Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.mft
File: oUIVlcmI-yZTZeucofo_F_xXB28.mft (raw, json)
Hash identifier: 0rDB6i8mFHvCX/zpgBglBMAq9YJc8ZrUl4quwuHKv0Q=
Subject key identifier: 3D:4E:AA:DF:4A:22:4C:C5:A7:00:D6:57:FC:5A:2D:BA:3B:95:5B:8A
Authority key identifier: A1:42:15:95:C9:88:FB:26:53:65:EB:9C:A1:FA:3F:17:FC:57:07:6F
Certificate issuer: /CN=a1421595c988fb265365eb9ca1fa3f17fc57076f
Certificate serial: 019650488995FA5AAF7B816728B6542751BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUIVlcmI-yZTZeucofo_F_xXB28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.mft
Manifest number: 14F9
Signing time: Sat 19 Apr 2025 23:00:53 +0000
Manifest this update: Sat 19 Apr 2025 23:00:53 +0000
Manifest next update: Sun 20 Apr 2025 23:00:53 +0000
Files and hashes: 1: oUIVlcmI-yZTZeucofo_F_xXB28.crl (hash: gg6kBSWjXT2oyER7MR/UUf39oPKgUQv9TK82y/SdPEs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.mft
rsync://rpki.ripe.net/repository/DEFAULT/oUIVlcmI-yZTZeucofo_F_xXB28.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:48:89:95:fa:5a:af:7b:81:67:28:b6:54:27:51:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1421595c988fb265365eb9ca1fa3f17fc57076f
Validity
Not Before: Apr 19 23:00:53 2025 GMT
Not After : Apr 20 23:00:53 2025 GMT
Subject: CN=3d4eaadf4a224cc5a700d657fc5a2dba3b955b8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:73:42:fb:a8:8a:a8:60:19:72:da:54:42:73:
57:ca:a1:9c:a6:3d:49:de:71:b7:aa:ad:01:cc:22:
95:56:eb:92:01:c1:73:9b:f6:2a:63:79:6c:2c:53:
69:f5:4b:ba:31:25:30:d9:45:62:90:bc:ce:98:9d:
9c:5e:a9:9f:af:4a:8a:9a:04:82:b2:70:3e:15:d2:
0b:46:e0:40:4c:08:12:31:ff:d3:a1:ad:bb:e7:e2:
25:f9:5a:cd:eb:db:15:11:fe:4c:6b:7a:3d:ed:d5:
6b:83:96:ed:9a:f3:b8:3e:a9:a8:72:59:ae:c6:a7:
3e:84:2f:f1:b3:b3:ad:51:fa:7a:06:8f:35:3e:51:
5d:ce:cc:92:1c:9c:bf:02:98:93:8e:fc:eb:27:f7:
d9:b3:12:96:93:19:33:36:a7:2f:53:dc:7f:1f:c1:
d7:74:c3:74:b0:b1:f9:e2:95:6b:23:79:f4:f1:bb:
ec:88:5d:4f:ee:5f:16:5f:f8:31:3b:57:af:59:70:
cb:2b:fa:24:4e:9a:50:79:db:e0:f5:ba:72:db:e6:
24:2d:b4:1a:4a:aa:a2:a6:32:27:4e:90:34:04:47:
bb:54:1d:9c:66:bf:3d:75:af:60:39:62:59:19:7a:
85:12:e3:b7:28:62:81:f7:04:b1:ef:16:2c:d4:22:
66:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:4E:AA:DF:4A:22:4C:C5:A7:00:D6:57:FC:5A:2D:BA:3B:95:5B:8A
X509v3 Authority Key Identifier:
keyid:A1:42:15:95:C9:88:FB:26:53:65:EB:9C:A1:FA:3F:17:FC:57:07:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUIVlcmI-yZTZeucofo_F_xXB28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:63:0e:b7:99:10:6d:51:95:9a:ee:36:ef:43:18:0e:ba:10:
2e:a3:4f:3d:03:c9:41:94:8f:50:69:66:a6:97:69:64:84:c9:
a0:6f:f3:b6:56:c4:0f:48:ea:e4:9c:17:0c:71:52:bf:2a:cd:
43:39:3f:21:c0:60:c3:cf:e8:b9:87:dc:da:3d:7f:ea:8d:7f:
28:67:ff:1d:b1:b4:18:15:68:8b:c3:17:7a:be:b3:09:b1:e5:
56:6e:30:df:3b:a6:60:91:00:18:98:d0:15:0d:59:2f:10:3f:
87:de:cf:fe:88:92:84:5b:20:9e:e2:c4:e0:d3:76:96:83:46:
01:6e:30:95:49:bd:9b:d5:23:28:a1:e2:0a:78:18:c9:94:f7:
16:52:6a:34:c4:4d:7d:47:ed:c0:64:ed:be:4c:92:52:47:44:
43:ff:e8:0a:d4:22:5d:4d:eb:77:78:d5:77:46:24:ce:cb:61:
f9:d9:59:9e:a9:d1:40:9d:af:3b:82:a9:d2:19:6f:ae:15:8d:
5e:13:38:bc:bc:9e:c3:2f:77:10:32:41:54:06:ad:11:92:ad:
b2:75:61:79:e4:11:76:e9:32:b3:e3:06:6a:2e:36:ef:94:14:
f0:53:bf:47:c7:66:da:02:fe:9a:60:10:ba:d4:cb:17:b5:4f:
e0:3a:12:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZQSImV+lqve4FnKLZUJ1G/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNDIxNTk1Yzk4OGZiMjY1MzY1ZWI5Y2ExZmEzZjE3ZmM1
NzA3NmYwHhcNMjUwNDE5MjMwMDUzWhcNMjUwNDIwMjMwMDUzWjAzMTEwLwYDVQQD
EygzZDRlYWFkZjRhMjI0Y2M1YTcwMGQ2NTdmYzVhMmRiYTNiOTU1YjhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAznNC+6iKqGAZctpUQnNXyqGcpj1J
3nG3qq0BzCKVVuuSAcFzm/YqY3lsLFNp9Uu6MSUw2UVikLzOmJ2cXqmfr0qKmgSC
snA+FdILRuBATAgSMf/Toa275+Il+VrN69sVEf5Ma3o97dVrg5btmvO4Pqmoclmu
xqc+hC/xs7OtUfp6Bo81PlFdzsySHJy/ApiTjvzrJ/fZsxKWkxkzNqcvU9x/H8HX
dMN0sLH54pVrI3n08bvsiF1P7l8WX/gxO1evWXDLK/okTppQedvg9bpy2+YkLbQa
SqqipjInTpA0BEe7VB2cZr89da9gOWJZGXqFEuO3KGKB9wSx7xYs1CJmnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD1Oqt9KIkzFpwDWV/xaLbo7lVuKMB8GA1UdIwQY
MBaAFKFCFZXJiPsmU2XrnKH6Pxf8VwdvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1VJVmxjbUkteVpUWmV1Y29mb19GX3hYQjI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9kNjI1YzUtNzkwYy00YjUxLTllZjEt
YmFlZjRlYmY2OGRhLzEvb1VJVmxjbUkteVpUWmV1Y29mb19GX3hYQjI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi9kNjI1YzUtNzkwYy00YjUxLTllZjEtYmFlZjRlYmY2OGRh
LzEvb1VJVmxjbUkteVpUWmV1Y29mb19GX3hYQjI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUmMOt5kQ
bVGVmu4270MYDroQLqNPPQPJQZSPUGlmppdpZITJoG/ztlbED0jq5JwXDHFSvyrN
Qzk/IcBgw8/ouYfc2j1/6o1/KGf/HbG0GBVoi8MXer6zCbHlVm4w3zumYJEAGJjQ
FQ1ZLxA/h97P/oiShFsgnuLE4NN2loNGAW4wlUm9m9UjKKHiCngYyZT3FlJqNMRN
fUftwGTtvkySUkdEQ//oCtQiXU3rd3jVd0Ykzsth+dlZnqnRQJ2vO4Kp0hlvrhWN
XhM4vLyewy93EDJBVAatEZKtsnVheeQRdukys+MGai4275QU8FO/R8dm2gL+mmAQ
utTLF7VP4DoSPg==
-----END CERTIFICATE-----
Generated at Sun Apr 20 04:20:35 2025 by rpki-client