Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
File: iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft (raw, json)
Hash identifier: UOuE/b2prLoIliAEHArKP1H32fauBXnPBOwJIxliNfA=
Subject key identifier: 26:B4:95:44:66:4A:1E:7C:EC:AC:15:06:48:AB:44:51:B0:68:D8:F1
Authority key identifier: 8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
Certificate issuer: /CN=8b03dca76319903152f246e05c069fd1a1db5c59
Certificate serial: 0196843562D9BDFDA150C52852B031D5523A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
Manifest number: 0621
Signing time: Wed 30 Apr 2025 01:00:13 +0000
Manifest this update: Wed 30 Apr 2025 01:00:13 +0000
Manifest next update: Thu 01 May 2025 01:00:13 +0000
Files and hashes: 1: 7M8D3IxMWjzAgVSAuyFX2gLMxAs.roa (hash: MD3KP2LMgWTsm6lhsmms5WwgB8xDS3rVO74n7Xs0hs0=)
2: iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl (hash: JHXvUzwcvil/CXCdUtM73CIPKq7qsWbs5hPFj69y4bk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:35:62:d9:bd:fd:a1:50:c5:28:52:b0:31:d5:52:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b03dca76319903152f246e05c069fd1a1db5c59
Validity
Not Before: Apr 30 01:00:13 2025 GMT
Not After : May 1 01:00:13 2025 GMT
Subject: CN=26b49544664a1e7cecac150648ab4451b068d8f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a3:1f:38:a0:81:e5:83:05:a3:2c:f5:d2:69:
ee:be:fb:33:8e:2a:0c:fa:c4:70:79:3c:d7:58:de:
d9:d0:26:fc:6b:7c:34:a2:6c:03:cc:af:1d:e4:4b:
1a:84:ea:02:87:5b:dd:27:5b:12:dc:c6:b2:b0:fe:
7f:db:82:97:0c:dd:6a:ba:f4:73:77:01:20:f0:ab:
8f:15:ef:43:3b:b3:29:0e:05:cd:8b:f0:26:d8:a0:
d2:ac:76:11:16:a9:1b:ac:4c:10:1a:72:59:31:0c:
ff:b5:62:a0:e7:d7:bf:95:30:bb:4c:86:eb:0d:1c:
1d:25:a0:02:a6:b8:f9:78:8b:07:16:22:83:9c:33:
f1:0f:e9:0c:a1:6c:a0:a9:9e:3a:47:44:cb:c2:30:
79:20:8b:bb:56:a5:da:45:6a:21:ef:39:00:62:ea:
ac:13:fc:30:2f:14:23:fb:71:2c:e4:92:a1:35:de:
81:cd:2e:9c:0c:da:c4:9b:d0:4a:84:3b:2e:aa:67:
8d:df:28:d6:3f:ff:71:8d:fa:ba:9b:9a:cb:44:de:
4a:17:ef:60:56:02:44:71:a6:fa:6d:3e:d0:28:32:
6a:e6:cd:1f:3d:53:53:a0:22:60:f4:6e:e4:60:0b:
72:58:17:be:0d:ee:f1:96:39:0b:5b:8c:09:67:19:
ca:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:B4:95:44:66:4A:1E:7C:EC:AC:15:06:48:AB:44:51:B0:68:D8:F1
X509v3 Authority Key Identifier:
keyid:8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:05:f3:9e:f9:cf:55:c0:65:bf:67:32:a7:4f:93:77:78:9a:
78:46:b2:3d:ef:be:b9:cb:64:d3:73:de:ab:e9:1e:d0:40:20:
21:49:8b:8b:c0:0b:32:d6:e7:8e:8b:64:62:53:e7:e6:72:97:
02:82:8e:44:2e:5c:a9:3b:01:de:46:13:18:64:24:ce:94:7a:
5f:9f:fe:d2:0c:89:67:95:73:e6:ef:48:fa:fa:1e:95:7c:8e:
d1:60:7c:97:6a:26:6a:0c:83:6f:1c:a9:85:89:53:91:9c:45:
1a:ca:8a:6f:c2:35:6c:4f:f4:2b:19:55:63:c9:52:cf:4c:94:
a1:a1:1c:35:ff:f8:d3:e5:80:83:bd:87:58:ac:18:e9:f0:21:
dc:07:cd:c4:31:44:75:b4:a0:e1:da:cb:11:6f:20:eb:77:8b:
31:9d:4f:88:b8:b7:86:d6:71:eb:04:1e:4b:1a:8e:aa:65:38:
6b:48:99:c7:1e:2a:7f:b2:1b:c9:8b:11:6f:b5:d4:0d:9c:3f:
10:92:51:38:b8:ad:b6:ce:fd:97:3f:ed:65:96:15:de:db:99:
7e:a1:f5:7e:8d:12:74:f2:17:b5:9c:a8:17:25:16:e0:62:b1:
1f:f0:cd:60:28:1e:94:9f:e5:32:11:1b:0b:7b:5c:fe:a1:6c:
48:18:a6:22
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaENWLZvf2hUMUoUrAx1VI6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiMDNkY2E3NjMxOTkwMzE1MmYyNDZlMDVjMDY5ZmQxYTFk
YjVjNTkwHhcNMjUwNDMwMDEwMDEzWhcNMjUwNTAxMDEwMDEzWjAzMTEwLwYDVQQD
EygyNmI0OTU0NDY2NGExZTdjZWNhYzE1MDY0OGFiNDQ1MWIwNjhkOGYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw6MfOKCB5YMFoyz10mnuvvszjioM
+sRweTzXWN7Z0Cb8a3w0omwDzK8d5EsahOoCh1vdJ1sS3MaysP5/24KXDN1quvRz
dwEg8KuPFe9DO7MpDgXNi/Am2KDSrHYRFqkbrEwQGnJZMQz/tWKg59e/lTC7TIbr
DRwdJaACprj5eIsHFiKDnDPxD+kMoWygqZ46R0TLwjB5IIu7VqXaRWoh7zkAYuqs
E/wwLxQj+3Es5JKhNd6BzS6cDNrEm9BKhDsuqmeN3yjWP/9xjfq6m5rLRN5KF+9g
VgJEcab6bT7QKDJq5s0fPVNToCJg9G7kYAtyWBe+De7xljkLW4wJZxnKgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCa0lURmSh587KwVBkirRFGwaNjxMB8GA1UdIwQY
MBaAFIsD3KdjGZAxUvJG4FwGn9Gh21xZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXdQY3AyTVprREZTOGtiZ1hBYWYwYUhiWEZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8zMGNkYmUtMTFlMS00NGNhLWI2NTQt
MDI5ZTYzZjA4ODlhLzEvaXdQY3AyTVprREZTOGtiZ1hBYWYwYUhiWEZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8zMGNkYmUtMTFlMS00NGNhLWI2NTQtMDI5ZTYzZjA4ODlh
LzEvaXdQY3AyTVprREZTOGtiZ1hBYWYwYUhiWEZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALQXznvnP
VcBlv2cyp0+Td3iaeEayPe++uctk03Peq+ke0EAgIUmLi8ALMtbnjotkYlPn5nKX
AoKORC5cqTsB3kYTGGQkzpR6X5/+0gyJZ5Vz5u9I+voelXyO0WB8l2omagyDbxyp
hYlTkZxFGsqKb8I1bE/0KxlVY8lSz0yUoaEcNf/40+WAg72HWKwY6fAh3AfNxDFE
dbSg4drLEW8g63eLMZ1PiLi3htZx6wQeSxqOqmU4a0iZxx4qf7IbyYsRb7XUDZw/
EJJROLitts79lz/tZZYV3tuZfqH1fo0SdPIXtZyoFyUW4GKxH/DNYCgelJ/lMhEb
C3tc/qFsSBimIg==
-----END CERTIFICATE-----
Generated at Wed Apr 30 05:41:11 2025 by rpki-client