Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
File: o8lj0aEdANOEre35u4blOEmpsYw.mft (raw, json)
Hash identifier: UdXP/NCRJOZpKd1j5zF3xd3oCfk71mHn4Ljby5JaCOU=
Subject key identifier: 65:EA:E9:E9:41:77:38:F9:E2:20:D4:FB:FA:9D:0E:E2:6A:F5:51:9F
Authority key identifier: A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C
Certificate issuer: /CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c
Certificate serial: 01965F84A18509540C034F8E1851B534C70A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
Manifest number: 1506
Signing time: Tue 22 Apr 2025 22:00:49 +0000
Manifest this update: Tue 22 Apr 2025 22:00:49 +0000
Manifest next update: Wed 23 Apr 2025 22:00:49 +0000
Files and hashes: 1: 1-9Z39awtCUNqeCcuYwIOQubEoEY.roa (hash: AJvelHrJ42adBWeCqNbgdbqaGB/A4YMI32J/x3+LlBI=)
2: o8lj0aEdANOEre35u4blOEmpsYw.crl (hash: v2FG7Zwo1eru7zvQAWNEUdLQu/Ar8I2vpRPyWdUVZ+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 20:22:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5f:84:a1:85:09:54:0c:03:4f:8e:18:51:b5:34:c7:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c
Validity
Not Before: Apr 22 22:00:49 2025 GMT
Not After : Apr 23 22:00:49 2025 GMT
Subject: CN=65eae9e9417738f9e220d4fbfa9d0ee26af5519f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1e:8b:f0:0c:18:48:d2:e8:5d:77:fe:b0:1b:
22:84:f3:5e:7d:f4:c5:8e:f3:ed:b9:67:34:3c:b3:
70:d0:0d:d1:e1:a0:ef:4e:d5:c2:ed:07:12:be:e0:
f7:46:20:e1:f9:06:a7:7b:df:ea:f0:a8:af:fa:f6:
82:fe:ef:d3:b3:13:91:70:ff:d1:f6:bd:08:e0:9b:
9d:4b:30:f9:b8:bd:f3:71:8a:b8:9c:d3:51:34:93:
51:62:6d:99:d1:80:f5:11:45:0e:bb:47:9f:dd:c2:
b4:ca:5c:f4:f8:94:dd:db:f7:65:f1:d4:23:0f:a2:
c4:77:e1:ee:2c:d7:45:20:ae:48:88:ba:b3:e8:b3:
54:73:b2:34:5a:b1:41:5a:6c:5b:2c:41:c5:c2:68:
fb:08:5c:25:fa:d4:f4:52:ff:19:c0:0e:8a:fd:9b:
98:b3:52:c3:98:a6:93:8c:b0:86:e2:27:37:be:36:
ef:46:82:0b:94:9d:a3:31:3d:67:81:41:5a:6a:7d:
ce:58:75:cf:50:d0:3e:9c:21:61:29:47:f6:04:7a:
de:7b:ff:48:5d:fc:2d:cc:1a:86:39:bf:ce:40:cd:
0c:40:70:36:93:b9:c1:38:51:87:62:4e:cd:44:54:
a0:31:67:78:bd:6c:5e:30:8c:cc:a3:10:7c:c8:07:
39:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:EA:E9:E9:41:77:38:F9:E2:20:D4:FB:FA:9D:0E:E2:6A:F5:51:9F
X509v3 Authority Key Identifier:
keyid:A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:0a:25:44:f5:c1:da:ea:16:35:bf:5e:4b:10:bc:08:08:ef:
ff:49:c1:d8:ea:05:53:3e:31:73:9f:5e:26:3e:e4:10:ec:a6:
85:ee:5a:b4:eb:12:97:29:de:28:9c:ff:e9:56:ea:33:21:c1:
71:c7:d0:ba:8f:2c:48:6b:f2:70:09:8a:fb:86:34:7a:44:e4:
98:8d:03:36:6c:73:89:cc:2f:c9:82:d0:2b:67:77:8c:29:e4:
b5:9f:57:10:c6:1f:b6:b3:91:9a:62:10:c2:38:d0:d2:50:fa:
4d:f5:d4:a6:8d:c4:4d:69:83:60:3a:be:36:67:eb:08:45:8d:
91:ff:f7:4d:19:95:8b:c0:03:dd:1b:8c:4b:08:e5:fc:a6:4a:
04:87:78:37:e4:77:06:d2:26:f9:de:09:05:65:a9:fb:41:23:
e8:c3:78:48:4f:29:a4:35:1d:3c:1a:ef:a2:92:80:5e:da:04:
f2:a8:93:3f:b3:96:b6:db:3d:72:0e:9a:4e:6f:38:b0:8a:58:
f9:7a:11:b9:cf:7a:9d:1f:fb:85:55:a4:dd:a6:f4:82:db:f1:
93:df:18:81:aa:c9:ff:99:90:c6:b2:55:2f:ed:52:73:b9:f7:
2c:0e:b8:4d:3c:cc:e1:43:57:8a:86:eb:db:ac:ff:9c:59:91:
7f:23:72:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZfhKGFCVQMA0+OGFG1NMcKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzYzk2M2QxYTExZDAwZDM4NGFkZWRmOWJiODZlNTM4NDlh
OWIxOGMwHhcNMjUwNDIyMjIwMDQ5WhcNMjUwNDIzMjIwMDQ5WjAzMTEwLwYDVQQD
Eyg2NWVhZTllOTQxNzczOGY5ZTIyMGQ0ZmJmYTlkMGVlMjZhZjU1MTlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuR6L8AwYSNLoXXf+sBsihPNeffTF
jvPtuWc0PLNw0A3R4aDvTtXC7QcSvuD3RiDh+Qane9/q8Kiv+vaC/u/TsxORcP/R
9r0I4JudSzD5uL3zcYq4nNNRNJNRYm2Z0YD1EUUOu0ef3cK0ylz0+JTd2/dl8dQj
D6LEd+HuLNdFIK5IiLqz6LNUc7I0WrFBWmxbLEHFwmj7CFwl+tT0Uv8ZwA6K/ZuY
s1LDmKaTjLCG4ic3vjbvRoILlJ2jMT1ngUFaan3OWHXPUNA+nCFhKUf2BHree/9I
XfwtzBqGOb/OQM0MQHA2k7nBOFGHYk7NRFSgMWd4vWxeMIzMoxB8yAc5cwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGXq6elBdzj54iDU+/qdDuJq9VGfMB8GA1UdIwQY
MBaAFKPJY9GhHQDThK3t+buG5ThJqbGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzhsajBhRWRBTk9FcmUzNXU0YmxPRW1wc1l3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9mYzUyYTAtZTBmNy00ODBiLWJhN2Qt
MTA0MmVhOGUzYmZiLzEvbzhsajBhRWRBTk9FcmUzNXU0YmxPRW1wc1l3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9mYzUyYTAtZTBmNy00ODBiLWJhN2QtMTA0MmVhOGUzYmZi
LzEvbzhsajBhRWRBTk9FcmUzNXU0YmxPRW1wc1l3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKgolRPXB
2uoWNb9eSxC8CAjv/0nB2OoFUz4xc59eJj7kEOymhe5atOsSlyneKJz/6VbqMyHB
ccfQuo8sSGvycAmK+4Y0ekTkmI0DNmxzicwvyYLQK2d3jCnktZ9XEMYftrORmmIQ
wjjQ0lD6TfXUpo3ETWmDYDq+NmfrCEWNkf/3TRmVi8AD3RuMSwjl/KZKBId4N+R3
BtIm+d4JBWWp+0Ej6MN4SE8ppDUdPBrvopKAXtoE8qiTP7OWtts9cg6aTm84sIpY
+XoRuc96nR/7hVWk3ab0gtvxk98YgarJ/5mQxrJVL+1Sc7n3LA64TTzM4UNXiobr
26z/nFmRfyNyAg==
-----END CERTIFICATE-----
Generated at Wed Apr 23 01:08:23 2025 by rpki-client