Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
File: oJ1luSb910PaW0c9NBhf4QGwWig.mft (raw, json)
Hash identifier: Rc6yht5aIAs1R1AHc0AONeUBzNYfcfgPyUUvzqIP48o=
Subject key identifier: A4:45:E3:8C:04:89:8D:CE:CF:1D:9A:92:92:4E:6C:93:69:67:D8:33
Authority key identifier: A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
Certificate issuer: /CN=a09d65b926fdd743da5b473d34185fe101b05a28
Certificate serial: 01962AF31711714F4166C4D413431C3ABE7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
Manifest number: 14EA
Signing time: Sat 12 Apr 2025 17:01:36 +0000
Manifest this update: Sat 12 Apr 2025 17:01:36 +0000
Manifest next update: Sun 13 Apr 2025 17:01:36 +0000
Files and hashes: 1: e7noKfAbhqxWKb_WV7vm2kP8eVk.roa (hash: hWpS0joUiL0TvCY+c8SO6LZjwhfmBfd8ch+Qp+RpKHk=)
2: oJ1luSb910PaW0c9NBhf4QGwWig.crl (hash: q7SIJJ0hfP2nyc1imLd52xc0JH8tM/urBFnv7XVI8Yk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 17:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2a:f3:17:11:71:4f:41:66:c4:d4:13:43:1c:3a:be:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09d65b926fdd743da5b473d34185fe101b05a28
Validity
Not Before: Apr 12 17:01:36 2025 GMT
Not After : Apr 13 17:01:36 2025 GMT
Subject: CN=a445e38c04898dcecf1d9a92924e6c936967d833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:25:87:b2:d4:58:1e:4a:d9:3d:12:c0:10:d3:
3b:2b:c6:a8:20:2f:d9:8a:b7:b9:92:44:07:45:1b:
a0:83:99:5a:0d:d8:b6:f7:02:c9:2a:6e:9d:eb:df:
90:aa:26:19:13:6e:58:ae:37:fb:f2:62:05:22:dd:
fa:f4:0f:53:5b:56:f1:77:72:d3:3c:5d:e5:eb:9e:
9e:52:ea:2d:be:63:d0:15:0d:1b:6d:aa:2d:47:95:
46:ba:52:6a:da:7d:8d:0a:8d:79:1c:51:e2:5e:25:
a5:42:26:90:e6:aa:6f:c3:06:74:3c:55:e1:4c:cc:
9a:47:37:e3:58:20:9c:4a:83:8e:06:fa:e9:40:f0:
71:dd:cd:e3:88:09:10:75:d0:80:db:c7:d0:e9:06:
b1:39:a5:e0:fd:c7:32:1b:46:0e:50:d9:10:8e:9e:
32:ac:b1:53:6c:68:0f:9d:1c:92:d9:2b:74:e1:7b:
9a:a9:f0:5c:df:2d:24:b5:2a:8f:de:0b:d9:79:45:
06:68:a2:64:06:0a:d7:1e:32:af:cf:e6:f2:1d:d9:
0b:ff:29:f4:f0:00:5f:d8:79:39:48:b9:3e:27:07:
a4:f9:1e:e6:ce:56:0f:c2:05:d8:06:3c:87:4a:35:
e3:f4:93:32:77:d2:5d:5c:6e:2b:72:40:63:df:82:
23:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:45:E3:8C:04:89:8D:CE:CF:1D:9A:92:92:4E:6C:93:69:67:D8:33
X509v3 Authority Key Identifier:
keyid:A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:a2:ae:da:2d:79:a8:2d:67:b6:0b:79:d9:80:ae:93:de:81:
06:99:8b:51:ad:69:64:07:d9:50:68:ea:35:be:dd:87:54:e5:
23:7d:c1:b2:65:d6:ca:50:d3:fa:42:99:69:87:14:47:56:2d:
27:9c:4c:0d:39:4b:09:23:56:87:85:54:ee:6c:94:47:a2:ac:
74:07:ec:7e:b0:2d:85:a4:07:38:55:ee:31:23:4f:8d:9a:1e:
54:5a:1b:2c:8f:64:a5:b5:05:97:b5:00:1b:38:c0:38:32:16:
3a:fd:0c:e4:46:4a:1b:13:b9:3c:e7:19:7d:0f:13:e0:02:78:
af:e8:f6:f5:40:2e:a1:dc:9d:9d:21:f3:06:eb:ca:4c:48:5f:
01:d1:28:d4:5a:17:a6:1a:82:7b:f9:88:80:e5:18:f7:e6:9d:
7d:c2:8b:e4:1f:49:54:0f:90:62:6c:f3:d7:5b:d1:fd:7f:71:
14:cc:05:4e:90:91:90:4e:3e:03:71:63:20:ce:bb:14:9e:bd:
87:4e:eb:76:15:0b:2f:34:e8:4b:28:7b:3d:3c:e3:c7:9b:3b:
3d:7f:db:f8:7c:62:e5:77:85:36:f0:7d:9b:1c:b3:ef:93:70:
f2:ee:5d:52:dd:60:5b:44:59:d3:32:2c:57:2e:99:fd:a8:b6:
69:6c:8f:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYq8xcRcU9BZsTUE0McOr5/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwOWQ2NWI5MjZmZGQ3NDNkYTViNDczZDM0MTg1ZmUxMDFi
MDVhMjgwHhcNMjUwNDEyMTcwMTM2WhcNMjUwNDEzMTcwMTM2WjAzMTEwLwYDVQQD
EyhhNDQ1ZTM4YzA0ODk4ZGNlY2YxZDlhOTI5MjRlNmM5MzY5NjdkODMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+yWHstRYHkrZPRLAENM7K8aoIC/Z
ire5kkQHRRugg5laDdi29wLJKm6d69+QqiYZE25Yrjf78mIFIt369A9TW1bxd3LT
PF3l656eUuotvmPQFQ0bbaotR5VGulJq2n2NCo15HFHiXiWlQiaQ5qpvwwZ0PFXh
TMyaRzfjWCCcSoOOBvrpQPBx3c3jiAkQddCA28fQ6QaxOaXg/ccyG0YOUNkQjp4y
rLFTbGgPnRyS2St04XuaqfBc3y0ktSqP3gvZeUUGaKJkBgrXHjKvz+byHdkL/yn0
8ABf2Hk5SLk+Jwek+R7mzlYPwgXYBjyHSjXj9JMyd9JdXG4rckBj34IjMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKRF44wEiY3Ozx2akpJObJNpZ9gzMB8GA1UdIwQY
MBaAFKCdZbkm/ddD2ltHPTQYX+EBsFooMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0oxbHVTYjkxMFBhVzBjOU5CaGY0UUd3V2lnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9jYmVjMzMtMDMyNS00MWU3LTgyNjYt
NzlhN2VhYTdhZTU4LzEvb0oxbHVTYjkxMFBhVzBjOU5CaGY0UUd3V2lnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9jYmVjMzMtMDMyNS00MWU3LTgyNjYtNzlhN2VhYTdhZTU4
LzEvb0oxbHVTYjkxMFBhVzBjOU5CaGY0UUd3V2lnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAt6Ku2i15
qC1ntgt52YCuk96BBpmLUa1pZAfZUGjqNb7dh1TlI33BsmXWylDT+kKZaYcUR1Yt
J5xMDTlLCSNWh4VU7myUR6KsdAfsfrAthaQHOFXuMSNPjZoeVFobLI9kpbUFl7UA
GzjAODIWOv0M5EZKGxO5POcZfQ8T4AJ4r+j29UAuodydnSHzBuvKTEhfAdEo1FoX
phqCe/mIgOUY9+adfcKL5B9JVA+QYmzz11vR/X9xFMwFTpCRkE4+A3FjIM67FJ69
h07rdhULLzToSyh7PTzjx5s7PX/b+Hxi5XeFNvB9mxyz75Nw8u5dUt1gW0RZ0zIs
Vy6Z/ai2aWyPvA==
-----END CERTIFICATE-----
Generated at Sun Apr 13 02:51:28 2025 by rpki-client