Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
File: tD1On-OlSH0g8QABkWKRUPYo86E.mft (raw, json)
Hash identifier: V8Xym21j99224tEqV4G3OGvECiOCCkZx3bX+Jr9/zRA=
Subject key identifier: CD:38:20:E9:E0:94:18:64:EF:F4:7C:B2:9B:BC:8E:1D:D8:75:7C:77
Authority key identifier: B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
Certificate issuer: /CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Certificate serial: 01958B4D79CE756BC402511B7E6E5078E2B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
Manifest number: 0966
Signing time: Wed 12 Mar 2025 17:01:05 +0000
Manifest this update: Wed 12 Mar 2025 17:01:05 +0000
Manifest next update: Thu 13 Mar 2025 17:01:05 +0000
Files and hashes: 1: WJX8pUUgztAx5ziEUO7pdOPaYpY.roa (hash: Zv2hcAwndmbcI8AgNFSDMAAPE42QlNQ0rd+YTdhMpog=)
2: tD1On-OlSH0g8QABkWKRUPYo86E.crl (hash: Rtx5jOAa0l2cgRd6MreeFGPemtLGVf0cSrCC1ADRHK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 17:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:4d:79:ce:75:6b:c4:02:51:1b:7e:6e:50:78:e2:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Validity
Not Before: Mar 12 17:01:05 2025 GMT
Not After : Mar 13 17:01:05 2025 GMT
Subject: CN=cd3820e9e0941864eff47cb29bbc8e1dd8757c77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2c:94:8e:7c:e2:c7:8b:83:f5:28:18:b4:45:
bd:48:7c:f7:d0:10:a3:b3:0c:8b:a7:c1:7c:29:ae:
12:cc:b1:11:db:6b:c5:93:ea:96:82:c4:1e:ee:ef:
61:ed:79:85:09:53:f7:e8:89:84:23:5e:e7:1a:9d:
e0:26:8a:97:c5:cd:11:12:94:96:fb:da:81:cb:24:
ec:62:5d:ff:98:54:94:0f:b8:b8:66:9a:b6:4a:f3:
04:8b:ce:cc:29:51:01:08:3c:b0:11:bb:7c:4d:a4:
ba:1b:ca:e6:2a:c6:31:c3:17:15:62:f5:97:d8:6f:
4e:7c:03:e9:27:98:bf:66:f3:ea:a8:2c:95:99:57:
d1:80:eb:a2:c7:87:46:6c:71:af:a5:92:cc:dc:ea:
1e:14:77:e2:09:61:00:76:46:f0:21:bc:c8:e7:59:
e0:73:89:fc:ca:8b:22:4f:cc:cf:a1:a3:cc:1f:57:
e2:da:83:c6:c1:88:66:02:a1:34:3e:94:76:ea:9b:
13:09:96:66:95:a6:10:d2:0f:b3:c4:cd:68:c6:6a:
1b:a6:1f:3d:68:ef:69:d4:2c:53:e8:a9:db:f1:b8:
38:55:85:dd:62:f4:da:4b:09:78:c2:3b:33:86:aa:
b1:81:12:0f:74:0c:83:0e:b6:49:59:d0:44:e6:84:
18:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:38:20:E9:E0:94:18:64:EF:F4:7C:B2:9B:BC:8E:1D:D8:75:7C:77
X509v3 Authority Key Identifier:
keyid:B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:59:dd:b4:b0:22:37:83:57:b0:e1:4f:8e:12:45:a1:ef:60:
0e:56:14:a1:2b:89:1b:04:c9:46:79:a3:ce:55:57:25:7a:e5:
f5:62:b4:a7:47:0f:77:e7:66:1a:17:8c:9a:80:0f:8a:d4:a8:
3b:4c:40:54:a3:e5:f0:ee:78:b2:77:6f:aa:ae:11:56:e4:7a:
14:26:43:e2:6d:2e:5d:d3:42:99:e6:c8:28:9f:c1:c1:eb:9e:
93:e6:75:53:b1:ee:b0:19:fe:a6:fc:b9:3b:ee:ec:e7:07:6b:
a3:07:6e:0a:97:52:bd:d8:dd:7c:1c:11:35:b0:66:c9:6a:b4:
f2:75:ed:aa:93:99:11:69:be:11:ec:9d:7f:08:96:a6:af:62:
6f:94:df:28:24:5d:99:66:d6:1c:a3:82:e8:4b:23:b6:58:99:
42:3d:01:b0:f0:eb:b5:f5:22:eb:5c:99:c7:4c:ed:e4:4f:77:
e6:f2:85:3a:76:ad:cd:6d:a1:27:94:05:ab:42:10:b7:fb:a3:
ca:72:dd:16:c5:35:a1:79:bd:03:62:4e:d7:ad:95:e9:4e:cf:
21:fb:25:e7:3d:af:ed:47:a1:d3:68:d0:1c:05:7e:90:b7:81:
60:89:fe:ae:a7:d7:50:ec:db:c0:22:8b:a8:6a:aa:74:c4:a9:
b4:6a:85:8b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWLTXnOdWvEAlEbfm5QeOKzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0M2Q0ZTlmZTNhNTQ4N2QyMGYxMDAwMTkxNjI5MTUwZjYy
OGYzYTEwHhcNMjUwMzEyMTcwMTA1WhcNMjUwMzEzMTcwMTA1WjAzMTEwLwYDVQQD
EyhjZDM4MjBlOWUwOTQxODY0ZWZmNDdjYjI5YmJjOGUxZGQ4NzU3Yzc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsSyUjnzix4uD9SgYtEW9SHz30BCj
swyLp8F8Ka4SzLER22vFk+qWgsQe7u9h7XmFCVP36ImEI17nGp3gJoqXxc0REpSW
+9qByyTsYl3/mFSUD7i4Zpq2SvMEi87MKVEBCDywEbt8TaS6G8rmKsYxwxcVYvWX
2G9OfAPpJ5i/ZvPqqCyVmVfRgOuix4dGbHGvpZLM3OoeFHfiCWEAdkbwIbzI51ng
c4n8yosiT8zPoaPMH1fi2oPGwYhmAqE0PpR26psTCZZmlaYQ0g+zxM1oxmobph89
aO9p1CxT6Knb8bg4VYXdYvTaSwl4wjszhqqxgRIPdAyDDrZJWdBE5oQYuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM04IOnglBhk7/R8spu8jh3YdXx3MB8GA1UdIwQY
MBaAFLQ9Tp/jpUh9IPEAAZFikVD2KPOhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8xOGQwMzUtMzQ5NC00YWI3LWE1Y2It
OWY3ODhmZDI3NTIwLzEvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi8xOGQwMzUtMzQ5NC00YWI3LWE1Y2ItOWY3ODhmZDI3NTIw
LzEvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH1ndtLAi
N4NXsOFPjhJFoe9gDlYUoSuJGwTJRnmjzlVXJXrl9WK0p0cPd+dmGheMmoAPitSo
O0xAVKPl8O54sndvqq4RVuR6FCZD4m0uXdNCmebIKJ/Bweuek+Z1U7HusBn+pvy5
O+7s5wdrowduCpdSvdjdfBwRNbBmyWq08nXtqpOZEWm+EeydfwiWpq9ib5TfKCRd
mWbWHKOC6EsjtliZQj0BsPDrtfUi61yZx0zt5E935vKFOnatzW2hJ5QFq0IQt/uj
ynLdFsU1oXm9A2JO162V6U7PIfsl5z2v7Ueh02jQHAV+kLeBYIn+rqfXUOzbwCKL
qGqqdMSptGqFiw==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:51:50 2025 by rpki-client