Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
File: 8oxp2pTIXt1I2cH9jjMq477mYAQ.mft (raw, json)
Hash identifier: tXiiRcD5wSA3c3uHXSztGOWCBDL2IOFDaxpz9xXwt+s=
Subject key identifier: 98:8B:19:AF:8C:17:B1:DA:F3:15:A1:00:87:D4:04:CB:82:A8:11:48
Authority key identifier: F2:8C:69:DA:94:C8:5E:DD:48:D9:C1:FD:8E:33:2A:E3:BE:E6:60:04
Certificate issuer: /CN=f28c69da94c85edd48d9c1fd8e332ae3bee66004
Certificate serial: 019653EE4E69CE75AA60171B9EC3004E2650
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
Manifest number: 0DC8
Signing time: Sun 20 Apr 2025 16:00:48 +0000
Manifest this update: Sun 20 Apr 2025 16:00:48 +0000
Manifest next update: Mon 21 Apr 2025 16:00:48 +0000
Files and hashes: 1: 8oxp2pTIXt1I2cH9jjMq477mYAQ.crl (hash: CvS+vapLPCzGCSGH7Rnf/Uv3DdjG0z2guM0eLEhE5jQ=)
2: m7fQ-cMMDdeyLl0RJP3A0VDHgVE.roa (hash: rB/+iXy3MWnMmudzmSTexHxDroAo7zhjaO5iq26LcWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:ee:4e:69:ce:75:aa:60:17:1b:9e:c3:00:4e:26:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f28c69da94c85edd48d9c1fd8e332ae3bee66004
Validity
Not Before: Apr 20 16:00:48 2025 GMT
Not After : Apr 21 16:00:48 2025 GMT
Subject: CN=988b19af8c17b1daf315a10087d404cb82a81148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d7:72:23:a3:b9:d4:bc:ef:89:0c:31:3d:cc:
eb:e5:12:53:1a:68:39:43:a7:b3:7c:f3:2f:7e:e6:
1f:73:86:5f:b6:e3:4f:ce:86:95:4f:71:26:9d:5e:
da:fa:10:b9:d5:39:9b:61:31:d6:22:79:2e:0c:2a:
c4:47:b7:67:ea:fc:c2:6c:89:d3:9d:84:8c:2c:a2:
e2:b8:ab:05:6b:b7:ae:31:2d:5d:00:09:de:5e:50:
2b:53:00:05:58:49:b1:e9:6b:6f:8e:24:5b:81:d6:
68:1c:3a:1f:dd:6b:5d:d5:2b:aa:2f:4e:a2:a1:3d:
5f:58:f0:b2:e9:94:27:54:8f:d0:67:fa:5a:ad:a9:
07:b2:16:d3:b1:49:de:13:a4:6c:f6:e3:89:c8:c9:
2d:95:a1:22:af:62:25:ca:2b:55:e6:93:8e:04:75:
ac:39:37:2e:f0:e7:5c:81:b0:b8:19:ff:fa:10:c7:
be:0d:6f:de:0f:22:bb:a9:7d:a4:d1:6d:d0:da:6f:
9a:ec:be:d8:2a:89:f2:3a:cb:45:81:68:8b:1a:f6:
f6:7e:8a:f3:ad:41:c7:3e:6c:01:15:d9:9d:e7:6f:
6e:c8:40:c0:33:8a:5e:c8:17:cd:fb:0f:2f:42:e5:
ba:73:5c:9d:54:6b:82:f7:cb:f6:07:6f:f5:f1:2f:
4b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:8B:19:AF:8C:17:B1:DA:F3:15:A1:00:87:D4:04:CB:82:A8:11:48
X509v3 Authority Key Identifier:
keyid:F2:8C:69:DA:94:C8:5E:DD:48:D9:C1:FD:8E:33:2A:E3:BE:E6:60:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:89:c6:8e:ea:d8:74:ef:4f:44:54:54:d9:ce:48:48:1b:9c:
f2:15:bd:b8:ac:a1:9c:b0:2a:78:14:20:35:9f:61:52:58:4f:
9d:4c:48:1b:c0:e1:f3:3a:5e:6f:ce:61:64:11:66:69:30:c6:
d6:af:c3:91:17:1e:42:0b:0a:2d:44:60:d9:41:00:39:f1:cd:
db:c4:be:98:a7:c2:fd:19:68:33:db:e1:22:0f:d0:fb:30:d2:
bf:04:c1:88:41:32:c5:ca:9e:72:6c:4c:ee:6f:11:f5:76:13:
c7:af:1b:49:1d:02:52:c2:9e:92:a6:96:80:53:71:8f:2c:bf:
f4:d2:47:d1:c8:ff:ff:a2:85:d8:74:6f:6d:43:e4:39:3d:29:
94:30:c3:7a:1a:f5:df:6b:33:54:7e:be:54:7d:e5:ef:9c:ca:
a9:83:7d:72:5a:7e:51:c8:cf:ed:19:28:9f:ac:1d:79:a5:84:
07:e9:e8:df:a3:ee:ca:a4:75:51:ef:0e:76:71:43:a2:d1:55:
9f:88:31:28:63:51:22:d5:73:c1:91:4d:4d:c0:c8:b7:0f:d5:
60:c9:ce:9c:46:7c:39:bd:40:d1:18:62:e3:cb:c6:d8:ac:f9:
47:86:36:47:91:7b:db:da:9b:e2:55:e8:fa:e7:2d:73:1c:d8:
0c:90:8d:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZT7k5pznWqYBcbnsMATiZQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyOGM2OWRhOTRjODVlZGQ0OGQ5YzFmZDhlMzMyYWUzYmVl
NjYwMDQwHhcNMjUwNDIwMTYwMDQ4WhcNMjUwNDIxMTYwMDQ4WjAzMTEwLwYDVQQD
Eyg5ODhiMTlhZjhjMTdiMWRhZjMxNWExMDA4N2Q0MDRjYjgyYTgxMTQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuddyI6O51LzviQwxPczr5RJTGmg5
Q6ezfPMvfuYfc4ZftuNPzoaVT3EmnV7a+hC51TmbYTHWInkuDCrER7dn6vzCbInT
nYSMLKLiuKsFa7euMS1dAAneXlArUwAFWEmx6WtvjiRbgdZoHDof3Wtd1SuqL06i
oT1fWPCy6ZQnVI/QZ/parakHshbTsUneE6Rs9uOJyMktlaEir2IlyitV5pOOBHWs
OTcu8OdcgbC4Gf/6EMe+DW/eDyK7qX2k0W3Q2m+a7L7YKonyOstFgWiLGvb2forz
rUHHPmwBFdmd529uyEDAM4peyBfN+w8vQuW6c1ydVGuC98v2B2/18S9LVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJiLGa+MF7Ha8xWhAIfUBMuCqBFIMB8GA1UdIwQY
MBaAFPKMadqUyF7dSNnB/Y4zKuO+5mAEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOG94cDJwVElYdDFJMmNIOWpqTXE0NzdtWUFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8wZGNkOTYtMGFlMy00ZjVjLThkMjEt
YTkwMmIwMDk2Yjk5LzEvOG94cDJwVElYdDFJMmNIOWpqTXE0NzdtWUFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi8wZGNkOTYtMGFlMy00ZjVjLThkMjEtYTkwMmIwMDk2Yjk5
LzEvOG94cDJwVElYdDFJMmNIOWpqTXE0NzdtWUFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARonGjurY
dO9PRFRU2c5ISBuc8hW9uKyhnLAqeBQgNZ9hUlhPnUxIG8Dh8zpeb85hZBFmaTDG
1q/DkRceQgsKLURg2UEAOfHN28S+mKfC/RloM9vhIg/Q+zDSvwTBiEEyxcqecmxM
7m8R9XYTx68bSR0CUsKekqaWgFNxjyy/9NJH0cj//6KF2HRvbUPkOT0plDDDehr1
32szVH6+VH3l75zKqYN9clp+UcjP7Rkon6wdeaWEB+no36PuyqR1Ue8OdnFDotFV
n4gxKGNRItVzwZFNTcDItw/VYMnOnEZ8Ob1A0Rhi48vG2Kz5R4Y2R5F729qb4lXo
+uctcxzYDJCNog==
-----END CERTIFICATE-----
Generated at Mon Apr 21 01:38:27 2025 by rpki-client