Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.mft
File: Oqnpgy7SXeeMPOBQEggmEGYoH1E.mft (raw, json)
Hash identifier: Q7N+PYqrfEAhuMaVgl0fUt68dlpYrS1qa4AphmtVlC0=
Subject key identifier: A7:F9:41:7A:BE:3F:8F:37:24:57:80:3A:00:05:0F:C2:82:45:9E:4A
Authority key identifier: 3A:A9:E9:83:2E:D2:5D:E7:8C:3C:E0:50:12:08:26:10:66:28:1F:51
Certificate issuer: /CN=3aa9e9832ed25de78c3ce0501208261066281f51
Certificate serial: 01965982CEDE9CCBAB39F57CF0D496F4788B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oqnpgy7SXeeMPOBQEggmEGYoH1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.mft
Manifest number: 0F48
Signing time: Mon 21 Apr 2025 18:01:06 +0000
Manifest this update: Mon 21 Apr 2025 18:01:06 +0000
Manifest next update: Tue 22 Apr 2025 18:01:06 +0000
Files and hashes: 1: Oqnpgy7SXeeMPOBQEggmEGYoH1E.crl (hash: PL5EpzK2FCiXq6zz6uCnnP8katx5bO7rNEJX2BjDz44=)
2: aWYIXcaJkiVxLLibbCxl3jRBEqg.roa (hash: is1rfoaga6D1caCReE6B6u2V3E2PMjX4LQvHyaYSnhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oqnpgy7SXeeMPOBQEggmEGYoH1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:82:ce:de:9c:cb:ab:39:f5:7c:f0:d4:96:f4:78:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aa9e9832ed25de78c3ce0501208261066281f51
Validity
Not Before: Apr 21 18:01:06 2025 GMT
Not After : Apr 22 18:01:06 2025 GMT
Subject: CN=a7f9417abe3f8f372457803a00050fc282459e4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ad:5a:14:82:53:b0:85:27:04:cf:23:7d:22:
d5:8f:88:0b:96:51:95:14:d8:a6:7d:c2:26:2a:5e:
85:1f:09:83:b7:a4:79:4a:b1:9b:dc:97:97:29:53:
04:48:eb:96:8b:13:44:80:41:ea:e2:3f:be:ac:8b:
33:e0:d5:13:a7:99:b2:14:6c:53:09:80:31:5b:7b:
2b:5a:ab:16:36:19:1a:20:cd:3a:27:ad:68:57:a8:
12:3f:b3:8d:27:14:38:70:de:14:22:17:73:bc:88:
0c:f2:48:8a:19:6f:a7:39:a3:7c:e2:e9:a2:9d:30:
00:0c:2a:4e:5a:c3:ae:8b:1d:25:8e:3a:56:1f:14:
17:d8:84:f4:49:86:87:ed:16:ce:ec:cc:00:45:27:
45:ed:31:0c:80:48:9e:43:12:d9:9f:c8:c8:83:06:
f4:79:f5:8e:d4:c0:84:cc:36:ec:f4:a5:5e:a3:ba:
cc:fb:8c:fe:7f:ab:3a:45:2b:2f:d3:d6:67:5c:00:
4f:54:f9:af:76:22:cd:e6:b3:01:b0:d1:5a:32:b3:
d7:65:7c:fe:10:8b:29:30:f5:7e:f1:c2:13:a9:f1:
80:0d:ee:dd:ed:c5:b9:c6:74:60:a8:7c:f3:7a:5a:
19:84:cd:35:a5:86:60:35:ee:0a:3c:e8:e7:f3:78:
a8:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:F9:41:7A:BE:3F:8F:37:24:57:80:3A:00:05:0F:C2:82:45:9E:4A
X509v3 Authority Key Identifier:
keyid:3A:A9:E9:83:2E:D2:5D:E7:8C:3C:E0:50:12:08:26:10:66:28:1F:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oqnpgy7SXeeMPOBQEggmEGYoH1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:6e:ef:0c:49:44:64:6f:de:f2:9f:f0:37:da:ba:38:87:9a:
6a:34:08:c7:5a:ca:45:44:3c:97:05:08:6f:89:94:63:68:de:
dc:87:8f:b7:a9:32:35:ad:c1:3c:f2:e3:b3:e6:9b:58:75:5b:
10:0a:32:08:a9:94:f2:29:8f:16:3f:0c:ba:c7:99:01:e6:4a:
9b:1c:ff:26:27:9d:86:0d:2d:1b:48:4b:b0:c9:77:2e:7a:21:
aa:dd:e6:03:52:bb:a0:90:54:fa:ff:2f:ed:41:c2:69:6e:06:
40:e7:2f:35:2c:1f:ce:36:52:c8:8b:20:d1:71:bb:73:d8:ea:
d5:a7:fa:de:7c:da:ff:45:a5:4a:cf:a7:7b:ed:a4:a2:1f:20:
67:c1:41:d7:05:49:8c:4f:c0:f4:2b:6f:ff:16:9f:45:a8:ec:
90:b6:fd:6c:2d:1e:32:d7:9f:13:6c:dd:bd:72:f3:52:d7:7d:
98:76:9a:de:50:7b:07:a9:09:64:a6:02:85:7d:9c:a1:3a:06:
80:45:35:cd:83:fe:50:c3:77:ca:5d:f2:aa:07:6e:95:fd:b8:
dc:34:78:9d:fa:c4:a0:11:aa:d8:94:69:4d:b6:e1:53:05:2b:
34:3d:3a:8e:1f:00:a8:4b:18:04:94:d9:c8:43:83:89:fe:10:
18:76:94:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZZgs7enMurOfV88NSW9HiLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhYTllOTgzMmVkMjVkZTc4YzNjZTA1MDEyMDgyNjEwNjYy
ODFmNTEwHhcNMjUwNDIxMTgwMTA2WhcNMjUwNDIyMTgwMTA2WjAzMTEwLwYDVQQD
EyhhN2Y5NDE3YWJlM2Y4ZjM3MjQ1NzgwM2EwMDA1MGZjMjgyNDU5ZTRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtK1aFIJTsIUnBM8jfSLVj4gLllGV
FNimfcImKl6FHwmDt6R5SrGb3JeXKVMESOuWixNEgEHq4j++rIsz4NUTp5myFGxT
CYAxW3srWqsWNhkaIM06J61oV6gSP7ONJxQ4cN4UIhdzvIgM8kiKGW+nOaN84umi
nTAADCpOWsOuix0ljjpWHxQX2IT0SYaH7RbO7MwARSdF7TEMgEieQxLZn8jIgwb0
efWO1MCEzDbs9KVeo7rM+4z+f6s6RSsv09ZnXABPVPmvdiLN5rMBsNFaMrPXZXz+
EIspMPV+8cITqfGADe7d7cW5xnRgqHzzeloZhM01pYZgNe4KPOjn83io4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKf5QXq+P483JFeAOgAFD8KCRZ5KMB8GA1UdIwQY
MBaAFDqp6YMu0l3njDzgUBIIJhBmKB9RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3FucGd5N1NYZWVNUE9CUUVnZ21FR1lvSDFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy81ZmQyNzMtZjNhOS00NzU1LWIyM2Et
M2JiZDg4N2QwNWMyLzEvT3FucGd5N1NYZWVNUE9CUUVnZ21FR1lvSDFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy81ZmQyNzMtZjNhOS00NzU1LWIyM2EtM2JiZDg4N2QwNWMy
LzEvT3FucGd5N1NYZWVNUE9CUUVnZ21FR1lvSDFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdm7vDElE
ZG/e8p/wN9q6OIeaajQIx1rKRUQ8lwUIb4mUY2je3IePt6kyNa3BPPLjs+abWHVb
EAoyCKmU8imPFj8MuseZAeZKmxz/Jiedhg0tG0hLsMl3Lnohqt3mA1K7oJBU+v8v
7UHCaW4GQOcvNSwfzjZSyIsg0XG7c9jq1af63nza/0WlSs+ne+2koh8gZ8FB1wVJ
jE/A9Ctv/xafRajskLb9bC0eMtefE2zdvXLzUtd9mHaa3lB7B6kJZKYChX2coToG
gEU1zYP+UMN3yl3yqgdulf243DR4nfrEoBGq2JRpTbbhUwUrND06jh8AqEsYBJTZ
yEODif4QGHaUTA==
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:03:39 2025 by rpki-client