Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
File: OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft (raw, json)
Hash identifier: QW6c0cwkIrmv+1iePanWJKLQL92ErEOCiDaDkqdXeNA=
Subject key identifier: 76:34:D4:D7:2E:2F:20:D5:E2:0F:B0:85:E5:EA:8A:42:4F:F5:39:2A
Authority key identifier: 38:F2:37:98:B6:73:93:E4:03:9E:3F:95:55:E2:14:D6:73:7C:13:51
Certificate issuer: /CN=38f23798b67393e4039e3f9555e214d6737c1351
Certificate serial: 01965C4C8A7A42F0C61A3EC83FDB4772FD6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPI3mLZzk-QDnj-VVeIU1nN8E1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
Manifest number: 1504
Signing time: Tue 22 Apr 2025 07:00:41 +0000
Manifest this update: Tue 22 Apr 2025 07:00:41 +0000
Manifest next update: Wed 23 Apr 2025 07:00:41 +0000
Files and hashes: 1: OPI3mLZzk-QDnj-VVeIU1nN8E1E.crl (hash: 1dMVpBP4f/LCv0I7DTPSEtYHAO2vd1Tg/suqOUIu93w=)
2: Vpoq5ZpSGDP-ZXCmZlKnhArAK_Q.roa (hash: 38YyvusiUhw1DBRUCOnZouY1Y0JBlQCEkMbtx6PZeK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/OPI3mLZzk-QDnj-VVeIU1nN8E1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:4c:8a:7a:42:f0:c6:1a:3e:c8:3f:db:47:72:fd:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38f23798b67393e4039e3f9555e214d6737c1351
Validity
Not Before: Apr 22 07:00:41 2025 GMT
Not After : Apr 23 07:00:41 2025 GMT
Subject: CN=7634d4d72e2f20d5e20fb085e5ea8a424ff5392a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:c8:75:2a:8d:0e:61:d5:f8:f4:45:3d:4a:98:
1c:4a:dc:d8:62:1a:1f:cc:67:57:0a:44:29:a0:ac:
17:c6:99:76:5f:dc:9a:0b:f3:ae:e9:d7:16:48:03:
c8:44:ae:58:6a:df:0c:19:80:d8:3c:a1:d4:20:c0:
e4:fc:67:50:80:d5:a9:46:ae:ae:02:f4:9e:9d:24:
75:65:56:21:59:58:a8:c9:fe:5d:e4:bb:8d:e4:28:
81:83:34:37:c0:40:c0:e0:b3:62:72:ff:4c:c2:ca:
c5:c0:15:55:66:d8:84:05:b0:15:2b:ef:1a:b1:db:
75:93:3c:7f:0d:df:a4:a6:21:c5:fc:27:c7:bd:40:
34:f6:29:b9:4a:95:91:2f:85:76:17:3d:e2:73:5b:
36:f8:bb:34:7e:ae:00:0e:8d:69:0a:48:89:8d:1d:
8c:79:5c:aa:b2:29:7a:e9:ed:7c:d6:49:85:c6:dc:
bd:c2:fc:d2:22:b8:d3:8c:f4:dd:86:83:e7:2c:6e:
db:6f:4d:1a:07:06:57:14:d3:23:0d:ab:9e:bd:43:
01:a1:b8:7e:bf:5d:a2:72:eb:aa:64:c7:83:41:6b:
80:28:af:f3:35:74:f2:65:31:29:9a:53:41:16:80:
ba:7a:c8:8f:a0:ee:28:71:8f:4c:95:11:b0:a0:db:
ad:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:34:D4:D7:2E:2F:20:D5:E2:0F:B0:85:E5:EA:8A:42:4F:F5:39:2A
X509v3 Authority Key Identifier:
keyid:38:F2:37:98:B6:73:93:E4:03:9E:3F:95:55:E2:14:D6:73:7C:13:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPI3mLZzk-QDnj-VVeIU1nN8E1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:05:d9:f4:8d:2d:f4:87:e6:b5:37:fd:57:82:d5:9c:85:90:
3f:1a:77:ad:51:80:eb:93:d2:49:c4:8b:2e:9d:49:6e:55:36:
14:6b:13:18:62:41:de:6a:b5:3d:5b:32:85:63:b8:6d:bb:79:
ac:73:c7:52:bd:78:ca:d5:c4:b0:04:e2:05:b2:26:a0:fb:da:
1b:35:c5:97:70:97:34:de:06:3b:94:54:d4:d9:87:1e:4d:e6:
39:12:ce:60:b6:ca:45:8d:69:9f:ac:99:a7:57:35:c9:5e:89:
20:29:67:4a:df:a1:d0:8a:b8:3e:5f:4d:9b:da:f5:73:f8:3d:
4a:d4:42:b9:6a:04:92:35:76:d1:87:af:2b:ee:e0:c1:45:40:
de:42:fa:84:d1:9b:c7:33:3a:7e:4f:5c:dd:fa:53:b9:71:f6:
88:0c:6e:7e:83:f5:26:71:2e:89:52:bd:46:ff:f3:f0:30:f3:
fe:b0:8a:70:83:db:3d:b0:52:a1:11:f0:aa:d6:2b:5c:9d:54:
a2:e7:3a:60:f7:13:98:5f:32:81:21:78:c2:90:17:7a:99:b8:
61:d0:99:56:b0:04:f9:35:d3:e9:9d:24:b7:95:8d:02:bc:3c:
ee:9b:3f:88:c1:73:bc:97:20:9d:eb:7b:bf:c6:34:0e:95:1b:
75:c5:e3:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZcTIp6QvDGGj7IP9tHcv1rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4ZjIzNzk4YjY3MzkzZTQwMzllM2Y5NTU1ZTIxNGQ2NzM3
YzEzNTEwHhcNMjUwNDIyMDcwMDQxWhcNMjUwNDIzMDcwMDQxWjAzMTEwLwYDVQQD
Eyg3NjM0ZDRkNzJlMmYyMGQ1ZTIwZmIwODVlNWVhOGE0MjRmZjUzOTJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6sh1Ko0OYdX49EU9SpgcStzYYhof
zGdXCkQpoKwXxpl2X9yaC/Ou6dcWSAPIRK5Yat8MGYDYPKHUIMDk/GdQgNWpRq6u
AvSenSR1ZVYhWVioyf5d5LuN5CiBgzQ3wEDA4LNicv9MwsrFwBVVZtiEBbAVK+8a
sdt1kzx/Dd+kpiHF/CfHvUA09im5SpWRL4V2Fz3ic1s2+Ls0fq4ADo1pCkiJjR2M
eVyqsil66e181kmFxty9wvzSIrjTjPTdhoPnLG7bb00aBwZXFNMjDauevUMBobh+
v12icuuqZMeDQWuAKK/zNXTyZTEpmlNBFoC6esiPoO4ocY9MlRGwoNutlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHY01NcuLyDV4g+wheXqikJP9TkqMB8GA1UdIwQY
MBaAFDjyN5i2c5PkA54/lVXiFNZzfBNRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1BJM21MWnprLVFEbmotVlZlSVUxbk44RTFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy85YWI0YzktMGMxMC00NjcxLWJkZDQt
NzMwZmNkMGU1ZGNhLzEvT1BJM21MWnprLVFEbmotVlZlSVUxbk44RTFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy85YWI0YzktMGMxMC00NjcxLWJkZDQtNzMwZmNkMGU1ZGNh
LzEvT1BJM21MWnprLVFEbmotVlZlSVUxbk44RTFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvgXZ9I0t
9IfmtTf9V4LVnIWQPxp3rVGA65PSScSLLp1JblU2FGsTGGJB3mq1PVsyhWO4bbt5
rHPHUr14ytXEsATiBbImoPvaGzXFl3CXNN4GO5RU1NmHHk3mORLOYLbKRY1pn6yZ
p1c1yV6JIClnSt+h0Iq4Pl9Nm9r1c/g9StRCuWoEkjV20YevK+7gwUVA3kL6hNGb
xzM6fk9c3fpTuXH2iAxufoP1JnEuiVK9Rv/z8DDz/rCKcIPbPbBSoRHwqtYrXJ1U
ouc6YPcTmF8ygSF4wpAXepm4YdCZVrAE+TXT6Z0kt5WNArw87ps/iMFzvJcgnet7
v8Y0DpUbdcXjZg==
-----END CERTIFICATE-----
Generated at Tue Apr 22 10:31:15 2025 by rpki-client