Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.mft
File: OBssWXKaU7hBEqryyhIo80JHo5s.mft (raw, json)
Hash identifier: HyHBpOJy50oz0mNVcHl/9Zz7DIxM9Dz3OQjZolz3Ep0=
Subject key identifier: 50:26:9C:11:2C:E4:C6:5E:A4:11:CF:C0:3E:88:6C:DB:3A:50:A8:28
Authority key identifier: 38:1B:2C:59:72:9A:53:B8:41:12:AA:F2:CA:12:28:F3:42:47:A3:9B
Certificate issuer: /CN=381b2c59729a53b84112aaf2ca1228f34247a39b
Certificate serial: 019647B3574FB7A004A427CF75F1A53CF0E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBssWXKaU7hBEqryyhIo80JHo5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.mft
Manifest number: 14F3
Signing time: Fri 18 Apr 2025 07:00:57 +0000
Manifest this update: Fri 18 Apr 2025 07:00:57 +0000
Manifest next update: Sat 19 Apr 2025 07:00:57 +0000
Files and hashes: 1: OBssWXKaU7hBEqryyhIo80JHo5s.crl (hash: hZZJ6b2Mcg8gdEFxdYbiFGWDeXkLUDFx47sb/w0fWK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/OBssWXKaU7hBEqryyhIo80JHo5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:b3:57:4f:b7:a0:04:a4:27:cf:75:f1:a5:3c:f0:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=381b2c59729a53b84112aaf2ca1228f34247a39b
Validity
Not Before: Apr 18 07:00:57 2025 GMT
Not After : Apr 19 07:00:57 2025 GMT
Subject: CN=50269c112ce4c65ea411cfc03e886cdb3a50a828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ca:ba:8e:2a:67:33:93:9d:bc:07:1a:3a:55:
db:1c:ac:c8:ef:60:5e:5e:b7:e3:55:3e:e7:15:15:
b3:fe:62:90:24:1d:da:7a:32:df:97:57:2a:0c:5a:
91:39:69:0f:0b:db:a8:e1:f2:0e:36:b7:57:98:a7:
c1:e8:d7:57:46:59:df:03:ac:a2:06:c4:a1:32:27:
f4:43:00:bc:ca:94:a5:56:3f:bd:cc:e1:3c:24:82:
a4:cf:0e:3f:28:75:d1:33:9d:cb:67:07:4e:0b:d3:
3f:7c:74:9a:f5:45:f8:1a:fa:f2:bf:c1:4b:99:49:
e2:71:1b:38:14:06:63:13:ee:f0:c5:e5:23:94:a4:
8e:6a:5c:b5:a6:27:41:d5:c0:07:26:15:08:43:32:
5d:41:0c:ce:5f:2f:d4:20:59:bf:2c:c0:3b:6d:9a:
e9:dc:bf:31:9c:9e:75:eb:17:d3:83:4b:d9:2c:1d:
9c:64:62:d6:ce:90:d6:c2:92:2a:e7:ee:76:3d:58:
14:e5:ea:e2:e1:4a:6f:8a:36:4a:83:87:2f:76:e7:
15:61:15:9d:37:c2:f0:a7:48:b2:d7:7a:2a:1a:ee:
07:2b:99:aa:b0:c7:0d:64:5a:07:94:50:e9:7c:d7:
09:e1:44:68:28:ca:7c:45:dd:30:e3:80:e4:29:e8:
7c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:26:9C:11:2C:E4:C6:5E:A4:11:CF:C0:3E:88:6C:DB:3A:50:A8:28
X509v3 Authority Key Identifier:
keyid:38:1B:2C:59:72:9A:53:B8:41:12:AA:F2:CA:12:28:F3:42:47:A3:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBssWXKaU7hBEqryyhIo80JHo5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:e1:8b:48:e6:2e:ac:5e:9a:e3:7a:52:08:4b:9d:7c:c0:79:
07:86:a3:93:2f:93:fd:bc:bf:7e:dc:54:2f:c3:0d:33:10:6a:
6e:6a:fa:46:bb:ae:d3:35:2f:81:9d:34:9a:02:5e:c6:e2:5f:
06:8c:0c:a5:78:52:89:ab:ab:a7:c3:b9:5e:5d:d9:a0:41:a1:
60:12:3b:5f:0a:2f:15:a1:38:18:59:33:6d:e8:c7:56:7a:f9:
59:c1:41:af:07:f8:a0:dc:ae:46:a4:0f:3b:9c:94:06:4e:c0:
a6:9a:df:58:65:62:cb:65:e0:99:e7:db:65:18:0f:b6:d3:5a:
c6:3e:23:58:e3:49:18:a5:f5:25:bd:9c:3f:10:0f:b4:f5:2b:
5b:34:57:f6:84:e7:06:2d:d9:47:20:58:76:2c:eb:19:bf:48:
f5:34:31:3e:20:05:e2:77:df:f1:12:fd:88:c7:a6:e6:13:a9:
4a:ad:5b:0e:cf:f7:46:3d:76:a1:28:35:72:74:18:dc:14:74:
cf:7e:a8:e7:84:22:5c:d8:4d:25:50:51:c3:19:9a:05:fc:b9:
4c:a9:11:17:00:ab:e2:9c:e5:fa:32:75:c8:70:01:ba:f3:b7:
a0:be:19:05:0d:49:9e:2d:d3:97:fb:0c:c0:69:96:69:89:b3:
5c:d1:91:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZHs1dPt6AEpCfPdfGlPPDiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MWIyYzU5NzI5YTUzYjg0MTEyYWFmMmNhMTIyOGYzNDI0
N2EzOWIwHhcNMjUwNDE4MDcwMDU3WhcNMjUwNDE5MDcwMDU3WjAzMTEwLwYDVQQD
Eyg1MDI2OWMxMTJjZTRjNjVlYTQxMWNmYzAzZTg4NmNkYjNhNTBhODI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqcq6jipnM5OdvAcaOlXbHKzI72Be
XrfjVT7nFRWz/mKQJB3aejLfl1cqDFqROWkPC9uo4fIONrdXmKfB6NdXRlnfA6yi
BsShMif0QwC8ypSlVj+9zOE8JIKkzw4/KHXRM53LZwdOC9M/fHSa9UX4Gvryv8FL
mUnicRs4FAZjE+7wxeUjlKSOaly1pidB1cAHJhUIQzJdQQzOXy/UIFm/LMA7bZrp
3L8xnJ516xfTg0vZLB2cZGLWzpDWwpIq5+52PVgU5eri4UpvijZKg4cvducVYRWd
N8Lwp0iy13oqGu4HK5mqsMcNZFoHlFDpfNcJ4URoKMp8Rd0w44DkKeh8ZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFAmnBEs5MZepBHPwD6IbNs6UKgoMB8GA1UdIwQY
MBaAFDgbLFlymlO4QRKq8soSKPNCR6ObMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0Jzc1dYS2FVN2hCRXFyeXloSW84MEpIbzVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8xNDkxN2EtNDkxMS00YzNiLWIyYTct
MjdkNWFjZTAzMDdmLzEvT0Jzc1dYS2FVN2hCRXFyeXloSW84MEpIbzVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8xNDkxN2EtNDkxMS00YzNiLWIyYTctMjdkNWFjZTAzMDdm
LzEvT0Jzc1dYS2FVN2hCRXFyeXloSW84MEpIbzVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe+GLSOYu
rF6a43pSCEudfMB5B4ajky+T/by/ftxUL8MNMxBqbmr6Rruu0zUvgZ00mgJexuJf
BowMpXhSiaurp8O5Xl3ZoEGhYBI7XwovFaE4GFkzbejHVnr5WcFBrwf4oNyuRqQP
O5yUBk7ApprfWGViy2XgmefbZRgPttNaxj4jWONJGKX1Jb2cPxAPtPUrWzRX9oTn
Bi3ZRyBYdizrGb9I9TQxPiAF4nff8RL9iMem5hOpSq1bDs/3Rj12oSg1cnQY3BR0
z36o54QiXNhNJVBRwxmaBfy5TKkRFwCr4pzl+jJ1yHABuvO3oL4ZBQ1Jni3Tl/sM
wGmWaYmzXNGRgw==
-----END CERTIFICATE-----
Generated at Fri Apr 18 11:33:42 2025 by rpki-client