Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
File: 0LYdHx2czatrbY4UUMLJNtOX5nA.mft (raw, json)
Hash identifier: woCz8kRwFuXEzKrGQ80Kt0o5DbS6nl1VIR6awdBprJY=
Subject key identifier: 98:70:10:77:A0:5D:6A:62:84:02:53:99:9F:32:4C:8C:03:6C:A5:28
Authority key identifier: D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70
Certificate issuer: /CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670
Certificate serial: 01962DBCF167982493B04D5B8848DAFED6BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
Manifest number: 01CD
Signing time: Sun 13 Apr 2025 06:01:19 +0000
Manifest this update: Sun 13 Apr 2025 06:01:19 +0000
Manifest next update: Mon 14 Apr 2025 06:01:19 +0000
Files and hashes: 1: 0LYdHx2czatrbY4UUMLJNtOX5nA.crl (hash: UJuk2R4A27lsx0eAej9fdB8JgggV5r4wlI2F5pxi0To=)
2: WtuPQAz22oEnCEx3Rc-9J0U0Qbk.roa (hash: LqsVaHB6US9lWput6TNuWvOyM8xnvQFU16n5uBdiSPM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 06:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2d:bc:f1:67:98:24:93:b0:4d:5b:88:48:da:fe:d6:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670
Validity
Not Before: Apr 13 06:01:19 2025 GMT
Not After : Apr 14 06:01:19 2025 GMT
Subject: CN=98701077a05d6a62840253999f324c8c036ca528
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:87:7c:31:4e:28:28:39:63:3c:68:72:8b:e0:
5a:bd:c5:e8:93:99:14:0b:95:47:00:32:8c:a5:a3:
08:93:90:f2:96:70:ae:8c:a6:70:cc:3b:7e:9f:a1:
c9:b0:32:de:c0:ff:f5:5c:10:bb:56:b4:26:4a:b0:
3d:d4:ab:0d:8c:77:f5:0e:55:54:64:06:ab:55:ff:
a0:59:d5:90:b4:e0:1d:52:89:4e:57:20:94:c7:4e:
29:a0:3b:1e:33:e3:17:9e:eb:07:44:4e:36:de:a9:
ca:5d:59:fe:47:8d:75:62:b9:99:17:3c:08:e7:2c:
0f:2b:13:a8:4a:00:d9:33:59:bb:cf:24:b6:14:92:
f0:ca:f0:d8:bb:17:e1:9b:fc:6b:fc:14:9d:4a:10:
e7:2f:96:8a:bd:61:bf:1c:0e:8c:c4:bc:4f:7b:07:
74:af:d7:f3:44:80:68:b7:df:73:3d:33:01:e7:c8:
b4:3d:a0:46:08:f1:e9:5d:f4:5a:bc:6e:0f:f9:0a:
f2:c4:a8:f6:38:0a:4a:e4:aa:be:cf:ad:6c:78:d4:
98:86:51:f9:ff:40:5b:20:7c:fe:cd:de:d8:57:d1:
c6:c9:18:21:cd:ce:d7:fd:2d:30:c2:d0:a0:a4:88:
fe:18:d8:0e:17:06:60:33:84:c1:8a:2d:97:16:1b:
38:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:70:10:77:A0:5D:6A:62:84:02:53:99:9F:32:4C:8C:03:6C:A5:28
X509v3 Authority Key Identifier:
keyid:D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:cf:e0:b6:03:08:90:5e:45:e8:1a:8c:f2:06:02:ae:d0:42:
0f:f0:69:3d:ed:29:b2:e8:ac:fd:09:c2:3c:c3:da:2d:00:f8:
05:be:99:37:93:51:0a:ea:67:1e:ed:03:74:3c:54:cb:11:95:
7e:d7:f6:a3:c3:b0:d9:4c:87:31:dd:3b:20:2c:83:b3:69:5f:
8d:a4:79:85:aa:27:b8:71:30:6c:1d:ab:38:97:15:03:3a:3f:
f0:2a:91:0b:85:0e:9e:8c:7a:01:2d:3f:0e:0d:f5:87:f2:e1:
5f:8d:84:6a:ef:e3:22:22:61:f3:5b:d3:f9:ee:10:f1:64:f7:
5d:08:ee:43:78:f8:15:4d:44:fe:25:b6:f8:f2:bf:75:fb:1a:
5e:30:a9:6d:03:99:6f:c8:63:bc:a4:fe:70:19:61:f6:80:b5:
b9:a7:18:b9:12:f8:87:7d:86:11:73:43:fc:20:95:23:d4:b6:
04:08:30:64:1f:08:d7:d7:95:f3:6c:f5:b3:28:32:67:3b:a2:
29:c9:5a:cc:16:ba:01:ad:ef:07:72:6b:64:e1:68:ff:dd:2b:
4f:5a:fd:45:61:dd:77:8d:a5:8e:80:ee:b0:14:68:b5:83:8e:
78:82:59:5d:a5:f7:77:ad:96:c0:8b:c8:14:c8:d5:41:9b:b2:
20:c4:d5:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYtvPFnmCSTsE1biEja/ta6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwYjYxZDFmMWQ5Y2NkYWI2YjZkOGUxNDUwYzJjOTM2ZDM5
N2U2NzAwHhcNMjUwNDEzMDYwMTE5WhcNMjUwNDE0MDYwMTE5WjAzMTEwLwYDVQQD
Eyg5ODcwMTA3N2EwNWQ2YTYyODQwMjUzOTk5ZjMyNGM4YzAzNmNhNTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx4d8MU4oKDljPGhyi+BavcXok5kU
C5VHADKMpaMIk5DylnCujKZwzDt+n6HJsDLewP/1XBC7VrQmSrA91KsNjHf1DlVU
ZAarVf+gWdWQtOAdUolOVyCUx04poDseM+MXnusHRE423qnKXVn+R411YrmZFzwI
5ywPKxOoSgDZM1m7zyS2FJLwyvDYuxfhm/xr/BSdShDnL5aKvWG/HA6MxLxPewd0
r9fzRIBot99zPTMB58i0PaBGCPHpXfRavG4P+QryxKj2OApK5Kq+z61seNSYhlH5
/0BbIHz+zd7YV9HGyRghzc7X/S0wwtCgpIj+GNgOFwZgM4TBii2XFhs4HQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJhwEHegXWpihAJTmZ8yTIwDbKUoMB8GA1UdIwQY
MBaAFNC2HR8dnM2ra22OFFDCyTbTl+ZwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni8zMTc2MzUtYTkwYS00NzA0LTk2NzIt
MTVmNjJjODkwYWY4LzEvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni8zMTc2MzUtYTkwYS00NzA0LTk2NzItMTVmNjJjODkwYWY4
LzEvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnc/gtgMI
kF5F6BqM8gYCrtBCD/BpPe0psuis/QnCPMPaLQD4Bb6ZN5NRCupnHu0DdDxUyxGV
ftf2o8Ow2UyHMd07ICyDs2lfjaR5haonuHEwbB2rOJcVAzo/8CqRC4UOnox6AS0/
Dg31h/LhX42Eau/jIiJh81vT+e4Q8WT3XQjuQ3j4FU1E/iW2+PK/dfsaXjCpbQOZ
b8hjvKT+cBlh9oC1uacYuRL4h32GEXND/CCVI9S2BAgwZB8I19eV82z1sygyZzui
KclazBa6Aa3vB3JrZOFo/90rT1r9RWHdd42ljoDusBRotYOOeIJZXaX3d62WwIvI
FMjVQZuyIMTV6A==
-----END CERTIFICATE-----
Generated at Sun Apr 13 14:29:19 2025 by rpki-client