Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
File: Igmk3BOlMEp6okvhwXi6QuF5L4U.mft (raw, json)
Hash identifier: qT3HmNcbNk1HEvpXVBqWJ5M3giPdUnNP3zDWqdyz46c=
Subject key identifier: 81:8B:0B:8E:B8:15:22:5F:B4:B1:C8:E6:F6:55:06:7B:3A:03:7D:93
Authority key identifier: 22:09:A4:DC:13:A5:30:4A:7A:A2:4B:E1:C1:78:BA:42:E1:79:2F:85
Certificate issuer: /CN=2209a4dc13a5304a7aa24be1c178ba42e1792f85
Certificate serial: 01967CE9F6E7C6B63F06FA657C2598D004F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
Manifest number: F7
Signing time: Mon 28 Apr 2025 15:00:29 +0000
Manifest this update: Mon 28 Apr 2025 15:00:29 +0000
Manifest next update: Tue 29 Apr 2025 15:00:29 +0000
Files and hashes: 1: Igmk3BOlMEp6okvhwXi6QuF5L4U.crl (hash: 8FyYUJEM+guVyLheZWW8q6kr3Bwvk3iPhyLMRtyc7CI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:e9:f6:e7:c6:b6:3f:06:fa:65:7c:25:98:d0:04:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2209a4dc13a5304a7aa24be1c178ba42e1792f85
Validity
Not Before: Apr 28 15:00:29 2025 GMT
Not After : Apr 29 15:00:29 2025 GMT
Subject: CN=818b0b8eb815225fb4b1c8e6f655067b3a037d93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:21:02:23:eb:35:4c:94:ec:8c:4b:a7:00:3c:
b8:eb:a8:c6:cd:2a:ad:b3:67:4d:0a:29:3b:b5:51:
a8:db:1f:4d:13:7e:92:2d:1f:7b:14:43:85:f3:6f:
93:10:e8:cc:bb:a1:66:7f:48:81:fa:95:c4:3a:f4:
c6:95:ca:1f:10:a0:8a:5f:5b:b8:44:90:de:8a:a9:
1c:2e:b3:83:bb:b5:3a:22:5e:3c:50:6b:1f:a6:6b:
39:7d:20:aa:c0:6f:ce:cd:e9:23:ea:95:06:f9:32:
83:33:dd:08:b0:e3:c0:78:dc:23:3d:07:e9:65:bf:
a8:5f:02:ec:d2:b8:44:8a:ff:21:cb:a3:24:ef:c3:
a1:9b:3a:21:45:ef:f4:7e:c3:27:06:e5:ca:4b:02:
fc:e1:09:f7:98:e9:c5:39:2f:01:5f:e9:14:e1:52:
39:5b:ac:2f:eb:7c:b5:fc:01:52:58:f0:87:80:f4:
39:db:69:30:29:dc:30:e6:0d:71:30:1f:23:6b:62:
b8:50:d0:aa:9a:df:c2:e3:33:b1:5a:cc:3b:08:dd:
56:e2:22:4e:9d:d3:47:74:f2:e2:4f:f0:57:34:ab:
13:59:ac:50:15:b7:8f:ad:a2:43:a2:e0:45:db:8c:
7a:6a:db:66:1d:c3:53:a9:e7:4f:51:6b:ea:62:39:
2c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:8B:0B:8E:B8:15:22:5F:B4:B1:C8:E6:F6:55:06:7B:3A:03:7D:93
X509v3 Authority Key Identifier:
keyid:22:09:A4:DC:13:A5:30:4A:7A:A2:4B:E1:C1:78:BA:42:E1:79:2F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:54:54:a2:3d:fc:dd:3e:93:90:63:d2:4c:d2:4b:4a:84:07:
70:8e:12:5f:34:c1:9b:0d:ac:a2:e4:85:3f:b7:c0:be:1b:63:
6e:76:d4:30:9f:05:f5:98:b7:2d:59:b8:29:1c:3c:59:09:f7:
f2:f5:7a:20:f2:9e:85:11:cd:8e:22:5d:ed:72:f9:e5:13:25:
a2:f6:ce:b6:b1:35:55:16:79:36:0d:b3:9c:be:ce:eb:f4:5f:
07:bb:b7:bb:0b:3d:40:49:53:ff:3d:ce:fc:96:34:77:1b:5d:
b2:14:32:ed:d1:26:9c:05:1b:24:ab:fc:c3:76:5f:15:27:49:
cf:33:61:d2:a2:86:44:88:67:f1:6f:52:ce:56:25:10:dc:48:
ba:d8:93:1a:8a:a4:13:eb:d9:11:0b:80:b5:a7:63:52:58:d9:
a2:94:19:ec:d0:49:73:0f:78:03:ab:bf:30:05:3a:6a:8f:eb:
55:4e:3f:9d:15:6b:95:9e:db:a8:a9:23:49:e0:58:a0:c4:b5:
fe:2d:14:e9:8a:f6:14:91:f0:73:a8:7a:23:df:94:44:23:8d:
36:b1:42:88:ff:f8:9d:ab:43:8f:c9:9d:ca:81:6e:a0:e9:13:
7a:a8:90:bd:d1:69:e4:78:3c:03:fc:15:d6:e3:25:44:21:88:
1f:d5:e5:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ86fbnxrY/BvplfCWY0AT3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyMDlhNGRjMTNhNTMwNGE3YWEyNGJlMWMxNzhiYTQyZTE3
OTJmODUwHhcNMjUwNDI4MTUwMDI5WhcNMjUwNDI5MTUwMDI5WjAzMTEwLwYDVQQD
Eyg4MThiMGI4ZWI4MTUyMjVmYjRiMWM4ZTZmNjU1MDY3YjNhMDM3ZDkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxSECI+s1TJTsjEunADy466jGzSqt
s2dNCik7tVGo2x9NE36SLR97FEOF82+TEOjMu6Fmf0iB+pXEOvTGlcofEKCKX1u4
RJDeiqkcLrODu7U6Il48UGsfpms5fSCqwG/Ozekj6pUG+TKDM90IsOPAeNwjPQfp
Zb+oXwLs0rhEiv8hy6Mk78OhmzohRe/0fsMnBuXKSwL84Qn3mOnFOS8BX+kU4VI5
W6wv63y1/AFSWPCHgPQ522kwKdww5g1xMB8ja2K4UNCqmt/C4zOxWsw7CN1W4iJO
ndNHdPLiT/BXNKsTWaxQFbePraJDouBF24x6attmHcNTqedPUWvqYjks7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIGLC464FSJftLHI5vZVBns6A32TMB8GA1UdIwQY
MBaAFCIJpNwTpTBKeqJL4cF4ukLheS+FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWdtazNCT2xNRXA2b2t2aHdYaTZRdUY1TDRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9lNDg2MmEtNTExZS00YzBjLTk1MWYt
NjhhZmQ0NzQ1MTQ5LzEvSWdtazNCT2xNRXA2b2t2aHdYaTZRdUY1TDRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9lNDg2MmEtNTExZS00YzBjLTk1MWYtNjhhZmQ0NzQ1MTQ5
LzEvSWdtazNCT2xNRXA2b2t2aHdYaTZRdUY1TDRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX1RUoj38
3T6TkGPSTNJLSoQHcI4SXzTBmw2souSFP7fAvhtjbnbUMJ8F9Zi3LVm4KRw8WQn3
8vV6IPKehRHNjiJd7XL55RMlovbOtrE1VRZ5Ng2znL7O6/RfB7u3uws9QElT/z3O
/JY0dxtdshQy7dEmnAUbJKv8w3ZfFSdJzzNh0qKGRIhn8W9SzlYlENxIutiTGoqk
E+vZEQuAtadjUljZopQZ7NBJcw94A6u/MAU6ao/rVU4/nRVrlZ7bqKkjSeBYoMS1
/i0U6Yr2FJHwc6h6I9+URCONNrFCiP/4natDj8mdyoFuoOkTeqiQvdFp5Hg8A/wV
1uMlRCGIH9Xlsg==
-----END CERTIFICATE-----
Generated at Mon Apr 28 22:43:04 2025 by rpki-client