Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
File: ih8K1VcrribjnIdAxoqPu0buSGQ.mft (raw, json)
Hash identifier: NUIIbwExc+zdlNn0tNGDuUUHHhUiyHk9l51gL8Q44bU=
Subject key identifier: 1A:D9:94:33:16:D3:B1:12:C6:61:07:A6:C7:54:AD:91:2D:BB:F7:91
Authority key identifier: 8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
Certificate issuer: /CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Certificate serial: 0196ACC3BDCD8B05757191ACB69E35DB5A65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
Manifest number: 08BC
Signing time: Wed 07 May 2025 22:00:31 +0000
Manifest this update: Wed 07 May 2025 22:00:31 +0000
Manifest next update: Thu 08 May 2025 22:00:31 +0000
Files and hashes: 1: ih8K1VcrribjnIdAxoqPu0buSGQ.crl (hash: TB28NnEEPiWYLH0zHJBeQmbwXyXr2vf5DcB0/smNbQg=)
2: t1D8WcZZnzqJuCrc2wQ7cw0wRmQ.roa (hash: vevggXMbyMvGr4MH92p9uOdv+lx11daC42qLpllimKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 20:38:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ac:c3:bd:cd:8b:05:75:71:91:ac:b6:9e:35:db:5a:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Validity
Not Before: May 7 22:00:31 2025 GMT
Not After : May 8 22:00:31 2025 GMT
Subject: CN=1ad9943316d3b112c66107a6c754ad912dbbf791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:40:bf:30:e6:dc:02:aa:af:c1:40:7f:e1:71:
54:62:fb:cd:67:be:2c:84:d1:7a:0c:e1:4b:88:32:
6c:fb:ef:49:a8:73:74:4c:c2:3d:4b:20:6a:bb:17:
74:6f:06:6f:c9:56:d3:8c:84:5f:91:05:f1:a0:d3:
16:29:1c:a7:1e:5e:19:77:af:a9:ed:b8:8d:8d:96:
59:bc:53:11:61:63:7f:fb:13:55:e9:5d:54:7d:35:
2c:2b:b5:dd:9b:6f:7f:10:77:4d:7b:15:8f:e7:d2:
f3:51:95:a5:71:9b:90:fb:8d:17:c0:08:67:3e:9f:
4f:3a:27:f8:0f:b1:79:b2:b8:2e:87:0e:11:06:c0:
20:9e:e7:88:51:f3:30:df:44:d1:0d:1c:26:88:0c:
c9:2d:7e:18:20:d1:cd:a9:ac:d4:fd:21:6e:62:bb:
d7:f5:c0:b7:df:9a:28:86:84:96:17:8f:a1:8f:6c:
93:09:65:c5:60:5c:8a:52:3d:45:68:f0:70:89:87:
46:db:34:1e:d2:87:fb:44:ee:e8:6b:e9:cc:78:c9:
47:04:7d:24:a8:2a:db:c2:ca:d6:f1:0b:5a:44:f1:
9e:83:6d:2a:1d:94:c9:4b:74:05:f7:d5:a3:2e:18:
c5:8d:8e:45:fe:61:29:9d:6a:51:b1:94:85:f9:2a:
7c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:D9:94:33:16:D3:B1:12:C6:61:07:A6:C7:54:AD:91:2D:BB:F7:91
X509v3 Authority Key Identifier:
keyid:8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:8e:cd:fe:2f:c9:21:a8:bf:0f:c8:76:b4:4d:66:b5:ef:d8:
a5:87:e0:7f:cb:c6:1e:62:3e:95:d7:be:35:ee:ec:91:e7:c4:
21:83:13:be:b0:4a:16:79:2c:f4:67:ca:55:d7:e2:8e:09:dc:
22:a1:cb:e9:59:7e:66:b6:7e:63:26:0e:42:af:49:55:26:6a:
7a:b9:6c:f7:c2:6d:c4:a8:80:a6:be:cb:35:f5:5f:5c:62:b1:
46:6e:bc:b9:3c:e0:99:e8:d5:e0:25:72:3c:cc:16:df:0b:3c:
85:89:4a:4a:79:7a:1e:24:f2:a0:87:74:38:a9:d2:22:3e:44:
ca:7f:0f:63:cb:92:a8:0a:ea:f6:5e:bd:50:8e:eb:8b:1e:8e:
5c:ca:78:ca:76:53:a5:ff:75:10:86:26:93:59:69:ca:8d:0e:
27:7a:53:b4:c5:72:c3:d7:a5:bf:1f:22:84:40:f9:dd:2b:45:
9e:a8:23:34:97:01:26:83:87:b1:e7:7c:df:94:46:7f:e8:d9:
6e:52:6c:93:9c:05:5e:1d:b5:4a:19:ba:be:d1:b1:05:10:81:
ad:84:5e:30:ca:fb:e5:da:dc:46:c4:ad:37:8c:f3:6a:04:f2:
19:87:3c:3b:54:7d:7b:1a:47:76:af:42:ac:c0:9e:f6:90:62:
8a:4b:9a:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZasw73NiwV1cZGstp4121plMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhMWYwYWQ1NTcyYmFlMjZlMzljODc0MGM2OGE4ZmJiNDZl
ZTQ4NjQwHhcNMjUwNTA3MjIwMDMxWhcNMjUwNTA4MjIwMDMxWjAzMTEwLwYDVQQD
EygxYWQ5OTQzMzE2ZDNiMTEyYzY2MTA3YTZjNzU0YWQ5MTJkYmJmNzkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvkC/MObcAqqvwUB/4XFUYvvNZ74s
hNF6DOFLiDJs++9JqHN0TMI9SyBquxd0bwZvyVbTjIRfkQXxoNMWKRynHl4Zd6+p
7biNjZZZvFMRYWN/+xNV6V1UfTUsK7Xdm29/EHdNexWP59LzUZWlcZuQ+40XwAhn
Pp9POif4D7F5srguhw4RBsAgnueIUfMw30TRDRwmiAzJLX4YINHNqazU/SFuYrvX
9cC335oohoSWF4+hj2yTCWXFYFyKUj1FaPBwiYdG2zQe0of7RO7oa+nMeMlHBH0k
qCrbwsrW8QtaRPGeg20qHZTJS3QF99WjLhjFjY5F/mEpnWpRsZSF+Sp8uQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBrZlDMW07ESxmEHpsdUrZEtu/eRMB8GA1UdIwQY
MBaAFIofCtVXK64m45yHQMaKj7tG7khkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS8yZmQyMGEtNTNhZS00YmVhLTgwYzkt
MDNmMjNhNzM5NDFkLzEvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS8yZmQyMGEtNTNhZS00YmVhLTgwYzktMDNmMjNhNzM5NDFk
LzEvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaI7N/i/J
Iai/D8h2tE1mte/YpYfgf8vGHmI+lde+Ne7skefEIYMTvrBKFnks9GfKVdfijgnc
IqHL6Vl+ZrZ+YyYOQq9JVSZqerls98JtxKiApr7LNfVfXGKxRm68uTzgmejV4CVy
PMwW3ws8hYlKSnl6HiTyoId0OKnSIj5Eyn8PY8uSqArq9l69UI7rix6OXMp4ynZT
pf91EIYmk1lpyo0OJ3pTtMVyw9elvx8ihED53StFnqgjNJcBJoOHsed835RGf+jZ
blJsk5wFXh21Shm6vtGxBRCBrYReMMr75drcRsStN4zzagTyGYc8O1R9expHdq9C
rMCe9pBiikuaSw==
-----END CERTIFICATE-----
Generated at Thu May 8 00:44:51 2025 by rpki-client