Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft
File: oTRxtQAqTrZJYSXPWHN_Deutrns.mft (raw, json)
Hash identifier: VP7Ce7vabJdXBh/5YTdw0bkgVPFpKyspHgeG8KPydCs=
Subject key identifier: EB:05:AB:47:AB:D8:0E:FB:8E:8E:D5:E2:CB:2E:B9:D9:91:14:49:B1
Authority key identifier: A1:34:71:B5:00:2A:4E:B6:49:61:25:CF:58:73:7F:0D:EB:AD:AE:7B
Certificate issuer: /CN=a13471b5002a4eb6496125cf58737f0debadae7b
Certificate serial: 01974A7B8EE1C53FFE5D74AC1B7039DFB38F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oTRxtQAqTrZJYSXPWHN_Deutrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft
Manifest number: 0502
Signing time: Sat 07 Jun 2025 13:01:40 +0000
Manifest this update: Sat 07 Jun 2025 13:01:40 +0000
Manifest next update: Sun 08 Jun 2025 13:01:40 +0000
Files and hashes: 1: oFklvX9KlU1NM_bVTSTtZ1s8fa8.roa (hash: 4FiRkOjDg+qr7WljZjcDh3AhahDm0psFF2Z877w08JM=)
2: oTRxtQAqTrZJYSXPWHN_Deutrns.crl (hash: VCEO1H58Wd8/r75vFrtQHKoSlA1nko6n9InFyV53b1c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft
rsync://rpki.ripe.net/repository/DEFAULT/oTRxtQAqTrZJYSXPWHN_Deutrns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:8e:e1:c5:3f:fe:5d:74:ac:1b:70:39:df:b3:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a13471b5002a4eb6496125cf58737f0debadae7b
Validity
Not Before: Jun 7 13:01:40 2025 GMT
Not After : Jun 8 13:01:40 2025 GMT
Subject: CN=eb05ab47abd80efb8e8ed5e2cb2eb9d9911449b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c7:d2:8c:23:0f:09:ef:01:91:2c:4d:f0:38:
2a:13:ee:be:1e:70:1c:fa:23:06:88:5e:7d:74:1c:
7e:23:90:c1:b9:5a:5d:de:2d:04:48:b8:23:38:8c:
2b:fc:83:94:44:52:50:db:70:25:eb:c6:09:4b:1f:
62:78:14:da:60:47:2b:2f:52:dc:02:21:c6:e0:a4:
5e:70:54:ef:85:2f:d9:43:96:ca:59:ad:dd:9a:11:
ff:6f:39:83:1b:58:bf:a3:d2:e5:e4:a0:83:9c:5e:
88:ce:0e:5a:cf:99:86:e2:a4:d7:ac:a9:08:6b:d7:
c4:35:19:4f:77:13:3d:56:3e:81:e2:09:69:01:cb:
58:2b:a6:70:9d:ed:df:90:e0:a1:5e:dc:eb:dc:d8:
40:3e:d3:d4:e6:20:e1:b6:a6:ad:51:64:ec:2e:98:
64:96:7c:8c:ed:58:e1:21:b2:6b:a3:6f:df:be:c4:
45:c4:ee:2a:01:f6:2e:75:b5:38:cb:35:9f:66:6e:
41:19:93:0f:61:63:8c:d5:87:ca:bd:12:9c:ca:bf:
15:67:fd:7e:3f:74:4a:be:62:df:a8:b7:ad:8e:d5:
a2:bf:e5:b0:72:36:d1:8c:f7:7a:61:d4:e4:be:5d:
5f:e0:e1:ac:bd:bb:c4:73:b1:20:d5:a5:c4:d6:27:
6a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:05:AB:47:AB:D8:0E:FB:8E:8E:D5:E2:CB:2E:B9:D9:91:14:49:B1
X509v3 Authority Key Identifier:
keyid:A1:34:71:B5:00:2A:4E:B6:49:61:25:CF:58:73:7F:0D:EB:AD:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oTRxtQAqTrZJYSXPWHN_Deutrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:5e:6a:af:19:8d:de:01:9b:01:b6:1c:a4:78:5f:2b:39:52:
fe:cd:0c:a0:f1:20:85:29:6b:97:24:80:ce:9b:47:d5:07:0e:
c9:21:ba:c0:e0:2f:8d:f2:33:ec:47:2f:a3:bd:49:d3:fa:08:
db:0e:df:96:37:a4:d9:eb:16:ea:a2:81:f0:bf:8c:cb:bb:43:
07:9c:7d:ab:e8:c0:e6:a1:f3:95:58:bb:7c:fe:78:78:3e:7e:
4f:eb:a7:82:34:97:aa:5e:13:08:70:f7:69:16:04:6a:45:6e:
d5:1a:87:ed:a8:cb:f7:87:60:27:34:d6:9b:17:3e:97:83:51:
42:a5:c9:cf:66:1c:7d:96:e6:11:da:be:7c:45:af:1e:6c:55:
33:47:72:e0:ca:71:56:27:27:01:ff:50:bd:ee:cd:40:f4:15:
a1:26:39:f3:af:dc:23:41:e0:1a:52:cd:34:50:c8:b8:7b:54:
01:71:fd:f6:df:59:13:c9:cb:71:0c:a2:de:d1:a0:38:7a:47:
c3:a7:e8:27:1c:65:a3:6f:4e:b4:06:94:1e:71:0e:7d:30:24:
d7:00:54:76:54:f8:e9:76:5b:32:b5:16:02:e9:07:a0:93:3d:
f0:a5:46:01:db:2a:6f:75:d7:62:a4:05:35:13:db:cb:9a:47:
28:2b:8c:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKe47hxT/+XXSsG3A537OPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExMzQ3MWI1MDAyYTRlYjY0OTYxMjVjZjU4NzM3ZjBkZWJh
ZGFlN2IwHhcNMjUwNjA3MTMwMTQwWhcNMjUwNjA4MTMwMTQwWjAzMTEwLwYDVQQD
EyhlYjA1YWI0N2FiZDgwZWZiOGU4ZWQ1ZTJjYjJlYjlkOTkxMTQ0OWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4MfSjCMPCe8BkSxN8DgqE+6+HnAc
+iMGiF59dBx+I5DBuVpd3i0ESLgjOIwr/IOURFJQ23Al68YJSx9ieBTaYEcrL1Lc
AiHG4KRecFTvhS/ZQ5bKWa3dmhH/bzmDG1i/o9Ll5KCDnF6Izg5az5mG4qTXrKkI
a9fENRlPdxM9Vj6B4glpActYK6Zwne3fkOChXtzr3NhAPtPU5iDhtqatUWTsLphk
lnyM7VjhIbJro2/fvsRFxO4qAfYudbU4yzWfZm5BGZMPYWOM1YfKvRKcyr8VZ/1+
P3RKvmLfqLetjtWiv+WwcjbRjPd6YdTkvl1f4OGsvbvEc7Eg1aXE1idqeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOsFq0er2A77jo7V4ssuudmRFEmxMB8GA1UdIwQY
MBaAFKE0cbUAKk62SWElz1hzfw3rra57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1RSeHRRQXFUclpKWVNYUFdITl9EZXV0cm5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9kOWU4N2ItNDUwYS00MTUyLWEyNDIt
ZDY5MTBiMjFhYjQyLzEvb1RSeHRRQXFUclpKWVNYUFdITl9EZXV0cm5zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC9kOWU4N2ItNDUwYS00MTUyLWEyNDItZDY5MTBiMjFhYjQy
LzEvb1RSeHRRQXFUclpKWVNYUFdITl9EZXV0cm5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdV5qrxmN
3gGbAbYcpHhfKzlS/s0MoPEghSlrlySAzptH1QcOySG6wOAvjfIz7Ecvo71J0/oI
2w7fljek2esW6qKB8L+My7tDB5x9q+jA5qHzlVi7fP54eD5+T+ungjSXql4TCHD3
aRYEakVu1RqH7ajL94dgJzTWmxc+l4NRQqXJz2YcfZbmEdq+fEWvHmxVM0dy4Mpx
VicnAf9Qve7NQPQVoSY586/cI0HgGlLNNFDIuHtUAXH99t9ZE8nLcQyi3tGgOHpH
w6foJxxlo29OtAaUHnEOfTAk1wBUdlT46XZbMrUWAukHoJM98KVGAdsqb3XXYqQF
NRPby5pHKCuMXA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 16:49:30 2025 by rpki-client