90:4f:1f:ac:d6:41:61:47:18:81:3f:
cf:03:dd:2c:8a:7a:33:77:ea:9d:f5:cd:a7:3c:c3:44:ce:d2:
2c:fc:20:66:ea:d2:d6:34:8e:24:f0:a8:e2:a2:70:ba:99:69:
c6:26:42:30:2e:67:07:b9:ad:cc:3e:de:43:38:ef:5c:9d:6b:
7b:d0:83:c9:3f:f6:9b:a7:d5:f0:3e:d2:ab:aa:6d:12:6e:a4:
57:39:95:79:4b:65:df:e0:88:8f:92:cc:07:87:86:16:7e:3e:
82:83:1b:b9:e7:45:0f:bf:3d:1e:e6:0a:c7:dd:44:53:8e:c0:
18:c9:1a:79:8b:32:45:23:4c:5f:a7:7d:9c:5a:39:58:f2:d6:
8f:e2:f2:e1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdr9DcdAqxbdXfQav88uJkmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwMGM3MGQzNmUwMTNiMDdlNGU2ZDhlYzNlYTRlZTQxM2I0
YWFhOTgwHhcNMjUwNjE0MDEwMDU2WhcNMjUwNjE1MDEwMDU2WjAzMTEwLwYDVQQD
EygzODNjZGM2NDQ0Yzk1OWRjZTI5ZmZlZmQ4NTFjNjI0YTNmZTA5NzlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ChYf5n3FmEhzs15x+QzCuPNG0Jx
g0KcRpGnGnL1f6QRrxbOkpSyPVkDuam4zdNGjlMoCKdcG4u3pDosc3NjErCcgvsL
W/THOgeTb1kkgfmEzy7LDB7FEjyOrL3aUtAKs2nhgiPFiMJYDtX+ZH5JNXjgls+9
2LTIIKRk1xC5TkMYK0GEKB5mNWjSgIRTYYucQ2kKFiVP2Y+D+rl+JTmCg1wq7nrc
0dZBJxi8RiH9VCO6GMN3Y96uDpICm/cZDlPkvpqzf86i1u40mxklqlUXaWu++HgK
Wi3PbX+eZewKR1CnYWaGOYn/5zrct6FZJw3UOv/N3u7Tf6X0nDZ05avoKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDg83GREyVnc4p/+/YUcYko/4JefMB8GA1UdIwQY
MBaAFCAMcNNuATsH5ObY7D6k7kE7SqqYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUF4dzAyNEJPd2ZrNXRqc1BxVHVRVHRLcXBnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9kNWVlMGQtNDc1Zi00MWQ3LTljMjUt
MTU4MDNmZmIxNzQ2LzEvSUF4dzAyNEJPd2ZrNXRqc1BxVHVRVHRLcXBnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi9kNWVlMGQtNDc1Zi00MWQ3LTljMjUtMTU4MDNmZmIxNzQ2
LzEvSUF4dzAyNEJPd2ZrNXRqc1BxVHVRVHRLcXBnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABUTz1MVG
JPXwsH8FvGRjfZbHgvuQGf5/gd723dVqLkeSosNDcy2yte5zwsLuMUDexwbB2biV
kcIspcBLnoTOizl4Li0AptF1AeVRlz3aOUdUWPViW6NBgbCBZxg7Cf3inoqP70DR
VoEs0F8tEgW2jMADx5BPH6zWQWFHGIE/zwPdLIp6M3fqnfXNpzzDRM7SLPwgZurS
1jSOJPCo4qJwuplpxiZCMC5nB7mtzD7eQzjvXJ1re9CDyT/2m6fV8D7Sq6ptEm6k
VzmVeUtl3+CIj5LMB4eGFn4+goMbuedFD789HuYKx91EU47AGMkaeYsyRSNMX6d9
nFo5WPLWj+Ly4Q==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:38:59 2025 by rpki-client