Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
File: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft (raw, json)
Hash identifier: 6HX6zYHnPey/adNHkAAqnABXjs/pYauw2zb7MRe8m1s=
Subject key identifier: 85:F4:CB:9D:91:B0:91:76:2D:92:29:F5:82:24:AF:4D:E3:E8:3A:92
Authority key identifier: 38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
Certificate issuer: /CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Certificate serial: 0196439F0A37FB4265A2ECD89DA1875C1CCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
Manifest number: 1072
Signing time: Thu 17 Apr 2025 12:00:18 +0000
Manifest this update: Thu 17 Apr 2025 12:00:18 +0000
Manifest next update: Fri 18 Apr 2025 12:00:18 +0000
Files and hashes: 1: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl (hash: g2ppyCHxRizEOtRW0nfrmkKHtsIcoJW0It3tvgl6tJ0=)
2: hbt7WcwBqBoPW6rBuDIQ3SNZmzc.roa (hash: gFxs6hHw3FxfMImk+yNCzFI6L94MQhx1psEtxtAsjbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 12:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:9f:0a:37:fb:42:65:a2:ec:d8:9d:a1:87:5c:1c:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Validity
Not Before: Apr 17 12:00:18 2025 GMT
Not After : Apr 18 12:00:18 2025 GMT
Subject: CN=85f4cb9d91b091762d9229f58224af4de3e83a92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2f:8d:81:e6:c9:6f:0e:5f:ee:5e:d2:c2:98:
89:89:89:30:9b:f5:82:2a:9d:8a:a7:fa:45:1d:e1:
cd:2d:41:ae:a3:de:13:28:28:58:01:9c:da:83:6b:
ec:b2:84:cc:05:d4:d4:60:04:55:f2:46:c4:45:72:
de:4e:55:35:9f:7e:67:d4:13:53:6c:b0:8a:8b:6d:
4e:71:33:06:c4:bf:cd:32:6e:f7:00:85:71:b9:55:
53:48:08:d6:16:32:e8:a5:f8:cd:c6:4c:9c:06:38:
b4:13:90:de:49:63:6d:51:09:7d:a4:0a:b1:21:d1:
eb:12:43:58:20:97:57:1b:b4:88:8d:04:af:04:57:
ba:8d:3a:55:1a:3e:27:b5:45:9e:4f:8f:83:77:d3:
1d:d4:b2:55:f6:23:9c:61:4c:4d:fa:a4:9e:3d:aa:
97:1c:06:ec:64:51:7c:b6:f6:aa:69:26:23:a5:5d:
71:f9:95:14:c1:4b:3d:e7:f0:a6:3a:6f:61:40:cb:
f1:78:c1:bb:b1:5b:19:34:6a:3e:04:d0:05:10:7b:
cc:db:bb:21:2f:1b:05:85:8e:80:ed:e1:13:32:06:
3b:8a:5e:d3:82:d8:ed:a4:86:c3:16:27:07:aa:cc:
4d:48:75:d0:6a:a2:37:1b:51:f1:f1:df:84:de:cb:
d4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F4:CB:9D:91:B0:91:76:2D:92:29:F5:82:24:AF:4D:E3:E8:3A:92
X509v3 Authority Key Identifier:
keyid:38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:55:eb:ce:03:29:51:2d:99:b8:36:e1:20:0c:53:57:e0:f2:
74:97:67:7e:38:79:f5:3b:29:34:f6:81:be:81:51:cd:9a:23:
69:c2:d0:db:dd:ba:71:2f:9f:99:14:47:0a:53:9f:cc:61:08:
d5:c6:73:70:8c:48:bc:e1:08:d0:35:55:4a:56:e1:4a:c5:6c:
40:39:79:84:a7:d4:56:9e:68:a6:a7:80:71:b7:1e:3b:b5:7d:
d5:07:e3:f0:b3:fb:c7:5e:ff:2a:e0:68:68:32:ae:fc:22:49:
37:07:75:da:d3:53:b4:26:ad:70:af:92:47:24:94:70:1f:9c:
7d:5d:90:10:20:d8:26:c2:ad:f4:4c:21:5f:95:ff:ba:10:18:
e7:5c:18:76:d6:66:4f:cf:6b:f9:73:d4:84:50:6f:30:a1:4d:
47:f7:15:f1:f4:b2:ce:3a:2f:17:4f:ec:3d:09:c2:e4:a7:b8:
e2:9c:d7:ec:35:32:bc:94:02:04:89:25:8a:7d:fa:e3:62:de:
57:ec:52:72:30:61:c6:79:c2:ad:26:42:cb:92:58:cb:de:eb:
d6:29:54:57:f9:c8:f9:71:d2:a3:5f:cf:ea:35:b9:0e:93:15:
b7:9a:2a:d1:75:8c:76:46:3d:0e:3c:1b:46:00:95:b9:af:57:
61:e8:65:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZDnwo3+0JlouzYnaGHXBzKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MjI3YTk2ZmE2NGFkOTUyNDBmMGFlZTBiZDM3NDY0NmM2
YmJlZTIwHhcNMjUwNDE3MTIwMDE4WhcNMjUwNDE4MTIwMDE4WjAzMTEwLwYDVQQD
Eyg4NWY0Y2I5ZDkxYjA5MTc2MmQ5MjI5ZjU4MjI0YWY0ZGUzZTgzYTkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1C+NgebJbw5f7l7SwpiJiYkwm/WC
Kp2Kp/pFHeHNLUGuo94TKChYAZzag2vssoTMBdTUYARV8kbERXLeTlU1n35n1BNT
bLCKi21OcTMGxL/NMm73AIVxuVVTSAjWFjLopfjNxkycBji0E5DeSWNtUQl9pAqx
IdHrEkNYIJdXG7SIjQSvBFe6jTpVGj4ntUWeT4+Dd9Md1LJV9iOcYUxN+qSePaqX
HAbsZFF8tvaqaSYjpV1x+ZUUwUs95/CmOm9hQMvxeMG7sVsZNGo+BNAFEHvM27sh
LxsFhY6A7eETMgY7il7TgtjtpIbDFicHqsxNSHXQaqI3G1Hx8d+E3svUewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIX0y52RsJF2LZIp9YIkr03j6DqSMB8GA1UdIwQY
MBaAFDgiepb6ZK2VJA8K7gvTdGRsa77iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8xY2Y5YWMtMTBkNC00YTVlLWE3MDYt
ZDFjOWJhMDhmNTU5LzEvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC8xY2Y5YWMtMTBkNC00YTVlLWE3MDYtZDFjOWJhMDhmNTU5
LzEvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhlXrzgMp
US2ZuDbhIAxTV+DydJdnfjh59TspNPaBvoFRzZojacLQ2926cS+fmRRHClOfzGEI
1cZzcIxIvOEI0DVVSlbhSsVsQDl5hKfUVp5opqeAcbceO7V91Qfj8LP7x17/KuBo
aDKu/CJJNwd12tNTtCatcK+SRySUcB+cfV2QECDYJsKt9EwhX5X/uhAY51wYdtZm
T89r+XPUhFBvMKFNR/cV8fSyzjovF0/sPQnC5Ke44pzX7DUyvJQCBIklin3642Le
V+xScjBhxnnCrSZCy5JYy97r1ilUV/nI+XHSo1/P6jW5DpMVt5oq0XWMdkY9Djwb
RgCVua9XYehlEQ==
-----END CERTIFICATE-----
Generated at Thu Apr 17 20:47:24 2025 by rpki-client