Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
File: i4gBVDgSBAR31HRCKUZshTfUUXE.mft (raw, json)
Hash identifier: L7X971z20qmRQxM2JqCdx5EoxS46O53WsNtPk+zBMok=
Subject key identifier: 02:99:D2:3B:6B:F0:DF:B8:E2:24:01:8A:30:DA:76:2A:B6:CA:36:9F
Authority key identifier: 8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
Certificate issuer: /CN=8b8801543812040477d4744229466c8537d45171
Certificate serial: 0196789FA1A545A77F430D5AC22D43D6D178
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
Manifest number: 0C59
Signing time: Sun 27 Apr 2025 19:00:49 +0000
Manifest this update: Sun 27 Apr 2025 19:00:49 +0000
Manifest next update: Mon 28 Apr 2025 19:00:49 +0000
Files and hashes: 1: CDrnNbtJLaCL50xwnqrzUWhQ_9k.roa (hash: xkyChTjHPfmap3pEfIzmPahUIANDsQxEAOedvER2SvU=)
2: i4gBVDgSBAR31HRCKUZshTfUUXE.crl (hash: JmPVAGsmM+gb0niMT4xYHtScsQoLf0qQuJuFbg+f888=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 19:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:9f:a1:a5:45:a7:7f:43:0d:5a:c2:2d:43:d6:d1:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b8801543812040477d4744229466c8537d45171
Validity
Not Before: Apr 27 19:00:49 2025 GMT
Not After : Apr 28 19:00:49 2025 GMT
Subject: CN=0299d23b6bf0dfb8e224018a30da762ab6ca369f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:86:2d:bf:e2:8e:f0:39:68:64:94:ad:e8:a0:
bd:13:f6:67:dc:25:a9:84:5e:fc:a2:46:52:2c:d2:
bd:de:36:6b:4f:ce:12:92:29:5c:d0:67:e1:bb:96:
62:c4:71:65:46:d5:a7:02:7a:26:19:93:84:be:16:
3b:ff:39:e8:24:4b:5e:60:7c:e6:69:2a:1d:24:2e:
a5:5e:e9:48:37:66:d6:4f:2d:36:c9:87:2c:08:bb:
e4:da:6b:b0:2d:91:95:c3:54:ad:90:d2:41:cc:6a:
d3:f2:8b:8c:aa:96:fe:69:19:b0:12:bc:53:69:06:
4e:50:2e:45:b6:c0:12:b4:60:1d:b9:30:4e:43:b5:
69:19:57:e8:3c:9c:70:7b:9e:67:ba:9a:5f:cc:75:
77:c1:e6:ec:c8:54:7d:02:a2:f9:dd:92:ed:b1:58:
51:e1:01:e7:a8:cb:d7:22:26:83:b2:fb:47:29:bc:
6a:8d:fd:da:3e:3a:07:9b:b5:5f:20:12:f4:50:35:
de:5e:e4:4c:7e:e9:e1:32:76:ab:07:42:af:84:9b:
4e:1b:e9:d8:7d:31:df:d0:16:bf:e2:89:e0:ee:c9:
e7:3c:35:3e:94:db:60:de:9a:31:ea:b1:ec:9c:da:
ca:4a:ab:49:c8:3d:d4:aa:fb:e8:3d:1a:a3:e6:6c:
b0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:99:D2:3B:6B:F0:DF:B8:E2:24:01:8A:30:DA:76:2A:B6:CA:36:9F
X509v3 Authority Key Identifier:
keyid:8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:7b:e6:4f:94:f0:92:82:b3:a5:f6:fa:ea:74:f1:ef:aa:8b:
e8:fc:2e:67:bf:30:00:17:8c:17:98:bd:b2:31:15:b6:c5:5d:
af:69:e8:4b:9b:79:6e:fc:01:48:77:01:cd:7c:c0:dd:f2:cd:
e7:02:5b:79:d1:a2:f3:ae:f6:af:3d:0b:7c:7d:b8:e2:f1:78:
91:1b:d7:df:fc:c0:73:6b:cf:21:1e:22:e5:52:d8:a7:49:0d:
94:6e:b7:f2:68:54:f5:df:ff:b8:7d:44:f4:a8:48:84:e8:40:
74:4f:38:84:a3:b1:56:ec:c3:35:db:af:ee:b1:1d:17:af:79:
fc:c8:59:69:2c:af:b5:55:9e:c8:55:5a:08:ce:f2:95:9d:41:
6a:28:a7:7b:24:a2:0e:35:e5:26:c7:15:27:5d:7a:93:43:8a:
75:0e:4a:3e:cc:1d:ee:38:42:b3:5c:5f:6d:bd:45:cb:ed:ef:
d9:c6:90:06:93:32:f9:b9:0c:d7:dc:0d:4b:c5:f3:d8:d3:f5:
c1:ec:23:37:df:ab:58:13:1e:77:b2:7a:cc:a0:eb:f8:f7:d4:
83:5f:7f:50:5e:26:ee:6d:d3:5f:57:bd:6b:6c:66:c3:78:e9:
da:8d:ef:0e:d5:8e:8d:38:6d:d6:7d:5e:9a:cc:87:19:11:1c:
f6:d7:8a:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ4n6GlRad/Qw1awi1D1tF4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiODgwMTU0MzgxMjA0MDQ3N2Q0NzQ0MjI5NDY2Yzg1Mzdk
NDUxNzEwHhcNMjUwNDI3MTkwMDQ5WhcNMjUwNDI4MTkwMDQ5WjAzMTEwLwYDVQQD
EygwMjk5ZDIzYjZiZjBkZmI4ZTIyNDAxOGEzMGRhNzYyYWI2Y2EzNjlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9IYtv+KO8DloZJSt6KC9E/Zn3CWp
hF78okZSLNK93jZrT84Skilc0Gfhu5ZixHFlRtWnAnomGZOEvhY7/znoJEteYHzm
aSodJC6lXulIN2bWTy02yYcsCLvk2muwLZGVw1StkNJBzGrT8ouMqpb+aRmwErxT
aQZOUC5FtsAStGAduTBOQ7VpGVfoPJxwe55nuppfzHV3websyFR9AqL53ZLtsVhR
4QHnqMvXIiaDsvtHKbxqjf3aPjoHm7VfIBL0UDXeXuRMfunhMnarB0KvhJtOG+nY
fTHf0Ba/4ong7snnPDU+lNtg3pox6rHsnNrKSqtJyD3UqvvoPRqj5mywMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAKZ0jtr8N+44iQBijDadiq2yjafMB8GA1UdIwQY
MBaAFIuIAVQ4EgQEd9R0QilGbIU31FFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTRnQlZEZ1NCQVIzMUhSQ0tVWnNoVGZVVVhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS84OWJiNzEtM2ZlOS00MmQyLWE3M2It
MTNhZTk4YWE3ZDMzLzEvaTRnQlZEZ1NCQVIzMUhSQ0tVWnNoVGZVVVhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS84OWJiNzEtM2ZlOS00MmQyLWE3M2ItMTNhZTk4YWE3ZDMz
LzEvaTRnQlZEZ1NCQVIzMUhSQ0tVWnNoVGZVVVhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABXvmT5Tw
koKzpfb66nTx76qL6PwuZ78wABeMF5i9sjEVtsVdr2noS5t5bvwBSHcBzXzA3fLN
5wJbedGi8672rz0LfH244vF4kRvX3/zAc2vPIR4i5VLYp0kNlG638mhU9d//uH1E
9KhIhOhAdE84hKOxVuzDNduv7rEdF695/MhZaSyvtVWeyFVaCM7ylZ1BaiineySi
DjXlJscVJ116k0OKdQ5KPswd7jhCs1xfbb1Fy+3v2caQBpMy+bkM19wNS8Xz2NP1
wewjN9+rWBMed7J6zKDr+PfUg19/UF4m7m3TX1e9a2xmw3jp2o3vDtWOjTht1n1e
msyHGREc9teK3A==
-----END CERTIFICATE-----
Generated at Mon Apr 28 03:24:33 2025 by rpki-client